Hi, I had some security rules to deny all the traffic that I generated with my dynamic lists and MInemeld. As I was reading it was better to make the denial of this traffic instead of "Polices / Security" in "Policies / Policy Based Forwarding". The problem I have
Palo Alto Networks releases New App-IDs on every 3rd Tuesday of the month. As a way of letting our customers know well in advance what new App-IDs are being released, we publish the list here – link to customer resources article. We highly encourage customers to look at this link
There are several widely accepted truths about public-cloud services of varying levels of veracity—that they are cheaper, more flexible, and can be more quickly deployed. Perhaps none is more dangerous, however, than the assumption that the cloud is, by nature, more secure. Just last year: Four million customers of a U.S. cable provider were exposed to the Internet after a...
In today's podcast, we hear that AMD continues its investigation of the backdoors and other vulnerabilities CTS Labs publicly disclosed. That disclosure remains controversial. BlackTDS offers malware distribution as-a-service on the black market.
We recently started to receive the following error in the system log of our PA 7050... EDL(MineMeld_IPv4_General_Block) EDLRefresh job failed. Failed to convert config to xml After doing some research it looks like the root cause was that there was an issue with the current content
Could you please white-list our software File Hash: 94cbed6a9cbfbaa8f3514fc78c15e96950131065e33dcf56201d059b939b6fa6 VT Link: https://www.virustotal.com/#/file/94cbed6a9cbfbaa8f3514fc78c15e96950131065e33dcf56201d059b939b6fa6/detection Current VT Verdict: generic.ml Verdict 1 / 65 Description: Mirror windows to AppleTV or ChromeCast
Is it possible to have TAXII or STIX generic miners for internal custom feeds? We are exploring the data sharing between different vendors for our internal environment and instead of waiting for the vendor to come up with the integration, rely on external standard feed. If yes then how? Thanks in
Today we announced our intent to acquire Evident.io, giving our leadership position in cloud security another boost. Together we will enable teams to confidently deploy apps in the public cloud, speed deployments without sacrificing security, and continuously validate compliance in the cloud. Read on for details
In the summer of 2017, a number of companies made announcements as part of their quarterly statements that put cybersecurity in the headlines. The shipping giant Maersk disclosed to shareholders that an attack of the Petya virus had cost it up to $300 million due to disruptions to its ships and port terminals. FedEx Corp. reported a similar hit and...
LONDON, 14 March 2018 – The majority (70 percent) of cybersecurity professionals working in large organizations across Europe and the Middle East say that a rush to the cloud is not taking full account of the security risks. This is highlighted by a new cloud security study conducted for Palo Alto Networks® (NYSE: PANW), the next-generation security company.
Two Factor Authentication is provided as an option for support account using cloud services starting March 14, 2018. Any account super user(s) will have the ability to enable 2FA at the account level. Listed below are some frequently asked questions on this new feature. How to enable Two Factor Authentication (2FA)
I'm seeing error indicators for 3/4Miner nodes. The error is ('Connection aborted.', gaierror(-2, 'Name or service not known')) I would suspect this is not desireable and would like some direction how to fix that? This is a new installation which has been handed over to me so it's basically
We noticed that the log view in the gui for the nodes, indicators, etc no longer populate anything. The node view does show indicators being added and removed, so we know they are pulling in data, the logs just don't show anything. Any idea where we can start to troubleshoot.
Moving all or part of your operations to a public cloud provider will be the most substantial decision many CTOs and CIOs will make in their careers, and a misstep could cripple your company for years. For some, the decision is strictly a cloud cost comparison, though trying to compare costs across public cloud vendors is like mattress shopping, where...
I know a lot of persuasive folks in the cybersecurity community who can easily conjure up a dozen different cyberattack scenarios detailed enough to scare the socks off any board member. Many of us have been hearing about these hypothetical disasters for a decade or longer.
Hi, I was wondering if any has been working on a Prototype to integrate IT-ISAC feed from TruStar (https://info.trustar.co/it-isac). As far as I now, this is a traditional TAXII server, not aware if they have an API too. I'll try to get more detailed information on how exactly
In keeping with our tradition to publish custom apps for March Madness, the NCAA annual college basketball tournaments, we provide the following custom signatures to identify this traffic and control your security policies. Are you our customer? If you are a Palo Alto Networks customer, you can do any of the
using the minemeld.ft.redis.RedisSet prototype for output and 'state' is started but the output is disabled. on the configuration tab the output says 'enabled' however still not working. I have the URL in the Palo Alto and it connects successfully to the url but not populating the PA.