Outmatch Adversaries with PAN-OS 11.1 Cosmos & Strata Cloud Manager

Nov 08, 2023
6 minutes
... views

This post is also available in: Français (French) Deutsch (German) Português (Portuguese (Brazil)) Español (Spanish) Italiano (Italian)

Intensifying Threat Landscape

Today’s organizations need complete protection against new and existing threats. A proliferation of data and devices has been matched by increasingly sophisticated cybercriminals who continuously come up with new ways to evade traditional security measures. Adversaries are increasingly leveraging new techniques and technologies to launch more evasive and never-before-seen threats. Moreover, the expansion of the corporate network has complicated the network security stack, forcing organizations to manage and operate a number of point products and tools.

Sprawling corporate networks across multiple locations, connect and support dispersed users working from diverse locations around the globe. And, all of this is happening in the context of an evolving digital landscape where the rapid growth of network traffic and connectivity demands higher performance, flexibility and protection.

AI-Powered Network Security Is Vital to Protecting Modern Organizations

Securing the modern connected organization requires an integrated, unified approach. To do this, security needs to be deployed and managed holistically through a platform with each component, working together seamlessly and leveraging the power of AI to stay ahead of rapidly evolving threats. Al drives tangible customer outcomes at scale, but requires massive amounts of threat data from various sources that can only be collected through a robust infrastructure deployed globally. Given the unique innovations of Palo Alto Networks across network security, we are able to collect large amounts of rich and comprehensive data and deliver exceptional real-time security outcomes for our customers. Of more than 8.6 billion attacks that Palo Alto Networks prevents across our customer base daily, more than 1.5 million are new and unique cyberattacks.

Introducing Strata Cloud Manager and PAN-OS 11.1 Cosmos

Today, Palo Alto Networks is proud to announce PAN-OS 11.1 Cosmos, the next evolution of network security. With the latest upgrade of our industry-leading PAN-OS software, Palo Alto Networks continues to deliver on our commitment to ensuring each day is more secure than the day before. Specifically, we are continuing to advance prevention capabilities to help our customers stay ahead of attackers, and by making it easier than ever before for customers to optimally manage and operate your network security estate.

Cosmos product launch and registration link.
Introducing PAN-OS 11.1 Cosmos and Strata Cloud Manager 

Reimagine Network Security with the Industry’s First Zero Trust Management and Operations Solution

Current approaches to network security can’t adequately secure modern organizations with the lack of predictive, actionable insights and integration across security tools, which leads to security gaps, inconsistent policies and poor operational experiences. A unified security platform should offer complete visibility and greater operational efficiencies to users.

Today, we introduce Strata Cloud Manager – the industry’s first AI-powered Zero Trust management and operations solution. Strata Cloud Manager revolutionizes network security management and operations, strengthening security and proactively preventing network disruptions across all enforcement points. Our sophisticated AI-powered solution helps businesses adopt real-time best practices to improve their security posture. Strata Cloud Manager enables security teams:

  • Predict and Prevent Operational Disruptions – Security teams can forecast deployment health and proactively identify capacity bottlenecks up to 7 days in advance with predictive analytics to prevent operational disruptions.
  • Reduce Misconfigurations and Increase Best Practices and Security Compliance – Security teams can benefit from AI-powered analysis of policies and real-time compliance checks against industry and Palo Alto Networks best practices.
  • Manage Entire Network Security Estate Centrally – For the first time, security teams can manage configuration and security policies across all form factors, including SASE, hardware and software firewalls, as well as all security services to ensure consistency and reduce operational overhead.

Protect Against Emerging Threats with Best-in-Class Inline AI-Powered Security

With over 4,400 machine learning models (and more being added every day) Palo Alto Networks is uniquely positioned to protect enterprises by not only stopping known threats but also sophisticated attackers targeting undiscovered vulnerabilities.

With Palo Alto Networks Cloud Delivered Security Subscriptions, over 60,000 customers benefit from best-in-class protection against new and advanced threats. Further strengthening existing Patient Zero prevention capabilities, Advanced WildFire brings cloud-based malware detection inline to stop a file from being delivered while analysis is taking place, stopping up to 22% more zero-day malware attacks.*

We’ve introduced additional enhancements to Advanced URL Filtering, providing industry-first detection models that can prevent Man-in-the-Middle and SaaS platform-hosted phishing attacks and those that come from phishing kits. Advanced URL Filtering stops up to 88% of malicious URLs at least 48 hours before competitors, ensuring safe access to the web and real-time protection against advanced and evasive phishing attacks.

Building on the inline deep-learning capabilities launched in previous releases, we are introducing new, cloud-delivered detections in Advanced Threat Prevention to prevent 98% of command and control (C2) attacks. We’ve expanded protection against evasive C2 attacks propagated from popular red team tools with new protection against the red team tool, Empire.

Cosmos introduces new industry-first detections in DNS Security that stop advanced DNS-layer threats that use subdomains and stockpiled domains to prevent C2 attacks, data exfiltration and more. With DNS Security, Palo Alto Networks customers can gain 68% more DNS-layer threat coverage than with any other vendor.

PAN-OS 11.1 Cosmos also introduces new enhancements to our IoT and OT security product family (including Enterprise IoT Security, Medical IoT Security and Industrial OT Security) with integrated Device-ID management and policy recommendations in Strata Cloud Manager and Panorama. Palo Alto Networks customers can achieve faster time to visibility with native device discovery techniques in the NGFW, and streamline device policy workflow with device identification, risk and behavior insights all within a single management UI.

Both Strata Cloud Manager and the advancements to our Cloud-Delivered Security Services are also supported on the five new hardware platforms that we are launching today, including the 1.5Tbps PA-7500 firewall. Our industry-leading ML-Powered NGFWs bring best-of-class performance and security to emerging use cases in our customers’ diverse environments. Learn about our new hardware firewalls.

Learn how Strata Cloud Manager and PAN-OS 11.1 Cosmos can help you stay secure in the current threat landscape. Learn about 70+ major additions and updates that will help you out-innovate adversaries with AI, providing faster and more accurate detection of threats to prevent sophisticated, evasive threats.

Secure your spot today and register to learn more about these latest innovations.

*Malware that was previously unknown to Palo Alto Networks.

Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.