• Blog
  • Security Operations

Security Operations

Continuing the Mission: Securing Black Hat Asia 2026

Continuing the Mission: Securing Black Hat Asia 2026

Black Hat Asia stands as the premier cybersecurity event in the APAC region, where elite researchers unveil zero-day exploits, trainers demonstrate cutting-edge attack techniques, and thousands of security professionals gather at Marina Bay Sands in Singapore to push the boundaries of what's possible. The conference demands a un...

Apr 15, 2026
By  and

Security Operations

Must-Read Articles
Product Features
Use-Cases
News and Events
Partner Integrations
Playbook of the Week
Securing the Agentic Endpoint
AI Security, Announcement, Must-Read Articles, News and Events, Product Features, Products and Services

Securing the Agentic Endpoint

Secure the Agentic Endpoint. Traditional security misses the risk of AI agents. Learn how Palo Alto Networks and the Koi acquisition bring new protection.
Feb 17, 2026
By 
Unmasking Boggy Serpens' AI-Powered Surge
AI and Cybersecurity, Must-Read Articles, Product Features

Unmasking Boggy Serpens' AI-Powered Surge

Boggy Serpens (MuddyWater) weaponizes trust & AI to create disposable malware, bypassing traditional defense. Unit 42 reveals how behavioral detection stops them.
Apr 07, 2026
By 
Why Your EDR Strategy Needs a Backup Plan
Must-Read Articles, Product Features, Uncategorized

Why Your EDR Strategy Needs a Backup Plan

Mitigate single-vendor EDR risk. See why 85% of organizations are adding a secondary endpoint vendor for infrastructure resilience & continuity.
Apr 07, 2026
By 
Why Small Security Teams Are Winning With Cortex XDR
Product Features, Use-Cases

Why Small Security Teams Are Winning With Cortex XDR

"Lean security teams, enterprise-grade threats. See how Cortex XDR delivers 100% detection, 99.6% less alert noise, and automated response , no large SOC required
Apr 02, 2026
By 
Introducing Unit 42 Managed XSIAM 2.0
Announcement, Incident Response, Products and Services, Threat Prevention, Unit 42

Introducing Unit 42 Managed XSIAM 2.0

Unit 42 Managed XSIAM 2.0 delivers a 24/7 managed SOC with continuous detection, investigation, and full-cycle remediation.
Feb 17, 2026
By 
2026 Unit 42 Global Incident Response Report — Attacks Now 4x Faster
Announcement, Must-Read Articles, Reports, Threat Advisories - Advisories, Unit 42

2026 Unit 42 Global Incident Response Report — Attacks Now 4x Faster

Attackers are leveraging identity, AI, and supply chain exposure. Unit 42's Global 2026 IR Report reveals faster, broader, harder-to-contain threats.
Feb 17, 2026
By 
When Security Becomes an Afterthought
AI and Cybersecurity, AI Security, Interview, Must-Read Articles, People of Palo Alto Networks, Points of View

When Security Becomes an Afterthought

As AI deployment races ahead, security scrambles to keep up. Nikesh Arora on why AI's biggest risk is treating security as an afterthought.
Feb 12, 2026
By 
Stop Chasing Ghosts: The Strategic Case for Compensating Controls
Must-Read Articles, Product Features

Stop Chasing Ghosts: The Strategic Case for Compensating Controls

Transform theoretical risk into operational outcomes. Cortex Exposure Management’s new Security and Compensating Controls feature reveals your true re...
Feb 11, 2026
By  and
Ransomware Attacks: Why Your Endpoint Protection Can't Keep Up
AI and Cybersecurity, Must-Read Articles, Product Features, Uncategorized

Ransomware Attacks: Why Your Endpoint Protection Can't Keep Up

Ransomware attacks are 100x faster, beating legacy EPPs. Learn how Cortex XDR stops 25-minute attacks before exfiltration with machine-speed defense.
Feb 11, 2026
By 
A Day in the Life with Your AgentiX Automation Engineer Agent
AI and Cybersecurity, Automation of the Week, Product Features, Uncategorized

A Day in the Life with Your AgentiX Automation Engineer Agent

Stop coding, start conversing. Introducing the Automation Engineer Agent, your new AI partner for instant script generation in Cortex AgentiX
Feb 05, 2026
By 
Boost SOC Efficiency: Data Control with Cortex XSIAM & Chronosphere
News and Events, Product Features

Boost SOC Efficiency: Data Control with Cortex XSIAM & Chronosphere

Gain fine-grained data control for security. Cortex XSIAM & Chronosphere Telemetry Pipeline optimize data, cut costs, and boost AI-driven threat detec...
Jan 29, 2026
By 
Intercepting the ToolShell Zero-Day Before the Headlines
Must-Read Articles

Intercepting the ToolShell Zero-Day Before the Headlines

How Unit 42's threat hunters warned customers about Tool Shell before the headlines broke. Discover the power of proactive hunting for zero-day threats.
Jan 28, 2026
By 
Cortex AgentiX: A Behind-the-Scenes Perspective
AI and Cybersecurity, Automation of the Week, Must-Read Articles, Product Features

Cortex AgentiX: A Behind-the-Scenes Perspective

A behind-the-scenes look at how we build and manage agentic AI agents with Cortex AgentiX.
Jan 08, 2026
By  and
When Security Becomes an Afterthought
AI and Cybersecurity, AI Security, Interview, Must-Read Articles, People of Palo Alto Networks, Points of View

When Security Becomes an Afterthought

As AI deployment races ahead, security scrambles to keep up. Nikesh Arora on why AI's biggest risk is treating security as an afterthought.
Feb 12, 2026
By 
Boost SOC Efficiency: Data Control with Cortex XSIAM & Chronosphere
News and Events, Product Features

Boost SOC Efficiency: Data Control with Cortex XSIAM & Chronosphere

Gain fine-grained data control for security. Cortex XSIAM & Chronosphere Telemetry Pipeline optimize data, cut costs, and boost AI-driven threat detec...
Jan 29, 2026
By 
A Day in the Life with Your AgentiX Automation Engineer Agent
AI and Cybersecurity, Automation of the Week, Product Features, Uncategorized

A Day in the Life with Your AgentiX Automation Engineer Agent

Stop coding, start conversing. Introducing the Automation Engineer Agent, your new AI partner for instant script generation in Cortex AgentiX
Feb 05, 2026
By 
Introducing the Cortex MCP Server
AI and Cybersecurity, Automation of the Week, Must-Read Articles

Introducing the Cortex MCP Server

This blog introduces the new Cortex MCP, bringing real-time intelligence from XSIAM data to your preferred LLM application.
Dec 04, 2025
By  and
Forrester Names Palo Alto Networks a Leader in Attack Surface Management
Announcement, News and Events, Products and Services

Forrester Names Palo Alto Networks a Leader in Attack Surface Management

Palo Alto Networks was named a leader in attack surface management by Forrester for Cortex Xpanse.
Sep 24, 2024
By 
A Leader in the 2025 Gartner Magic Quadrant for EPP — 3 Years Running
Announcement, Must-Read Articles, News and Events, Product Features, Products and Services, Reports

A Leader in the 2025 Gartner Magic Quadrant for EPP — 3 Years Running

Redefining endpoint security with Cortex XDR a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platf...
Jul 17, 2025
By 
A Deep Dive Into Malicious Direct Syscall Detection
Must-Read Articles, Non classifié(e), Product Features

A Deep Dive Into Malicious Direct Syscall Detection

This blog explains how attackers use direct syscalls to overcome most EDR solutions, by first discussing the conventional Windows syscall flow and how most EDR solutions monitor those calls.
Feb 13, 2024
By  and

Subscribe to Security Operations Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts