China just hosted its first fully autonomous robot soccer match — no remotes, no commands, just AI making every decision on the field. The 3-on-3 game revealed major strides in real-time coordination, strategy, and machine independence.
Axelera AI is redefining edge computing with affordable, high-performance AI chips. From retail loss prevention to robotics, its Metis platform delivers real-time inference at low cost and energy. With major EU backing, Axelera is accelerating Europe’s push for AI hardware sovereignty.
Asia’s chipmakers are riding an AI-driven rally as NVIDIA’s Blackwell chips ignite global demand. From TSMC and SK Hynix to Japan’s Advantest, the region’s tech giants are scaling fast. With easing trade tensions and national AI strategies aligning, Asia is in the driver’s seat.
Palo Alto Networks Discloses PAN-OS Zero-Day Under Attack
A zero-day vulnerability in Palo Alto Networks' PAN-OS, CVE-2024-3400, is under active attack, allowing unauthenticated root access. The flaw affects versions 10.2, 11.0, and 11.1, with patches due by April 14, 2024. Users should enable Threat Prevention ID 95187 or disable telemetry.
Decoding the Zero-Day Exploit in Palo Alto Networks' Firewalls
A zero-day vulnerability in Palo Alto Networks' PAN-OS software, labelled CVE-2024-3400, has been under attack since March 26, 2024, well before it was publicly disclosed.
Users of affected devices should enable Threat Prevention Threat ID 95187 if that is available, otherwise, disable device telemetry until patches are available from the vendor, per vendor instructions.Base Score: 10.0 CRITICAL
This flaw, which received a CVSS severity score of 10.0, allows unauthenticated attackers to run arbitrary commands with root access on affected firewalls.
It affects versions 10.2, 11.0, and 11.1 of the PAN-OS software when configured with GlobalProtect gateway and device telemetry.
This ongoing exploitation, referred to as Operation MidnightEclipse, is being tracked by Palo Alto Networks' Unit 42. It involves a command injection vulnerability that threat actors have used to install a cron job.
This job periodically executes commands from an external server, specifically "172.233.228[.]93/policy" or "172.233.228[.]93/patch", using the bash shell.
"The attackers have meticulously managed an access control list for the command-and-control server to ensure only the targeted device can access it," explains Unit 42’s analysis.
The vulnerable versions are PAN-OS 10.2, 11.0, and 11.1, and fixes for these versions are expected by April 14, 2024. The vendor will implement hotfixes by Sunday with the release of the following versions:
PAN-OS 10.2.9-h1
PAN-OS 11.0.4-h1
PAN-OS 11.1.2-h3
Products like Cloud NGFW, Panorama appliances, and Prisma Access are not affected. An overview of the impact can be seen in the table below:
Meanwhile, a threat researcher named Yutaka Sejiyama recently noted on X, "Scans show there are currently 82,000 exposed devices online that might be vulnerable to CVE-2024-34000, with 40% residing in the United States."
In response to the discovery, Volexity, which detected active exploitation of the flaw, identified a Python-based backdoor being delivered through these attacks.
"The script will then create another thread that runs a function called restore," said a spokesperson from Unit 42.
"The restore function takes the original content of the bootstrap.min.css file, as well as the original access and modified times, sleeps for 15 seconds and writes the original contents back to the file and sets the access and modified times to their originals."
These manoeuvres aim to erase traces of the intrusion, necessitating rapid exfiltration of data within 15 seconds before restoration of the files.
As Volexity pointed out, the threat actor has been able to create a reverse shell, download tools, infiltrate internal networks, and exfiltrate data, although the full scope of the campaign remains unclear.
Australian organizations with a Palo Alto Threat Prevention subscription can defend against this CVE by activating Threat ID 95187, a measure introduced in the latest Applications and Threats content update.
The ACSC is actively monitoring the situation and is prepared to offer support and guidance as needed. Impacted organizations or individuals in need of assistance are encouraged to reach out through the hotline at 1300 CYBER1 (1300 292 371).
Meanwhile, CISA has included this vulnerability in its Known Exploited Vulnerabilities catalogue, compelling federal agencies to implement required patches by April 19 to prevent potential threats. Palo Alto Networks is expected to release a remedial update for this vulnerability by April 14.
Asia-Pacific faced over one-third of all cyberattacks in 2024, making it the world’s top target. From manufacturing breaches to talent shortages and rising ransomware, CNC investigates how a region of digital ambition became cybercrime’s global epicentre.
AI is reshaping Western defense, but with progress comes risk. Australia stands at a crossroads: lead in securing AI-driven military tech or risk importing vulnerabilities. As global powers weaponize algorithms, oversight, cooperation, and resilience are now mission-critical.
A Chinese ship captain has been charged in Taiwan for deliberately damaging a subsea cable, marking a rare prosecution tied to infrastructure sabotage. The case highlights growing concerns over global undersea cable vulnerabilities amid rising tensions with China.
Australia is facing a double threat to its financial security: cyberattacks on major superannuation funds and the fallout from Trump’s “Liberation Day” tariff declaration. Both have exposed deep vulnerabilities in retirement savings, leaving Australia’s future wealth increasingly at risk.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!