Build those cybersecurity skills: Rinki Sethi shares the secret behind hosting a successful capture the flag event.

Tech Docs: Traps 5.0.2 and Traps Management Service release notes are now available.

Unit 42 examines Emotet and Trickbot, best known as banking malware and information stealers targeting Windows-based computers.

Bret Lopeman, senior security engineer at Ada County discusses how his organization has adopted a prevention-oriented approach to network security with Palo Alto Networks Security Operating Platform, including Traps.

A 21-year-old Kentucky man has pleaded guilty to authoring and distributing a popular hacking tool called “LuminosityLink,” a malware strain that security experts say was used by thousands of customers to gain unauthorized access to tens of thousands of computers across 78 countries worldwide.

Software: Windows Privacy Dashboard   SHA256: 19a6bfb454d19ae13941f528082f4e7a31b26f5cf3b342bf4984bdbc28c9d144   Virustotal: https://www.virustotal.com/en/file/19a6bfb454d19ae13941f528082f4e7a31b26f5cf3b342bf4984bdbc28c9d144/analysis/   Detection: generic.ml   Website with download link: https://wpd.app

If you have an active support contract, please read the full article here: Airwatch, Sharepoint-Online and GlobalProtect MFA: New App-IDs.   Background At Palo Alto Networks, we're always looking for ways to provide better application visibility and control to our customers to help them safely enable these applications. An important part of this effort is

Palo Alto Networks Security Operating Platform Supports Use of ASD Top 37 STRATEGIES TO MITIGATE CYBERSECURITY INCIDENTS

Palo Alto Networks® is focused on securing your business with a prevention-focused architecture you can easily deploy and operate. NSS Labs® – in its Security Value Map™ (SVM) based on the 2018 “Next Generation Firewall Group Test Report” – has recognized this and given our NGFW a Recommended rating.

Palo Alto Networks® is focused on securing your business with a prevention-focused architecture you can easily deploy and operate. In its 2018 “Next Generation Firewall Group Test Report,” NSS Labs® recognized this and gave our NGFW a Recommended rating.

Overview of Panorama, our centralized security management system, that provides you with global control over multiple Palo Alto Networks firewalls.

    Hi @lmori and @xhoms   In MM 0.9.46 we have the "libraesva" miners prototypes. All of them with share level Yellow. But we don't have an output prototype with this share level. I tried to create a new one from std.feedHCGreen, but it doesn't allow to change the share level to Yellow.   What

We are excited to announce that Palo Alto Networks has achieved a “Recommended” rating, and a spot in the upper-right corner of the NSS Labs NGFW Security Value Map, or SVM, indicating high security effectiveness and low total cost of ownership, or TCO.

The Ministry of Energy, Industry, and Mineral Resources implemented Traps™ advanced endpoint protection, part of Palo Alto Networks® Security Operating Platform, which also includes next-generation firewalls and numerous integrated threat intelligence services to help ensure strong security at the endpoint.

Question Can Evident detect if an agent is deployed in an EC2 / VM instance? Answer None of Evident's built-in signatures detect resources within EC2 / VM instances.  In general, Evident's built-in signature will only detect and report resources within the infrastructure level.   Evident itself cannot detect resources within

Unit 42 shares their analysis of the DHCP Client Script Code Execution Vulnerability (CVE-2018-1111)

I will be installing and using MineMeld on a virtual REHL 7 Server. I was wondering if the community had any advice/lessons learned from the installation, use, and implementation of MineMeld at their organizations. Thank you!

Does anyone have experience integrating PaloAlto firewall with Cisco Intrusion Prevention system? Does it work? Does it have sence?

Changing the ML address to "localhost", it keeps going back to the IP assigned to the virtual ethernet interface. Did we ever come up with a way to force it to change to and keep "localhost"?

Looks like the Northern Ohio chapter of the Palo Alto Networks Fuel User Group has an eye for rockstars, too! We couldn't agree more with the chapter's recognition of Tom and its warm invitation to have Tom attend a chapter meeting with the Cleveland-based group. Moreover, in keeping with Tom's growing

Catch up on all the latest Palo Alto Networks news.

Symptoms Configured auto-remediation using this guide: http://docs.evident.io/#auto-remediation-via-lambda-walkthrough, but the offending resource is not automatically remediated. Diagnosis Configure an AWS resource that would trigger the signature. Wait for the fail alert to generate.  It may take up to 2 scan intervals (by default, 1 scan interval is 15 minutes). Once the alert

Weekly Scheduled Deploy - July 11 2018   The following updates are scheduled to take effect on the Evident service on 7/11/2018:   Enhancements New Signature: AWS:EC2-043 - Security Groups With Open Private CIDRs Description: This signature checks all of your EC2 security groups and returns an alert if any inbound rules

RDP access to Citrix via GlobalProtect clientless VPN Enabling RDP access to Citrix environment through GlobalProtect Clientless VPN GlobalProtect Clientless VPN supports access to remote desktops (RDPs), VNC or SSH. Learn how to enable your existing Citrix deployment to provide support for RDP through GlobalProtect Clientless VPN. Read more...  

I'm wanting to do some policy work (app-id migraiton) on a firewalls that is basically 100% managed by Panorama.  Don't want to mess with all others yet.  How do I get the policy set that's managed in Panorama for just one firewall int Expedition?

Get the latest NextWave Partner news in this week's Channel Scoop.

Unit 42 monitors the continued evolution Upatre and its anti-analysis Techniques.

Caught this in the temporary file for log processing...     # There is insufficient memory for the Java Runtime Environment to continue. # Native memory allocation (mmap) failed to map 113700864 bytes for committing reserved memory. # An error report file with more information is saved as: # /tmp/hs_err_pid51410.log

I am attempted to perform an ansible install of Minemeld on RHEL 7. I am receiving the following error. Anyone seen this and have any suggestions for remediation?  Thanks   I receive the following message when I run the ansible playbook:   TASK [minemeld : bower install] ********************************************************************************** fatal: [127.0.0.1]:

For the month of July 2018 the new application release date is set to be the 17th. This time around a couple of important updates will be added to the sharepoint 'portfolio' which you'll want to compare to your existing security policy and user adoption to ensure you are ready