Advanced persistent threats (APTs) are the result of sophisticated adversaries executing a malicious playbook to breach an organization and steal sensitive data. These attacks often occur over an extended time frame, targeting individual users with highly evasive tools, bypassing legacy security approaches with ease.

Palo Alto Networks® identifies and prevents APTs across the entire attack lifecycle, from initial compromise to endgame tactics. We offer unique best-of-breed capabilities – all natively integrated within the Next-Generation Security Platform – to discover and block even the most advanced threat, across the network, cloud and endpoint.

Identify the Most Evasive Threats

APTs will often use highly evasive threats that can evade detection by traditional identification approaches. Palo Alto Networks brings forth years of groundbreaking innovation to conclusively identify and enforce prevention for even the most evasive advanced threats, including:

  • Visibility into threats in all application traffic, regardless of port, protocol or encryption.
  • The most evasion-resistant malware analysis environment in the industry, with the WildFire™ service’s custom-built hypervisor and bare metal analysis environment.
  • Unique payload-based, anti-malware and command-and-control protections that cannot be bypassed by new variants or commonly changed attributes.

Prevent Threats With Multiple Techniques 

Palo Alto Networks prevents APTs at each stage of the attack lifecycle through the Next-Generation Security Platform, which provides:


  • Full visibility into all network traffic, including stealthy attempts to evade detection, such as the use of non-standard ports or SSL encryption. 

  • Attack surface reduction with positive security controls to proactively take away infection vectors. 

  • Automatic known threat prevention with Palo Alto Networks Next-Generation Firewall, Threat Prevention, URL Filtering, Traps™ advanced endpoint protection and Aperture™ SaaS security service, providing defenses against known exploits, malware, malicious URLs and command-and-control (C2) activity. 

  • Zero-day threat detection and prevention with WildFire, including threat analytics with high relevance and context through the AutoFocus™ service. 

Shared Threat Intelligence & Analytics

When malware or zero-day exploits are discovered by any WildFire user, the service automatically orchestrates the enforcement of high-fidelity, evasion-resistant protections for all WildFire subscribers in 300 seconds of first discovery anywhere in the world. These protections are shared across more than 14,000 WildFire users, forming the industry’s largest distributed sensor network focused on detecting and preventing unknown threats.

In combination with WildFire, organizations can use AutoFocus to hone in on the most targeted threats with high relevance and context. AutoFocus provides the ability to hunt across all data extracted from WildFire, as well as correlate indicators of compromise (IoCs) and samples with human intelligence from the Unit 42 threat research team. Together, WildFire and AutoFocus provide a complete picture into unknown threats targeting your organization and industry, and increase your ability to quickly take action on intelligence, without adding specialized security staff. 



 

VM-Series for AWS Hybrid Cloud Deployment Guidelines

This whitepaper walks through both AWS and VM-Series deployment guidelines for building a hybrid cloud that extends your data center into AWS.

  • 1
  • 2228

Die Zwei um Zwölf: Advanced Persistent Threats und Modern Malware

Nachrichten über Malware, Cyber-Attacken und Sicherheitshinweise erscheinen mittlerweile fast täglich in den Medien. Sei es der Cyber Angriff auf das deutsche Zentrum für Luft- und Raumfahrt oder das SSL-gesicherte Server plötzlich von einer Schwachstelle betroffen sind. Als „normaler“ Anwender steht man diesen modernen Bedrohungen eher hilflos gegenüber und versucht mit einzelnen Hilfsmitteln die Sicherheit wieder herzustellen. Unser Webinar soll Ihnen einen Überblick über moderne Bedrohungen geben und Lösungsmöglichkeiten aufzeigen, wie sich ein Unternehmen gegen moderne Angriffe heutzutage schützen kann.

  • 0
  • 303

An Enterprise Security Platform Approach to Advanced Persistent Threats

Learn how the Palo Alto Networks enterprise security platform protects organizations from known threats, zero-day exploits, unknown malware, and the complete spectrum of APTs.

  • 0
  • 280

The Results of the 2014 Advanced Persistent Threats Survey Bring Home a Stark Reality

Read this report from the 2014 Advanced Persistent Threats Survey to learn where organizations are seeing the most impact from APT and where they are vulnerable.

  • 1
  • 463

Combat APTs with Palo Alto Networks

Advanced Persistent Threats (APTs) เป็นภัยคุกคามทางไซเบอร์ที่ก่ออันตรายต่อองค์กรทั่วโลก ด้วยความซับซ้อนและหลากหลายในการโจมตี เชิญร่วมงานสัมมนาผ่านทางเวปเพื่อรับข้อมูลเชิงลึกของการโจมตีประเภทนี้

  • 0
  • 219

Stop APT Webinar - Russian

Сложные постоянные угрозы (Advanced Persistent Threats или APT) используются для подрыва деятельности организаций по всему миру, и при этом изощренность, длительность воздействия и неуловимость их атак постоянно возрастает. Посетите мероприятие, организованное Palo Alto Networks® (только по приглашениям), которое даст возможность заглянуть в самое сердце кибер-андеграунда.

  • 0
  • 512