"Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware"
An exploit of Palo Alto Networks' Extended Detection and Response (XDR) software could have enabled attackers to manipulate it as a malicious multitool. Shmuel Cohen, a security researcher at SafeBreach, explained how he reverse-engineered and cracked the company's Cortex product. He used it to deploy a reverse shell and ransomware. Palo Alto Networks has fixed all but one of the vulnerabilities associated with his exploit. It is unclear whether other XDR solutions are vulnerable to a similar attack. This article continues to discuss the researcher's exploit of Palo Alto Networks' XDR software.
Dark Reading reports "Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware"
Submitted by grigby1
Submitted by grigby1 CPVI
on