Do you have a state-of-the-art firewall from Palo Alto Networks today?
In this rapidly-evolving technological world, it is crucial to check whether your firewall can still face current and future threats. Our Palo Alto experts have created a checklist with 7 items to help you protect your organization.Go to the checklist
A traditional firewall, even with automated response features, can only act on the bad rating of a threat. Sometimes, individual behaviors may seem non-malicious, but if they are seen over time, they might be part of a multi-step intrusion. They are often used by attackers to perform automatic reconnaissance with the goal of finding valuable resources.
Palo Alto Networks’ Cortex XDR is an application framework allowing for hunting down and stopping attacks quickly with cloud-delivered analytics and machine learning.
Cortex XDR uncovers malicious actions by identifying anomalies that indicate active attacks. This is done through user and device behavior analytics. The rich data that is collected from the Next-Generation Security Platform, which has attack detection algorithms, allows you to detect post-intrusion activity with precision.
As depicted above, once a malware has been installed, the next stages of the attack might consist of allowed operations that look innocent individually.
However, machine learning can help detect those changes in behavior (e.g. more connections to more servers, or much bigger traffic to the same server), and fire an alert while automatically analyzing which elements are used for that attack and remediating it on the firewall level.
Cortex XSOAR is the way to automate tasks of threat investigation. Even other tasks could be automated because over 300 products are supported. The automation is done by using the playbooks that can be build to quickly start automation without the need for API integration knowledge. Cortex XSOAR also provides threat collaboration and ticketing follow up natively integrated into XSOAR. This should optimize the efficiency of security analysis and Security/Network engineers that most often need to keep the network up and running and follow up security. By providing them a tool to automate tasks they can spend more time on the security and network tasks that are not repetitive. Cortex XSOAR can provide them also automated context information to perform better and quicker analysis resulting and providing better support for your business.
Do you know the latest features for your Palo Alto Networks firewall? Can your Palo Alto Networks firewall support the latest PAN-OS version?Read More