Security Operations

Product Features

XSIAM 2.0: Continuing to Drive SOC Transformation

Security teams have an important and difficult job – protecting their organizations from a threat landscape that is constantly changing. Based on investigations conducted by our Unit 42 team, we know that threat actors are carrying out end-to-end attacks faster, from initial compromise, all the way to data exfiltration in just a...

Announcement

Must-Read Articles

Product Features

Products and Services

Nov 13, 2023

By Gonen Fink

Security Operations

Must-Read Articles, Product Features, Products and Services

This Is How We Do It — Season One Recap

Our blog and video series, “This is How We Do It,” offers a behind-the-scenes, candid exposé of how Palo Alto Networks protects its security operations center (SOC) using its own solutions. This series provides...

Nov 09, 2023

By Dena De Angelo

Announcement, Must-Read Articles, Product Features

XSOAR 8.4: What’s New

Earlier this year we announced our software as a service (SaaS) offering with the Cortex XSOAR 8 release. XSOAR 8 offers the benefits of tight integration with the industry-leading Cortex platform and its other cybersecurity products. In ad...

Oct 30, 2023

By Alon Yardeni

Must-Read Articles, Product Features, Products and Services

Threat Hunting to Find the Good Stuff

In the final episode of Season One of “This is How We Do It,” Peter Havens from Cortex product marketing sits down with Leeroy Perera, staff security engineer. They discuss the practice of threat hunting and how we apply it in our SOC. In t...

Oct 17, 2023

By Dena De Angelo

Announcement, Must-Read Articles, Product Features, Use-Cases

Discover your WS_FTP Exposures with Cortex Xpanse

On September 27, 2023, Progress Software released an advisory alerting customers of a critical vulnerability (CVE-2023-40044) in their WS_FTP Server product. WS_FTP Server is a sec...

Oct 04, 2023

By Giuliana Sturma

Must-Read Articles, Points of View, Product Features, Products and Services

Artificial Intelligence — Beyond the Algorithms

In Episode 6 of “This is How We Do It,” Peter Havens, from Cortex product marketing, continues the interview series. He sits down with Yoni Allon, VP Research, to discuss how Palo...

Sep 26, 2023

By Dena De Angelo

Must-Read Articles, Points of View, Product Features, Products and Services

Data — The Lifeblood of Security and Detection Engineering

In episode 5 of “This Is How We Do It,” Peter Havens from Cortex product marketing and Isaac Krzywanowski, staff security engineer at Palo Alto Networ...

Sep 12, 2023

By Dena De Angelo

Announcement, News and Events, Product Features, Use-Cases

Xpanse Covers Top Vulnerabilities Warned of by CISA

In the fast-evolving world of technology and interconnectedness, cyberthreats have become a formidable challenge for businesses, governments, and individuals alike. To stay ahead in this relentless cat-and-mous...

Aug 14, 2023

By Alyssa Ramella

Announcement, Cloud Security, Code to Cloud, Must-Read Articles, News and Events, Partners, Product Features

Deloitte Safeguards Software Development Lifecycle

As cloud computing continues to increase in popularity, businesses should consider remaining vigilant in protecting their information. Enterprises are...

Aug 10, 2023

By Joe Rogalski

Must-Read Articles, Points of View, Product Features, Products and Services

Multiplying Force with Automation — Reducing the Soul Crushing Work

In our fourth episode of "This Is How We Do It," Peter Havens from Cortex product marketing, and Kyle Kennedy, Palo Alto Networks senior staff securit...

Aug 08, 2023

By Dena De Angelo

Must-Read Articles, Product Features, Use-Cases

Through the Cortex XDR Lens: macOS Pirrit Adware

OSX Pirrit is sophisticated adware that was first discovered back in 2016 and has played a part as one of the most prevalent malware that exists in the MacOS landscape ever since. Although adware has been consi...

Jul 13, 2023

By Tom Fakterman

Must-Read Articles, Product Features

Linux Threat Hunting with Cortex XDR

The cyber threat landscape is always changing and attackers find new ways to compromise systems and achieve their objectives: espionage, ransomware, etc. With the proliferation of Linux operating systems, attackers are increasingly adapting...

Jul 11, 2023

By Raj Nepali

Must-Read Articles, Product Features, Use-Cases

The Adventures of Malicious OneNote Attachments in Cortex XDR Land

The Cortex Threat Research team has been tracking recent campaigns that were using malicious OneNote email attachments as the initial attack vector. M...

Jul 05, 2023

By Daniel Frank

Announcement, Must-Read Articles, Product Features

Understand and Protect Your Environment with Cortex 3.7

Security leaders are dealing with an increasingly complex threat landscape, resulting in more questions about risk posture and the need to maintain continuous security monitoring of the enterprise. We are pleas...

Jun 29, 2023

By John Collins

Announcement, Must-Read Articles, Product Features, Use-Cases

Not in My Sandbox: Save Those Deployment Tears

Efficiency in a security operations center (SOC) is more than just ensuring security professionals are successfully responding to threats. A successful SOC works to maximize its op...

Jun 28, 2023

By Greg Smith

Announcement, Must-Read Articles, Product Features

Actively Respond to Internet Emergencies with New Active Attack Surface Man...

Security teams must tackle new vulnerabilities and exposures while managing their ever-changing and fragmented attack surface. Our research shows that...

Jun 27, 2023

By Abhishek Anbazhagan

Must-Read Articles, Product Features, Use-Cases

Behind the Curtains of a Vendor Email Compromise (VEC) Attack

Credential phishing is one of the most popular threats businesses and individuals need to face in today's cybersecurity landscape. In recent years cre...

Jun 21, 2023

By Stav Setty and Tom Fakterman

Must-Read Articles, News and Events, Product Features

Through the Cortex XDR Lens: Uncovering a New Activity Group Targeting Gove...

The Cortex Threat Research team has recently identified multiple espionage attacks targeting governmental entities in the Middle East and Africa. Acco...

Jun 14, 2023

By Lior Rochberger

Announcement, News and Events, Product Features, Use-Cases

MOVEit or Lose it: Securing assets from critical MOVEit flaw with Xpanse AS...

On May 31, 2023, Progress Software posted a notification alerting customers of a critical Structured Query Language injection (SQLi) vulnerability (CV...

Jun 13, 2023

By Alyssa Ramella

Must-Read Articles, Product Features, Use-Cases

Discover Your GitLab Exposures with Cortex Xpanse

When companies decide to move their code repositories to the cloud, they often have concerns regarding the security of their code. Code repositories often contain third-party dependencies or libraries that can...

Jun 09, 2023

By Giuliana Sturma

Company & Culture, Must-Read Articles, Points of View, Product Features

From Phishing to Firewalls: Solving Security with AI

In this third episode of "This Is How We Do It," we delve into the world of artificial intelligence (AI) and machine learning (ML) with Billy Hewlett, leader of the AI research tea...

Jun 06, 2023

By Dena De Angelo

Load more blogs