Safeguard 24/7 news distribution
The transition from print to digital news services has forever changed the media industry and exposed the sector to an even broader array of cyberthreats. For Groupe Le Monde, a complex digital landscape, online content distribution, and the integration of technologies such as artificial intelligence (AI) have accelerated this risk, with potential consequences for freedom of information and plurality of opinions. The publisher needed to:
- Secure expanding threat landscape: Groupe Le Monde was becoming a prime target for AI-generated phishing attacks, data theft, denial-of-service (DoS) attacks, and ransomware threats.
- Reduce brand impersonation: Groupe Le Monde and its associate organisations were increasingly victims of content theft and brand impersonation, which are difficult to contain without adequate cybersecurity tools.
- Increase visibility and control: A fragmented suite of network and endpoint security systems made it harder to create a single, joined-up view of cybersecurity.
“With cybercriminals around every corner, Groupe Le Monde’s complex digital ecosystem created challenges for the 24/7 production, distribution, and management of news content. Our goal was to proactively ensure that cybersecurity and data privacy were embedded throughout the organisation.”
– Laurent Sabri
Chief IT Architect, Groupe Le Monde
Anticipate and understand the evolution of security risks
Groupe Le Monde standardised on a platform approach to cybersecurity, using a consolidated portfolio of Palo Alto Networks endpoint and network security technologies to safeguard the organisation from every type of known and unknown threat.
The organisation was already using PA-Series hardware firewalls to centrally protect its headquarters and data centre. Based on this success, Laurent Sabri, Groupe Le Monde’s Chief IT Architect, and his team added Cortex XDR to defend the group’s endpoints and provide a centralised platform for detection and response. The AI-powered solution accurately prevents threats to the endpoints while gathering data from them and the firewall to build comprehensive context for the SOC. Cortex immediately alerts Groupe Le Monde to threats and reveals the root cause to speed up investigations.
“Groupe Le Monde is a highly exposed brand on the internet, and a modern platform was needed to counter every type of threat,” says Laurent. “The natively integrated Palo Alto Networks platform gives us that resilience, allowing us to anticipate and understand the evolution of security risks. Moreover, we can efficiently scale the cyber infrastructure and prevent today’s fast-moving cyberthreats.”
-
Uncovers threats at record speed
![Uncovers threats at record speed]( "Uncovers threats at record speed")
The consolidated platform integrates data from the most important sources, enabling Groupe Le Monde’s security operations centre (SOC) team to cut through noise, focus on key issues, and accelerate investigations.By adopting this strategy, Groupe Le Monde has reduced the mean time to detect (MTTD) security events by 60%, ensuring the organisation can act faster on data breaches.
“We trust the platform to mitigate risk. Continuous profiling of endpoint and network behaviour immediately detects unusual activity that may point to an attack,” says Laurent.
-
Ensures rapid response
Groupe Le Monde has a complete 360-degree picture of its security environment, empowering the SOC team to quickly assess attack scope and impact. The platform simplifies Groupe Le Monde’s triage and investigations by automatically revealing the case severity, attack path, and root cause.
This has enabled the group to reduce the mean time to resolve (MTTR) cases by 70%. “Our analysts are no longer chasing false flags. By stitching together data from the endpoint and firewall, Cortex gives us comprehensive context of the threat so we can act faster,” adds Laurent.
-
Reduces noise
The platform solves the challenge of Groupe Le Monde’s SOC missing both known and unknown threats while keeping the signal-to-noise ratio low. This, in turn, reduces false positives and frees analysts to focus on more strategic tasks.
A two-node firewall cluster protects Groupe Le Monde’s headquarters: one for disaster recovery, the other for its Le Monde diplomatique subsidiary. Following the deployment, Groupe Le Monde recorded a 60% reduction in cases.
-
Simplifies management
The SOC team benefits from single-pane-of-glass management, an intuitive interface, and seamless integration with the PA-Series hardware firewalls. This unified approach to security management has eliminated complexity while reducing issue fatigue and analyst burnout.
Cloud-Delivered Security Services (CDSS) also provide an added layer of network threat protection. By consolidating security tools and processes, Groupe Le Monde has increased SOC team productivity by 20%.
The consolidated platform integrates data from the most important sources, enabling Groupe Le Monde’s security operations centre (SOC) team to cut through noise, focus on key issues, and accelerate investigations.share this story
