Risky Business cover image

Risky Business

Risky Business #771 -- Palo Alto's firewall 0days are very, very stupid

Nov 20, 2024
Andrew Morris, the founder of GreyNoise, dives into the world of cybersecurity, highlighting alarming vulnerabilities in edge devices. He reveals a new zero-day discovered by their AI system, emphasizing that the threat landscape is even worse than commonly perceived. The conversation also tackles the ineffectiveness of phishing training and underscores the critical security flaws in high-security IP cameras. As always, the episode blends humor with serious insights, making it both engaging and informative.
01:01:12

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

  • Palo Alto Networks faces critical scrutiny due to a zero-day vulnerability allowing potentially devastating remote command executions on its firewall products.
  • Microsoft's new security features aim to enhance recovery capabilities and vulnerability management, indicating a significant shift towards machine-readable data accessibility.

Deep dives

Mass Exploitation of Edge Devices

There has been a significant increase in attacks targeting edge devices on the internet, with the scale of exploitation being much larger than previously recognized. Attackers are not only aiming to gain access to vulnerable networks but also to establish operational relay boxes, which facilitate further intrusions. These trends echo the tactics of the 1990s, where compromised systems served as staging points for larger-scale attacks. The ongoing mass scanning illustrates a persistent and evolving threat landscape, indicating that addressing vulnerabilities in these devices has become increasingly critical.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner