Security teams must tackle new vulnerabilities and exposures while managing their ever-changing and fragmented attack surface. Our research shows that almost half an organization’s attack surface infrastructure changes monthly.
In this constantly evolving landscape, identifying critical exposures and prioritizing remediation efforts is exceedingly difficult. This challenge is particularly evident during internet emergencies like Log4j and 3CXDesktopApp where public-facing exposures may result in a high likelihood of successful exploitation.
When an internet emergency arises, organizations divert all of their resources to assess their exposure by looking through outdated asset inventories, manually updated spreadsheets, and other disconnected sources that are neither comprehensive nor current. Meanwhile, attackers begin to look for exposures they can exploit within mere minutes of a CVE announcement.
To address this issue, Cortex Xpanse is introducing new capabilities to help organizations better prioritize and remediate attack surface risks by utilizing real-world intelligence and AI-assisted workflows. These capabilities enable organizations to effectively manage and shrink their overall exposed attack surface.
Security teams can instantly respond to internet emergencies with the new Cortex Xpanse Threat Response Center. The Threat Response Center is the first place security teams can look to learn about the latest threats and identify the organization’s public-facing exposures. This provides security teams with the visibility and intelligence they need to make informed remediation decisions, such as threat summaries, vulnerability details, and potential exploit consequences if issues are not fixed.
Xpanse provides other powerful risk prioritization features to help security teams manage and proactively resolve risks, including:
Security teams can dramatically reduce their incident investigation timelines using several powerful investigation augmentation features that automatically enrich an incident to aid analysts. Using AI-powered investigation capabilities, organizations can now reduce mean time to respond (MTTR) for over 600+ types of attack surface risks.
With AI-powered playbooks and an array of new integrations, Xpanse automatically aggregates relevant context and information to identify service owners and give analysts all the information they need to investigate and remediate an issue in one place. The Active Response module also provides the options for full automated resolution, featuring configurable remediation rules designed to assist organizations in carefully implementing automation to resolve risks without any analyst input.
Additional Active Attack Surface Management features are included in the release:
Along with these powerful risk prioritization and analyst investigation augmentation benefits, Expander 2.2 also brings:
Embrace active risk prioritization and AI-powered investigation capabilities with Cortex Xpanse, the industry-leading Active Attack Surface Management solution from Palo Alto Networks, to protect against known and unknown vulnerabilities. Cortex Xpanse protects over 200 large enterprises and several governmental organizations. To learn more about how you can secure your attack surface, visit Cortex Xpanse.
To learn more, join the Xpanse product team for a discussion and demo of these new capabilities. Register for the “Risk, Curated” webinar to save your spot!