This Illinois-based education institution improved visibility, lowered risk, and strengthened its security posture by deploying Palo Alto Networks IoT Security across four campuses and its online community.

Unit 42 researchers found an attack in the wild targeting Nagios XI 5.7.5 that exploits CVE-2021-25296 and drops a cryptocurrency miner. Read more for an analysis of the vulnerable code, the resulting command injection, and the malicious scripts.

We observed an unknown actor who exploited vulnerabilities in Microsoft Exchange Server to install a webshell in an attempt at credential harvesting.

The vulnerability is triggered when a cloud container pulls a malicious image from a registry.

President Biden yesterday announced his nominees for two top cybersecurity posts: Chris Inglis as the first-ever Senate-confirmed White House cyber director; and Jen Easterly as director of the Cybersecurity and Infrastructure Security Agency.

In response to an uptick in Clop ransomware activity, we provide an overview and courses of action that can be used to mitigate it.

The General Data Protection Regulation (GDPR) is a data protection regulation in the European Union that aims to improve controls for protecting the personal information of individuals in the EU.

Network attack trends in the Winter quarter of 2020 revealed some interesting trends, such as increased attacker preference for newly released vulnerabilities and a large uptick in attacks deemed Critical. In addition to details of the newly observed exploits, in this blog, we also dive deep into the exploitation analysis, vendor analysis, attack origin, and attack category distribution.

Security Operations Integration service for AutoFocus

New York City Department of Environmental Protection’s Business Information Technology group secures the largest water and wastewater utility infrastructure in the country—ensuring clean drinking water and safe wastewater treatment for the city’s 8.6 million residents while collecting needed revenue for its tax base.

Learn how to mitigate the Exchange Server vulnerabilities in this Unit 42 threat briefing.

We provide a step-by-step technical analysis of Emotet command and control, based on observations from before Emotet threat actors were disrupted.

Palo Alto Networks partners with Caesars Entertainment, the world’s leading gaming and hospitality company, to protect their growing operations with Prisma Access.

Palo Alto Networks (NYSE: PANW), today announced the second generation of Checkov, the market-leading static analysis tool for infrastructure as code (IaC). The open-source project was created by...

Iron Mountain, a global leader in storage and information management services, needed to gain comprehensive visibility and security across its multi-cloud infrastructure, all while maintaining compliance and keeping pace with ever-evolving business needs.

Leading automobile retailer switches to Prisma SD-WAN and reduces telecommunications budget by 25%.

Unit 42 researchers spotted cryptojacking operations targeting US educational institutions.

Describes the key challenges in approaching public-cloud security and securing cloud-native applications.

Learn how Palo Alto Networks is leveraging machine learning to protect today’s enterprises from tomorrow’s threats.

By now, the majority of businesses have at least begun their journey to the cloud, with many adopting Amazon Web Services (AWS) to free up resources and lower IT costs.

What is SD-WAN? SD-WAN is a software-defined approach to managing the wide-area network, or WAN. Benefits of Sd-Wan include simplicity, improved performance, and reduced costs.

Palo Alto Networks’ biannual Unit 42 Cloud Threat Report found that the COVID-19 pandemic, and related shift to remote work, sent cloud security risks through the roof.

SecOps Integration Service for Cortex XDR (Medium) - This service description document (“Service Description”) outlines the Palo Alto Networks SecOps Integration Service for Cortex XDR offering (“Service”).

SecOps Integration Service for Cortex XDR (Large) - This service description document (“Service Description”) outlines the Palo Alto Networks SecOps Integration Service for Cortex XDR offering (“Service”).

This service description document (“Service Description”) outlines the Palo Alto Networks service for a SecOps Integration Service for NGFW (“Service”).

This service description document (“Service Description”) outlines the Palo Alto Networks service for a SecOps Optimization Service for NGFW (“Service”).

This service description document (“Service Description”) outlines the Palo Alto Networks service for SecOps Integration Service for AutoFocus (“Service”).

SecOps Optimization Service for Cortex XDR - This service description document (“Service Description”) outlines the Palo Alto Networks SecOps Optimization Service for Cortex XDR offering (“Service”).

SecOps Integration Service for Cortex XDR (Small) - This service description document (“Service Description”) outlines the Palo Alto Networks SecOps Integration Service for Cortex XDR offering (“Service”).

Companies collect and process massive amounts of information, ranging from confidential business data to sensitive intellectual property