The Frontier AI SOC Has Arrived
Introducing native support for leading frontier AI models, including Claude Sonnet 4.6, Claude Opus 4.8 and Gemini 3.5 Flash across the Cortex platform.
Security Operations
Security Operations
Must-Read Articles
Product Features
Use-Cases
News and Events
Partner Integrations
Playbook of the Week
From WarGames to Cyberwar
Code War author Allie Mellen explains how nations hack, why attribution fails, and what AI changes in cyberwarfare. Learn why "Fighting AI with AI" is the only effective defense.
Cortex ITDR: Detecting Cyber threats in Google Workspace
Learn how threat actors leverage Google Workspace, and discover how Cortex XSIAM detects such attacks as part of the ITDR module
The End of the Visibility Tax
Stop paying the visibility tax. Learn why Palo Alto Networks made data ingestion of enhanced application logs free to help CISOs eliminate blind spots and reduce SOC TCO.
The Clock Is Running: What Frontier AI Means for Your SOC
Frontier AI is accelerating cyberattacks, creating complex exploits in hours. Learn why your SOC has six months to adapt and what Cortex's defensive testing reveal
More Blogs
Displaying 1—16 of
590 results
Sort By:
Shifting from Data Hoarding to Active Defense: Navigating the New Era of OM...
The release of OMB Memo M-26-14 ("Ensuring Effective and Efficient Agency Logging and Network Visibility to Defend Against Evolving Cyber Threats") ma...
How Koi Protects Against Developer Supply Chains
A poisoned VS Code extension compromised 3,800 GitHub repos in minutes. Here's why traditional EDR missed it and how Agentic Endpoint Security closes the gap.
What’s New in Cortex (May ‘26)
The latest Cortex release delivers enhancements to agentic investigation and response, cloud-native security offerings, and new Idira integrations.
Cortex XDR is the Only Endpoint Security Market Leader Certified in AVC’s E...
Cortex XDR excelled in the 2026 AV-Comparatives EDR Test, consolidating 68 alerts into 3 incidents for efficient investigation. Read the results
How Mythos-Class Models Change Exposure Management
Frontier AI exposure management with Xpanse and Cortex Exposure Management helps teams find and reduce exploitable exposure before attackers act.
39 Seconds — That's How Long It Takes to Lose Your Data
Speed is the new cyber perimeter. Wendi Whitmore, CISO at Palo Alto Networks, explains how to fight machine-speed attacks and secure AI systems to build robust cyber resilience with AI-powered defense.
The Dangerous Momentum of Autodownload Phishing
Learn how attackers weaponize SaaS auto-download links and rotating phishing lures to deliver RMM malware. See how Cortex Email Security stops this forced-momentum attack.
Unveiling Autonomous Playbooks: Immediate Threat Response in XSIAM
Discover how Cortex XSIAM autonomous playbooks revolutionize incident response by automating workflows and reducing manual toil for faster, more effic...
Don’t Get Reeled In: The Case for AI-Driven Phishing Response
Stop drowning in phishing alerts. See how the Cortex Email Investigation agent uses AI to cluster campaigns, reason through alerts, and scale your SOC...
Threat Intelligence in the Era of AI
Discover how a custom threat intelligence AI agent automates security tasks, analyzes global risks in real-time, and strengthens your defense against cyberthreats.
Continuing the Mission: Securing Black Hat Asia 2026
Black Hat Asia stands as the premier cybersecurity event in the APAC region, where elite researchers unveil zero-day exploits, trainers demonstrate cutting-edge attack techniques, and thousands of security professionals gather at Marina Bay...
Unmasking Boggy Serpens' AI-Powered Surge
Boggy Serpens (MuddyWater) weaponizes trust & AI to create disposable malware, bypassing traditional defense. Unit 42 reveals how behavioral detection stops them.
Why Your EDR Strategy Needs a Backup Plan
Mitigate single-vendor EDR risk. See why 85% of organizations are adding a secondary endpoint vendor for infrastructure resilience & continuity.
Why Small Security Teams Are Winning With Cortex XDR
"Lean security teams, enterprise-grade threats. See how Cortex XDR delivers 100% detection, 99.6% less alert noise, and automated response , no large SOC required
When Global Conflict Reaches the SOC: Respond at Scale with XSIAM
Operation Epic Fury response: Cortex XSIAM ASM and TIM find exposed assets, validate indicators, and automate hardening, phishing defense, and lookbac...
Securing Data in the AI Era: Purpose-Built DLP for the Modern Endpoint
Stop data leaks to AI tools, ChatGPT, & desktop apps with Cortex Endpoint DLP. Get context-aware, on-device security against Shadow IT exfiltration.
More Blogs
Displaying 1—16 of
589 results
Sort By:
Introducing Unit 42 Managed XSIAM 2.0
Unit 42 Managed XSIAM 2.0 delivers a 24/7 managed SOC with continuous detection, investigation, and full-cycle remediation.
2026 Unit 42 Global Incident Response Report — Attacks Now 4x Faster
Attackers are leveraging identity, AI, and supply chain exposure. Unit 42's Global 2026 IR Report reveals faster, broader, harder-to-contain threats.
AI Security, Announcement, Must-Read Articles, News and Events, Product Features, Products and Services
Securing the Agentic Endpoint
Secure the Agentic Endpoint. Traditional security misses the risk of AI agents. Learn how Palo Alto Networks and the Koi acquisition bring new protection.
The Agentic AI Platform for the Agentic Workforce of the Future
Introducing Cortex AgentiX, the Agentic AI platform for the autonomous enterprise, delivering an AI agent workforce for security and IT.
How Mythos-Class Models Change Exposure Management
Frontier AI exposure management with Xpanse and Cortex Exposure Management helps teams find and reduce exploitable exposure before attackers act.
Forrester Names Palo Alto Networks a Leader in XDR
Palo Alto Networks was named a leader in extended detection and response platforms by Forrester for Cortex XDR.
Forrester Names Palo Alto Networks a Leader in Attack Surface Management
Palo Alto Networks was named a leader in attack surface management by Forrester for Cortex Xpanse.
Threat Intelligence in the Era of AI
Discover how a custom threat intelligence AI agent automates security tasks, analyzes global risks in real-time, and strengthens your defense against cyberthreats.
Cortex XDR 2.5: Future-Proofed Security Operations With Host Insights
Cortex XDR 2.5 introduces new host visibility and protection capabilities to further bolster endpoint security and streamline operations.
Continuing the Mission: Securing Black Hat Asia 2026
Black Hat Asia stands as the premier cybersecurity event in the APAC region, where elite researchers unveil zero-day exploits, trainers demonstrate cutting-edge attack techniques, and thousands of security professionals gather at Marina Bay...
Announcement, Must-Read Articles, News and Events, Product Features, Products and Services, Threat Intelligence
A Leader in the 2025 Gartner Magic Quadrant for EPP — 3 Years Running
Redefining endpoint security with Cortex XDR a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protectio...
Securing Data in the AI Era: Purpose-Built DLP for the Modern Endpoint
Stop data leaks to AI tools, ChatGPT, & desktop apps with Cortex Endpoint DLP. Get context-aware, on-device security against Shadow IT exfiltration.
39 Seconds — That's How Long It Takes to Lose Your Data
Speed is the new cyber perimeter. Wendi Whitmore, CISO at Palo Alto Networks, explains how to fight machine-speed attacks and secure AI systems to build robust cyber resilience with AI-powered defense.
The SOC Is Now Agentic — Introducing the Next Evolution of Cortex
Agentic AI security is here. See how AI-powered agents, XDL 2.0 and the new Agentix platform transform the SOC at Cortex Symphony 2026.
Cortex Cloud — Unified Efficiency, Now with Dual FedRAMP Authority
Cortex Cloud achieved FedRAMP High and Moderate authorizations since its Feb 2025 launch, highlighting its secure cloud commitment.
Cortex XDR is the Only Endpoint Security Market Leader Certified in AVC’s E...
Cortex XDR excelled in the 2026 AV-Comparatives EDR Test, consolidating 68 alerts into 3 incidents for efficient investigation. Read the results
Subscribe to Security Operations Blogs!
Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.
This site is protected by reCAPTCHA and the Google
Privacy Policy and
Terms of Service apply.