posted by: Wade on November 8, 2011 1:17 PM
filed in: Uncategorized
tagged: threat prevention, WildFire, zero-day
Findings from WildFire
It has been a busy and exciting week at Palo Alto Networks where we have announced a brand new platform – the PA-200 a branch office appliance for the distributed enterprise , a new software update – PAN-OS 4.1 with more than 50 new features , and WildFire™, a completely new capability of the next-generation firewall that allows security teams to detect and remediate unknown and targeted malware. Click to see Nir talking about the release on Bloomberg TV. I want to share a little bit more …Continue reading
Exploring the Security and Threat Landscape as a SecurityWeek Contributor
I have been invited to be a regular guest columnist for SecurityWeek, a well-known, industry-respected publication that covers IT security from avariety of angles. In my first few posts, I explore the “Evolution of Malware” (September 19, 2011) and the ways to combat it in “Getting Your Hands Dirty in the Fight on Modern Malware” (October 3, 2011) and “Getting Your Hands Dirty In the Fight on Malware, Part 2” (October 17, 2011).
In the months to come, I will discuss a number of other topics ranging from how modern threats can compromise enterprise networks; how the evolution and increasing demands of the mobile employee opens new vectors for attacks as well as offer techniques for organizations to consider when dealing with network security threats.
I encourage customers and readers to share their feedback each week in the comments section of the posts, or here on this blog as well.
DigiNotar Compromised, Removed as Trusted CA
Earlier this week Palo Alto Networks released an emergency content release to remove DigiNotar as a trusted CA in PAN-OS and to block any signatures signed by them. Customers who have not yet refreshed should refer to Emergency Content Release 265-1115 available via the Palo Alto Networks Support site.
This measure of course comes in the wake of the news that DigiNotar has been compromised and hackers were able to generate fraudulent certificates for hundreds of domains including Google and Yahoo. This exposure is very similar to, yet far more extensive than the Comodo breach seen earlier in the year, and is the latest example of attacks that are targeting some of the foundational building blocks of IT security. This is just the latest reminder that we should bring a healthy skepticism into any discussion of “trust” in our networks, and why full visibility into all traffic is increasingly a requirement for any credible approach to network security.
Trust, but verify.
