One of the most common questions that arises when PCI is discussed is whether or not Palo Alto Networks is a web application firewall (WAF) and can we address section 6.6 of the PCI DSS requirement. The short answer is no. The differences are pretty clear, so what is it that generates the question? It [...]

In his Dark Reading post, John Sawyer points out that PCI is not an end goal, but a process. I could not have said it any better. As part of the Palo Alto Network marketing team, I get countless requests by our sales team to describe our PCI solution story. “We need a PCI datasheet!” [...]

Holy Crap! Heartland, a card processing service for more that 250,000 small businesses discloses a malware generated breach on inauguration day. The scope is unfathomable. If each of the customers had only 10 credit card customers…you do the math. Like vultures feeding on roadkill, no doubt every security vendor will call on Heartland telling them [...]