DNSSEC Outage Affects Germany's .DE Domain and Critical PAN-OS Vulnerability Disclosed

On May 7, 2026, the SANS Internet Storm Center reported a DNSSEC-related outage affecting Germany's .DE top-level domain, caused by a failed key rotation process. The incident disrupted DNS resolution for .DE websites for several hours, with no specific details released on whether the error stemmed from delayed key activation or premature signature updates. Cloudflare responded by temporarily disabling DNSSEC validation to restore access, prioritizing availability over security. Additionally, Palo Alto Networks disclosed a critical pre-authentication buffer overflow vulnerability (CVSS 9.3) in PAN-OS's User-ID authentication portal, already exploited in limited targeted attacks, with patches available. Google's May Android security update addressed only one publicly listed critical vulnerability, reflecting a policy shift to disclose only high-severity flaws, while Android 13 reached end-of-life two months prior, halting further updates. The video highlighted DNSSEC's complexity and failure modes, as well as the urgency of patching exposed enterprise authentication portals.