Announcing Unit 42 Managed XSIAM — Redefining 24/7 Managed SecOps
Palo Alto Networks announces Unit 42 Managed XSIAM, a solution that provides 24/7 expert-led defense across every attack surface.
Security Operations
Product Features
Cortex Xpanse Protects Against Malicious Domain Takeover Techniques
Malicious domain takeovers have become an increasing concern for businesses as attackers exploit vulnerabilities by gaining unauthorized access to a d...
Democratize Threat Hunting with Cortex Copilot
Discover how Cortex Copilot democratizes threat hunting by enabling analysts to investigate security incidents with AI-powered guidance. Learn how a new threat hunter uncovered a privileged account breach.
Announcement, Application Security, Cloud Security, CNAPP, News and Events, Product Features, Products and Services
Introducing Cortex Cloud — The Future of Real-Time Cloud Security
Cortex Cloud brings the world’s leading CNAPP onto the #1 SecOps platform, delivering real-time protection — for the fir...
Demystifying Impossible Traveler Detection
Discover how Impossible Traveler Detection in Cortex XDR identifies suspicious logins from distant locations in a short time, and how to address challenges like VPN impacts and reduce false positives in complex...
New Cortex Detectors for macOS Address Stealers and Malicious AppleScript
Cortex releases new detection analytics targeting macOS stealers and malicious applescript
Detecting Threats with Microsoft Graph Activity Logs
Discover how Microsoft Graph API is used as an attack vector by threat actors through a real-world attack scenario. Find out why monitoring Microsoft Graph activity logs is important and how Cortex delivers tai...
Automating Response to Unauthorized Email Forwarding Activity in Google Wor...
Automating response to “A mail forwarding rule was configured in Google Workspace” with Cortex XSIAM
Handling Successful SSO Sign-ins from Tor
Automating response to successful Tor SSO sign-ins with Cortex XSIAM
Identify 60 Additional Server Protocols with Cortex Xpanse
Discover how Cortex Xpanse now identifies 60 additional server protocols in your attack surface, protecting against emerging threats across proxy, net...
Optimize Analyst Workflows with Cortex Copilot
Discover how Cortex Copilot streamlines security analyst workflows, reduces burnout, and accelerates incident investigations by leveraging AI to automate mundane tasks.
Cloud Security — Maturing Past the Awkward Teenage Years
Explore cloud security's maturation, common misconceptions, and best practices for robust cloud defenses.
Cutting Through the Noise: Simplifying SIEM Alerts with Cortex
Discover how integrating Cortex XSOAR with Splunk SIEM reduces false positives, automates alert triage, and enhances cybersecurity efficiency.
Cortex Copilot - Another Step Forward in SOC Transformation
Discover how Cortex Copilot, an AI-powered security assistant, transforms SOC operations by speeding up investigations and optimizing analyst workflow...
Bye Whack-a-Mole: The New Cortex Generic Persistence Analytics Module
Discover Palo Alto Networks' new Generic Persistence Analytics module, detecting malware persistence across techniques for enhanced cybersecurity.
Introducing Cortex Canvas: Unleashing the Power of Visual Storytelling
Discover Cortex Canvas: Visualize cyber incidents, enhance threat hunting, and boost SOC collaboration with dynamic attack diagrams.
Boosting Identity Security with Cortex XDR/XSIAM Honey Users
Learn how Cortex XDR’s Identity Threat Detection and Response (ITDR) leverages honey users to enhance identity security by detecting and deceiving att...
Expanded Coverage of Attack Surface Risks with Cortex Xpanse
Xpanse 2.7 introduces powerful new features to help security teams actively identify and remediate hidden risks across their ever-expanding attack sur...
What’s Next in Cortex: New Innovations for Security Operations
Cortex continues to transform the SOC with new innovations across the platform, including support for third-party EDR data to ease the transition from...
Crush It, Don’t Get Crushed — Combat SOC Analyst Burnout with AI
AI is reshaping SOC analyst roles. We address the critical issue of burnout and discuss practical advice for thriving in...
Threat Hunting with Mark of The Web Using Cortex XDR
Leveraging Mark of The Web (MOTW) data using Cortex XDR to hunt for suspicious files and malware downloaded from the internet
Subscribe to Security Operations Blogs!
Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.