{"uuid": "54fbb319-3ab0-480c-a43c-0aa71420ffce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-1579", "type": "seen", "source": "https://infosec.exchange/users/greynoise/statuses/116886144753753051", "content": "This week a long-dormant Palo Alto flaw came back to life in GreyNoise data.\nGlobalProtect CVE-2019-1579 (unauth RCE, CISA KEV) drew only isolated activity through late June, then more than 120 malicious hosts probed it on 06 July, almost all from a single hosting network. Separately, two coordinated hosting fleets ran the week's highest-volume web exploitation, roughly 7.5M connection attempts.\nAccess our public preview At The Edge Clear: https://www.greynoise.io/resources/at-the-edge-clear-070626\nGreyNoise customers get the full weekly brief.", "creation_timestamp": "2026-07-08T20:03:48.171341Z"}