Date

By Source

By Technology

By Services

By Audience

Displaying 1 to 30 of 11075

News of the Week: June 16, 2018

Catch up on the latest Palo Alto Networks news of the week.
Justin Hall,
  • 0
  • 1

Channel Scoop: June 15, 2018

Dig into this week's NextWave Partner Channel Scoop.
Roxanne Edwards,
  • 0
  • 0

Minemeld Downgrade

Hi to all.   With the newest Minemeld version (0.9.48) i have this error related to a STIX/TAXII feed that up to the update was working fine:   AttributeError: 'module' object has no attribute 'set_id_namespace'.   Is there a way to downgrade MineMeld?   Thank you in advance. N.    
n.zamatei,
  • 0
  • 1

Taxii Feed Error

Dear all,   today my Taxii Output stopping working, in minemeld-engine.log i see these errors:   2018-06-15T13:23:33 (24179)actorbase._actor_loop ERROR: CyberSOC-taxiiDataFeed-Test - error executing ActorCommand(command='update', kwargs_={u'source': u'MISP_CyberSOC_anyEvents', u'indicator': u'https://pastebin.com/v10rKA6d', u'value': {u'confidence': 70, u'last_seen': 1529056265701L, u'misp_event_tags': [u'family:njRAT', u'type:RAT', u'platform:Windows', u'tlp:green', u'admiralty-scale:source-reliability="a"'], u'misp_event_uuid': u'5b227613-8984-408b-b375-56c5ac110002', u'type': u'URL', u'misp_attribute_uuid': u'5b227617-dfac-4d8c-89c1-55d7ac110002', u'share_level': u'green', u'sources': [u'misp.test'], u'misp_attribute_comment':
rafy92,
  • 0
  • 0

Not seeing a customized prototype in GUI

Hello team!   I hope you are doing alright. Currently, I am trying to add a customized miner prototype and while creating it in the /opt/minemeld/local/prototypes/ folder, I am not able to see in added in the GUI.   What could be the problem here?   Thanks in advance!   Best
petartrifonov,
  • 0
  • 0

Using Panorama shared objects

Hi I'm going to migrate Checkpoint firewall to existing Palo Alto Networks deployment and I'd like to use objects already existing in Panorama. I've connected Panorama and imported Checkpoint config to one project. I'd like to add Checkpoint config and objects to new Device Group and use existing shared objects
Jan_Linhart,
  • 0
  • 0

Rule Enrichment Pending

Next hurdle - When I am trying to import a set of RE rules, I select what I want, the specific sections I want, etc, and hit Import, and the status at the bottom of the box says "Pending...". What is the status/log file to monitor for that process? /tmp/error_SecRulesEnrich
Tim_Grossner,
  • 0
  • 0

Palo Alto Networks Adds Distinguished Former Government Cyber Leaders as Advisers

Palo Alto Networks® (NYSE: PANW), the global security leader, today announced the addition of three distinguished cybersecurity leaders as advisers to provide guidance on the security challenges...
Santa Clara, CA
  • 0
  • 329

Rule Enrichment Error

Anyone have a problem with, when you try to do rule enrichment on a rule(s) that is marked for RE, when you click on "Analyze Data" it says "no rules selected for learning"?  
Tim_Grossner,
  • 0
  • 0

Introducing Traps for Android

Introducing Traps for Android: detection and prevention to Android endpoints.
Danny Milrad,
  • 0
  • 3

Available Now: Custom App-ID for FIFA World Cup 2018

Learn more about our custom App-ID for the 2018 FIFA World Cup.
Jayant Thakre,
  • 0
  • 2

FP Report on BA003.exe (md5 5fcec23f3a287e118af4a73966dc796d)

Hi PaloAlto, One of our files, BA003.exe (md5 5fcec23f3a287e118af4a73966dc796d) is being flagged as generic.ml. Can I ask you to review and reassess the detected file in the context of the installer that uses the file, rather than as a stand-alone file, with the aim of removing BA003.exe from detection? Detected
LS_Andy,
  • 0
  • 0

How to delete duplicate addresses in Expedition tool

Hello, i'm trying to migrate from Juniper ssg config, and on the dashboard i see 1030 duplicated addresses. However i was not able to remove them before exporting to xml PA config. Any tips to do it? i searched alot, but saw no suitable solution. I use the latest expedition
EBelinsky,
  • 0
  • 0

PAN-OS 8.1.2 introduces new log options

Historically some malformed or irregular packets that were discarded by a zone protection profile or built in protection (like LAND attacks) would only increment a global counter to indicate an action was taken. This made troubleshooting such occurences, or logging for auditing and compliancy, a little more tedious.   Starting
reaper,
  • 0
  • 0

Keep Up with the Pace of Innovation: Updates to Palo Alto Networks ASE & PSE

We are pleased to announce updates to our Accredited Sales Executive (ASE) and Palo Alto Networks Accredited Systems Engineer (PSE) courses and exams.
Jeremy Behrle,
  • 0
  • 4

As everyone is getting ready to watch the World Cup, so should security admins

Every four years, the world seems to grind to a screeching halt when everyone gathers around the television, in the bar or a pub, a makeshift stadium or behind their monitor at work to cheer their favorite teams on.   But that last location could create some undesirable situations. While
reaper,
  • 0
  • 0

False Positive

Hello, Name: PC Privacy Shield Detection: generic.ml SHA256: 9b011e0c8a678f063217717a37b9966d571784e990a8a58bb203699950f7d2a1 MD5: 9027187e9afd06cd3d4c84baa336c065 Website with download link: https://shieldapps.com/products/pc-privacy-shield/ Thank you.
JJShield,
  • 0
  • 1

Prototype not found on every update

Hi,   Every time Minemeld auto-update ( I don't know why this is automatic and if it is recommended). We have a custom miner with a prototype created manually and every time Minemeld updates seems to generate a new folder like "0.9.48" on /opt/minemeld/prototypes/ with only the originals .yml not
aitorms,
  • 0
  • 1

3 Requirements to Safely Enable Microsoft Office 365

This brief describes three key security requirements to safely enable Microsoft Office 365 and other SaaS applications for your business.
  • 1
  • 1489

New App-IDs for June are ready!

It's that time of the month for new App-IDs again! The third Tuesday of the month is coming up and the Live Community team wants to make sure everyone is aware of changes coming our way. Tuesday, June 19th is the release date for new App-IDs.   As a way of letting
jdelio,
  • 0
  • 2

Palo Alto Networks SuperFan Program

  A membership with super-sized benefits Join forces with our global team of Palo Alto Networks SuperFans to show the world that superior prevention will always prevail over our cyber nemeses. As a SuperFan, you can save the day – while showing the world all you’ve learned – by spreading
apang,
  • 0
  • 2

FALSE Positive

  Hi We are anti-cheat software developed, and our product were tagged as virus. But as you can see it isn't a virus, it's a game based DLL packed with WinLicense to make it harder to get hacked by cheat developers, please we ask you to look every byte in
GunProtect,
  • 0
  • 3

Tech Docs: 3 New Features in the Latest Traps Management Service Release

The June release of Traps management service is now available. Check out the technical documentation for details
Charissa Fleischer,
  • 0
  • 5

Enhance your Windows 10 desktop security with Palo Alto Networks Advanced Endpoint Protection

The limitations of the built-in security features leave systems still highly vulnerable to advanced and unknown threats, also known as zero-day threats. To protect these systems and to fully protect your Windows 10 machines you need to augment the inbuilt security with security tools that can protect against attacks like exploits and ransomware.
  • 0
  • 26

The Rise of the Cryptocurrency Miners

Unit 42 investigates the rise of cryptocurrency miners.
Josh Grunzweig,
  • 0
  • 0

【Traps 5.0】Traps Android 対応概要

Traps 5.0はAndroid端末をサポートし、Android端末に対してもマルウェアの感染から保護することができます。   ◆Android対応の特徴 ・Android 4.4以降をサポート ・WildFireと連携したマルウェア防御機能を提供  ・未知のアプリはローカル解析に加え、自動的にWildFireへアップロードを行い、更なる解析を実施(図1) ・Traps Management Serviceから統合管理を実現  ・Windows / macOS / Linux / Androidをポリシーやログなどを一元管理(図2)                                                         図1 Android端末上でのTrapsとマルウェア検出時の画面サンプル          
tmuroi,
  • 0
  • 0

apt-get update shows warning

According to hardening guide one should run two commands:   sudo apt-get update sudo apt-get upgrade   The first command throws the following message:   W: The repository 'https://conversionupdates.paloaltonetworks.com expedition-updates/ Release' does not have a Release file. N: Data from such a repository can't be authenticated and is therefore potentially
nandersen,
  • 0
  • 7

How to replace Zones in your Policies. Using search and Replace

There are many ways to replace Zones in your Rules but there is one that really makes a difference.   The idea in this example is replace the Zone called VPN-Didac by Untrust. So the approach we will take is filter by the Zone and see where this zone is used
alestevez,
  • 0
  • 8

False Positive

 Hi We are anti-cheat software developed, and our product were tagged as virus. But as you can see it isn't a virus, it's a game based DLL packed with WinLicense to make it harder to get hacked by cheat developers. Please take a look on our case. Thanks in advance VirusTotal link: https://www.virustotal.com/#/file/42a0576604b39537e184b82b2c703c08c9714ea50b3132b6548213a880da2e87/detection Rizzo GunProtect Team www.gunprotect.com.br
GunProtect,
  • 0
  • 3

Using Azure CLI to launch the VM-Series with Availability Zones

The VM-Series in Azure can be launched in multiples ways. In this article we will cover launching the VM-Series into Azure using Azure CLI. If you do not have the Azure CLI installed you can use the Azure Cloud Shell online from the following url https://docs.microsoft.com/en-us/azure/cloud-shell/overview   1. Set Azure CLI to ARM
jperry1,
  • 0
  • 5
Displaying 1 to 30 of 11075