Morning Overview on MSN

Palo Alto Networks just confirmed active exploitation of an authentication bypass in its GlobalProtect VPN — unpatched boxes now getting hit across the internet

Federal agencies have until June 1, 2026, to patch a critical authentication bypass in Palo Alto Networks’ GlobalProtect VPN, ...
The Hacker News

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation

CVE-2026-0257 is being actively exploited on PAN-OS devices since May 17, 2026, enabling unauthorized VPN access and network exposure.

Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks

Palo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks.
Infosecurity Magazine

Palo Alto Warns High-Severity Bug Is Being Actively Exploited

A leading security vendor has warned customers that attackers are actively exploiting a high-severity CVE in one of its ...
Dark Reading

Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit

Attackers are exploiting a security vulnerability in Palo Alto Networks' PAN-OS GlobalProtect VPN technology that allows them to bypass authentication and gain VPN access without valid credentials. In ...