Latest Blogs

Copilots in Cybersecurity — Realizing the Promise of Precision
Company & Culture, Products and Services
Copilots in Cybersecurity — Realizing the Promise of Precision
May 07, 2024
By 
Counter AI Attacks with AI Defense
Company & Culture, Products and Services
Counter AI Attacks with AI Defense
May 07, 2024
By 
Prisma SASE 3.0 — Securing Work Where It Happens
Announcement, News & Events, Product Features, Products and Services
Prisma SASE 3.0 — Securing Work Where It Happens
May 02, 2024
By 
AI's Offensive & Defensive Impacts
Must-Read Articles, Products and Services
AI's Offensive & Defensive Impacts
May 01, 2024
By 
Cybersecurity Platformization
Company & Culture, Products and Services
Cybersecurity Platformization
Apr 26, 2024
By 
More on the PAN-OS CVE-2024-3400
Announcement, Company & Culture, Points of View, Products and Services
More on the PAN-OS CVE-2024-3400
Apr 19, 2024
By 

POPULAR BLOGS

Popular Topics

SOC
Cloud Security
AI
Cortex XDR
Prisma SASE
Interview

Corporate Blogs

Accelerating Real Time Security Outcomes with Precision AI
Announcement, Products and Services
Accelerating Real Time Security Outcomes with Precision AI
New capabilities enable customers to counter AI with AI, secure AI by design and simplify security.AI Is already transforming every enterprise. AI has...
May 07, 2024
By 
Palo Alto Networks Recognized by Gartner as a Leader in SSE Report
Announcement, News & Events, Product Features, Products and Services
Palo Alto Networks Recognized by Gartner as a Leader in SSE Report
Today, Palo Alto Networks is proud to announce that it has been named a Leader in the 2024...
Apr 18, 2024
By 
The Evolving Threat of Ransomware — A Call to Action for Cybersecurity
Announcement, Government, Public Sector
The Evolving Threat of Ransomware — A Call to Action for Cybersecurity
In the ever-evolving landscape of cybersecurity, the specter of ransomware looms larger than ever before. Once considered merely an IT...
Apr 17, 2024
By 
What’s Next in Cortex — XSIAM for Cloud and Other Innovations
Announcement, News and Events, Product Features
What’s Next in Cortex — XSIAM for Cloud and Other Innovations
Security operations teams are tasked with solving a variety of different challenges. They face the complexities of protecting growing a...
Apr 15, 2024
By 
Google Cloud and Palo Alto Networks Deliver Cloud-Native NGFW Service
Announcement, Next-Generation Firewalls, Products and Services
Google Cloud and Palo Alto Networks Deliver Cloud-Native NGFW Service
Google Cloud and Palo Alto Networks are excited to announce the general availability of Go...
Apr 11, 2024
By 
Entering the Next Chapter of SASE at InterSECt 2024
Announcement, Events, News & Events, Product Features, Products and Services
Entering the Next Chapter of SASE at InterSECt 2024
Change is a fact of life and digital transformation. It comes with how workers access business apps, how organizations operate hybrid w...
Apr 09, 2024
By 
Unleash Platform Power with Strata Cloud Manager’s Command Center
Announcement, Products and Services
Unleash Platform Power with Strata Cloud Manager’s Command Center
Every week, we get the privilege of talking to customers and thought leaders across diverse industries, delving into their cybersecurit...
Apr 08, 2024
By  and
The Power of AI Assistants and Advanced Threat Detection
Must-Read Articles, Product Features, Products and Services
The Power of AI Assistants and Advanced Threat Detection
One short-term prediction from Spisak is the emergence of AI-powered cybersecurity “assistants,” which he envisions will serve as co-pilots to defenders, boosting their efficiency...
Apr 04, 2024
By 
See all Corporate blogs

Network Security Blogs

Strata Copilot - Accelerating to an Autonomous Cybersecurity Future
Uncategorized, Zero Trust Security
Strata Copilot - Accelerating to an Autonomous Cybersecurity Future
Today, Palo Alto Networks is sharing its vision for fully autonomous cybersecurity at our virtual event Prepare for a Brand-New Fight. As part of that...
May 07, 2024
By 
A Brand New Fight: Securing Your AI-Powered Applications
Next-Generation Firewalls, Uncategorized
A Brand New Fight: Securing Your AI-Powered Applications
How do you unleash the competitive edge that comes from game-changing technologies while simultaneously keeping them secure? It’s a burning question for security professionals looking for ways to embrace AI usa...
May 07, 2024
By 
PAN-OS 11.2 Quasar Helps Customers Secure Networks Everywhere, Faster
Next-Generation Firewalls
PAN-OS 11.2 Quasar Helps Customers Secure Networks Everywhere, Faster
The future of secure networking is here with PAN-OS 11.2 Quasar, Quantum-Safe VPN, ADEM for next-generation firewalls, Advanced DNS Security and the introduction of new ruggedized...
May 02, 2024
By 
Google Cloud and Palo Alto Networks Deliver Cloud-Native NGFW Service
Announcement, Next-Generation Firewalls, Products and Services
Google Cloud and Palo Alto Networks Deliver Cloud-Native NGFW Service
Google Cloud and Palo Alto Networks are excited to announce the general availability of Google Cloud Next-Generation Firewall (NGFW) Enterprise. Power...
Apr 11, 2024
By 
Unleash Platform Power with Strata Cloud Manager’s Command Center
Announcement, Products and Services
Unleash Platform Power with Strata Cloud Manager’s Command Center
Every week, we get the privilege of talking to customers and thought leaders across diverse industries, delving into their cybersecurity challenges. A...
Apr 08, 2024
By  and
Network Perimeter
URLocked Out: How Attackers Use The Web to Host and Deliver Ransomware
Today, ransomware continues to be the most damaging form of cybercrime for organizations. Palo Alto Networks Unit42 threat research team found that demands ranged anywhere from $3,...
Apr 04, 2024
By 
Getting to Know DNS Hijacking: How Adversaries Continue to Abuse DNS
Network Perimeter
Getting to Know DNS Hijacking: How Adversaries Continue to Abuse DNS
Accessing a site today should be as straightforward as sending a letter to a trusted friend across the country. Imagine corrupted postal workers swapping out your heartfelt letter...
Apr 03, 2024
By 
VM-Series Virtual Firewalls Top SecureIQLab Cloud Firewall Test
Next-Generation Firewalls, Uncategorized
VM-Series Virtual Firewalls Top SecureIQLab Cloud Firewall Test
Technology and testing research firm SecureIQLab has published its 2024 Advanced Cloud Firewall (ACFW) security validation report, which shows Palo Al...
Apr 02, 2024
By 
See all Network Security blogs

SASE Blogs

A Brand New Fight: Securing Your AI-Powered Applications
Next-Generation Firewalls, Uncategorized
A Brand New Fight: Securing Your AI-Powered Applications
How do you unleash the competitive edge that comes from game-changing technologies while simultaneously keeping them secure? It’s a burning question for security professionals looking for ways to embrace AI usa...
May 07, 2024
By 
Strata Copilot - Accelerating to an Autonomous Cybersecurity Future
Uncategorized, Zero Trust Security
Strata Copilot - Accelerating to an Autonomous Cybersecurity Future
Today, Palo Alto Networks is sharing its vision for fully autonomous cybersecurity at our virtual event Prepare for a Brand-New Fight....
May 07, 2024
By 
The Critical Role of Enterprise Browsers in a SASE Framework
Announcement, News & Events, Product Features, Products and Services, Use-Cases
The Critical Role of Enterprise Browsers in a SASE Framework
From hybrid work models to AI assistance, today’s workplace is all about maximizing productivity. Modern organizations are transitionin...
May 02, 2024
By 
Prisma SASE 3.0 — Securing Work Where It Happens
Announcement, News & Events, Product Features, Products and Services
Prisma SASE 3.0 — Securing Work Where It Happens
In today's work environment, employees demand the freedom to be productive from anywhere, using any device, and accessing any applicati...
May 02, 2024
By 
Palo Alto Networks Recognized by Gartner as a Leader in SSE Report
Announcement, News & Events, Product Features, Products and Services
Palo Alto Networks Recognized by Gartner as a Leader in SSE Report
Today, Palo Alto Networks is proud to announce that it has been named a Leader in the 2024...
Apr 18, 2024
By 
IIJ Launches Managed Prisma SASE with SP Interconnect
Partner Integrations, Partners, Products and Services
IIJ Launches Managed Prisma SASE with SP Interconnect
We are thrilled to announce that Internet Initiative Japan (IIJ), Japan’s pioneering internet service provider, has launched a powerful new solution: Palo Alto Networks Prisma SASE...
Apr 16, 2024
By 
Prisma Access Unlocks End-to-End IPv6 Network Transformation
Product Features, Products and Services
Prisma Access Unlocks End-to-End IPv6 Network Transformation
Prisma Access, a market-leading security service edge (SSE) component of Palo Alto Networks flagship Prisma SASE solution, is expanding its support for IPv6, extending beyond priva...
Apr 11, 2024
By  and
Entering the Next Chapter of SASE at InterSECt 2024
Announcement, Events, News & Events, Product Features, Products and Services
Entering the Next Chapter of SASE at InterSECt 2024
Change is a fact of life and digital transformation. It comes with how workers access business apps, how organizations operate hybrid w...
Apr 09, 2024
By 
See all SASE blogs

Cloud Native Security Blogs

Prisma Cloud Copilot: Don’t Just Ask, Act
Announcement, Cloud Security, Platform
Prisma Cloud Copilot: Don’t Just Ask, Act
Generative AI's acceleration of software delivery is straining current approaches to cloud security, making scaling nearly impossible because, as Gartner points out, organizations don’t have the skilled resourc...
May 07, 2024
By  and
Announcing Prisma Cloud AI-SPM: Protect Your Complete AI Stack
Announcement, Data Security Posture Management
Announcing Prisma Cloud AI-SPM: Protect Your Complete AI Stack
As artificial intelligence (AI) becomes ubiquitous, it introduces security challenges that have never been considered. AI security posture management...
May 07, 2024
By 
Best Practices for Managing Vulnerabilities in the Cloud
Cloud Security, Code to Cloud
Best Practices for Managing Vulnerabilities in the Cloud
If you’ve ever questioned the importance of vulnerability management, consider these facts:To make matters worse, attackers are wasting no time in taking advantage of this wave, exploiting vulnerabilities withi...
May 02, 2024
By  and
Secure State and Local Cloud Modernization Efforts
Cloud Security, Code to Cloud, Digital Transformation
Secure State and Local Cloud Modernization Efforts
In its commitment to be the state and local government's cybersecurity partner of choice, Prisma Cloud by Palo Alto Networks has achieved StateRAMP Authorized status, providing unparalleled security for moderni...
Apr 25, 2024
By 
Security Theater: Don’t Hang your Hat on Compliance
Application Security, Cloud Security, Compliance
Security Theater: Don’t Hang your Hat on Compliance
Security breaches can cost millions. Everyone answers to someone — whether it's a manager, director, CISO, CEO or the company board. They’re going to want to know how security teams are protecting their infrast...
Apr 18, 2024
By  and
Prisma Cloud Adds Telecommunications Security Act Compliance Framework
Cloud Security Posture Management, Products and Services
Prisma Cloud Adds Telecommunications Security Act Compliance Framework
Prisma Cloud has added the Telecommunications Security Act to its list of out-of-the-box compliance standards. With this release, public electronic co...
Apr 17, 2024
By 
How to Build an Enterprise Data Security Team
Data Detection and Response, Data Security, Data Security Posture Management
How to Build an Enterprise Data Security Team
Leading a data security company comes with great responsibility. A good chunk of my time is spent with security leaders discussing top-of-mind trends and topics.
Apr 16, 2024
By 
Why Healthcare Needs a Code to Cloud Security Platform
Code to Cloud, Healthcare
Why Healthcare Needs a Code to Cloud Security Platform
The adoption of cloud infrastructure for application modernization is a significant trend, and healthcare is no different. However, the sensitive nature of health data, combined with the healthcare sector's inc...
Apr 11, 2024
By  and
See all Cloud Native Security blogs

Security Operations Blogs

Cortex Copilot - In SecOps, You Should Secure Smarter, Not Harder
Announcement, Must-Read Articles, Product Features
Cortex Copilot - In SecOps, You Should Secure Smarter, Not Harder
There are a lot of moving parts in security operations. As cyberthreats continue advancing in speed and complexity, analysts must investigate and reme...
May 07, 2024
By 
AI's Offensive & Defensive Impacts
Must-Read Articles, Products and Services
AI's Offensive & Defensive Impacts
As the hype around AI continues to ramp up, cybersecurity practitioners are trying to separate reality from fiction when it comes to how artificial intelligence will impact their field. Our discussion includes some candid pre...
May 01, 2024
By 
Leading with a Prevention-First Approach for Cloud Detection and Response
Must-Read Articles, Use-Cases
Leading with a Prevention-First Approach for Cloud Detection and Response
As cloud computing continues to evolve and becomes the ad-hoc standard for many of the world’s largest enterprises, we also see attack surfaces growing and the escalation of cybert...
Apr 17, 2024
By 
Announcement, Must-Read Articles, News and Events
Confirm Attack Surface Vulnerabilities with Cortex Xpanse Attack Surface Te...
As organizations’ attack surfaces continue to grow, we’ve seen that traditional vulnerability testing is insufficient to secure an orga...
Apr 15, 2024
By 
XSOAR 8 On-Premises Now Available!
Announcement, Must-Read Articles, News and Events, Product Features
XSOAR 8 On-Premises Now Available!
We are pleased to announce the support for on-premises deployments for XSOAR 8. New customers of Cortex XSOAR 8 who require an on-premises deployment for policy or regulatory reaso...
Apr 15, 2024
By 
What’s Next in Cortex — XSIAM for Cloud and Other Innovations
Announcement, News and Events, Product Features
What’s Next in Cortex — XSIAM for Cloud and Other Innovations
Security operations teams are tasked with solving a variety of different challenges. They face the complexities of protecting growing a...
Apr 15, 2024
By 
Playbook of the Week: Prisma Cloud Compute - Compliance Alert v2
Playbook of the Week
Playbook of the Week: Prisma Cloud Compute - Compliance Alert v2
Maintaining compliance with regulations and security standards is paramount for organizations in today's dynamic and ever-evolving cybersecurity landscape. However, simply receivin...
Apr 11, 2024
By 
Playbook of the Week: Streamlining Suspicious Data Upload Alert Investigations
Playbook of the Week
Playbook of the Week: Streamlining Suspicious Data Upload Alert Investigati...
Data exfiltration refers to the unauthorized transfer of sensitive or confidential information from a network or system to an external location. This covert activity often occurs s...
Apr 05, 2024
By 
See all Security Operations blogs

Unit 42 Threat Research

company article
Threat Brief Threat Briefs and Assessments
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activi...
We detail Operation MidnightEclipse, a campaign exploiting command injection vulnerability CVE-2024-3400, and include protections and mitigations....
April 12, 2024
By  Unit 42
company article
Cloud
Muddled Libra’s Evolution to the Cloud
Muddled Libra now actively targets CSP environments and SaaS applications. Using the MITRE ATT&CK framework, we outline observed TTPs from incident response....
April 9, 2024
By  Margaret Zimmermann
company article
Malware
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the...
We describe the characteristics of malware-initiated scanning attacks. These attacks differ from direct scanning and are increasing according to our data....
April 8, 2024
By  Beliz Kaleli , Fang Liu , Peng Peng , Alex Starov , Joey Allen , Stefan Springer
company article
Cloud Threat Brief Threat Briefs and Assessments Vulnerability
Threat Brief: Vulnerability in XZ Utils Data Compression Library ...
An overview of CVE-2024-3094, a vulnerability in XZ Utils, and information about how to mitigate....
March 30, 2024
By  Unit 42
company article
Vulnerability
Exposing a New BOLA Vulnerability in Grafana
Unit 42 researchers discovered CVE-2024-1313, a broken object level authorization (BOLA) vulnerability in open-source data visualization platform Grafana. ...
March 27, 2024
By  Ravid Mazon , Jay Chen
company article
Malware
ASEAN Entities in the Spotlight: Chinese APT Group Targeting
We analyze the actions of two separate Chinese APTs — including Stately Taurus — that targeted ASEAN-affiliated entities through different methods....
March 26, 2024
By  Unit 42
company article
Malware
Large-Scale StrelaStealer Campaign in Early 2024
We unravel the details of two large-scale StrelaStealer campaigns from 2023 and 2024. This email credential stealer has a new variant delivered through zipped J...
March 22, 2024
By  Benjamin Chang , Goutam Tripathy , Pranay Kumar Chhaparwal , Anmol Maurya , Vishwa Thothathri
company article
Malware
Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detectio...
Iran-linked APT Curious Serpens is using a new backdoor, FalseFont, to target the aerospace and defense industries through fake job recruitment....
March 21, 2024
By  Tom Fakterman , Daniel Frank , Jerome Tujague
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Popular Resources

Legal Notices

Popular Links