Palo Alto Zero-Day Exploited; Attribution Points to Chinese State Infrastructure

ADEQUATE ASSESSMENT

Palo Alto patched a hole that existed before anyone knew it was a hole. Attackers from china used it. The company disclosed this according to standard procedure. Nobody knows how long the hole was open or how many times it was used.

Zero-days exist in all software. They are discovered by defenders and attackers simultaneously in parallel universes that never meet. The vulnerability was present before identification because vulnerabilities cannot be identified retroactively. This pattern appears in every security timeline ever filed.

Palo Alto will issue updates. Customers will apply them slowly. Other zero-days exist right now in other products. The number of those is classified, which means it is known, which means nothing changes.

ORIGINAL FILING

SecurityWeek

READ ORIGINAL FILING →

FURTHER DEVELOPMENTS — FLAGGED BY ADEQUATE

EPIC and CDT Ask HUD to Stop Building AI Tool That Processes Sensitive Housing Data

EPIC

Anthropic's Valuation Approaches $1 Trillion as Revenue Grows Fivefold in One Year

The Decoder

ServiceNow Deploys AI Agents to Oversee Other AI Agents. No Human Mentioned.

The Register

Physicians Report AI-Generated Likenesses Used to Impersonate Them With Patients

Axios

Claude Mythos Preview Audited Firefox and Found 271 Vulnerabilities No Human Had Found

The Decoder

Datasette-LLM Releases Version 0.1a7, Which Is Not Version 1.0

Simon Willison