Ransomware attacks have evolved over the years from a threat primarily targeting individuals with modest ransom demands, to a sophisticated form of cybercrime that now jeopardizes large companies, government agencies and critical infrastructure. It's increasingly common to hear of a major corporation, educational institution or ...
Ransomware attacks have evolved over the years from a threat primarily targeting individuals with modest ransom demands, to a sophisticated form of cy...
Palo Alto Networks is proud to announce a new cloud location in Taiwan, bringing Cortex XDR, Xpanse, XSOAR, and XSIAM to customers in the country. This is a testament to Palo Alto...
Amid hybrid work and an accelerated shift to the cloud, the use of cloud environments has become the new norm. At Palo Alto Networks, we have seen our Cloud Service Provider (CSP)...
Charting the course of my career, transitioning from a cybersecurity webmaster to chief information security officer (CISO), has given me unique insights (and scars) into the multifaceted nature of cybersecurity. Where preven...
The U.S. Securities and Exchange Commission (SEC) has placed cybersecurity at the center of public company governance with its new cybersecurity incident reporting rule. Companies...
Always Innovating: Innovations in Cloud Native Security for Azure, AWS and GCPWelcome to the September 2023 edition of Always Innovating in Network Security.
If you want to protect applications and workloads throughout today’s complex and interrelated environments, you need software firewalls. But, what exa...
Are you seeking more simplicity and choice to secure your applications and workloads in Google Cloud? You’re not alone. Too often the need to secure applications built and deployed in the cloud — or being moved...
Following our strong Fiscal Year 2023 financial results, we bring you the August 2023 edition of Always Innovating in Network Security. In this edition, we share our latest innovations in Advanced Threat Preven...
Now there’s yet another reason to deploy Cloud NGFW for AWS. The managed cloud firewall service — which provides best-in-class security with AWS cloud native ease of use — is now integrated with the Panorama™ m...
Prisma Access, the cloud-delivered security service edge platform from Palo Alto Networks, expands ZTNA 2.0 coverage to Microsoft Azure AD with Cloud...
We reached a big milestone for our customers with applications in the Azure public cloud. Two months ago, we launched the public preview version of Cloud NGFW for Azure, a managed next-generation firewall (NGFW...
This blog is part of the “Branch of the Future” series where we take a closer look at the four key tenets that next-generation SD-WAN and SASE provide to deliver a branch network that is digital-first, secure a...
Managed service providers (MSPs) globally find themselves in a challenging environment where intense competition and the commoditization of bandwidth have increasingly made it difficult to achieve and maintain...
Many businesses today rely on cloud computing, and AWS is a significant player in this space. Using AWS, though, can be tricky. If not set up correctl...
The traditional network security model has long relied on a simple yet increasingly outdated concept — the secure perimeter. The secure perimeter approach assumes everything inside a network is inherently trust...
Learn how a novel attack vector in GitHub Actions allows attackers to distribute malware across repositories using a technique that exploits the actio...
OpenID Connect (OIDC) is a modern authentication and authorization protocol built on top of the 0Auth 2.0 framework. OIDC enables secure and standardized authentication in applications, particularly web and mobile applications.
Moving to the cloud comes with technical complexities — security being one. Addressing the misconfigurations and risks contributes to this complexity,...
In today’s post, we look at action pinning, one of the profound mitigations against supply chain attacks in the GitHub Actions ecosystem. It turns out, though, that action pinning...
As the cloud continues to dominate the operating landscape, it has also revolutionized identity and access management, giving rise to new challenges — particularly with the proliferation of identities required...
In the cybersecurity maze, finding and addressing vulnerabilities is like chasing shadows. Every point of weakness opens a door to potential threats. While many organizations rely on the CVE system to identify...
In Episode 6 of “This is How We Do It,” Peter Havens, from Cortex product marketing, continues the interview series. He sits down with Yoni Allon, VP Research, to discuss how Palo...
We are thrilled to announce that Cortex® Xpanse™ from Palo Alto Networks has been recognized as the leader of leaders in the recent attack surface management (ASM) market evaluatio...
Remote Desktop Protocol (RDP) is a proprietary protocol developed by Microsoft which provides a user with a graphical interface to connect to another computer over a network connection. The user employs RDP client software, w...
Cloud computing's scalability, adaptability, and cost-efficiency have seen businesses increasingly utilize these services. Nevertheless, with the growth of cloud services come new...
Palo Alto Networks is proud to announce a new cloud location in Taiwan, bringing Cortex XDR, Xpanse, XSOAR, and XSIAM to customers in the country. This is a testament to Palo Alto...
CL0P is distributing ransomware data via torrents. We investigate this new method, including seeds we’ve tracked — disguising victims with Pokemon. Catch th...
Threat activity targeting a Southeast Asian government could provide insight into the workings of APT Gelsemium. We examine the rare TTPs we observed in two att...
APT Stately Taurus (aka Mustang Panda) conducted cyber espionage against a Southeast Asian government, including data exfiltration from compromised networks....
We analyze waves of attacks on a Southeast Asian government linked to Alloy Taurus. By exploiting exchange servers, the attackers established a foothold for lon...
We investigate espionage attacks on a Southeast Asian government. Initially considered a single actor, it was in fact three separate threat actor clusters. Each...
A phony proof-of-concept (PoC) code for CVE-2023-40477 delivered a payload of VenomRAT. We detail our findings, including an analysis of the malicious code....
A threat assessment of Turla (aka Pensive Ursa) breaks down this Russian-based APT's arsenal and techniques used, covering the top 10 active malware employed....
Muddled Libra uses the 0ktapus phishing kit, among other advanced tactics. We detail our observations of their activity using the MITRE ATT&CK framework....
Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.
