Latest Blogs

Modernizing Cybersecurity for State and Local Government
Government, Public Sector

Modernizing Cybersecurity for State and Local Government

Jul 08, 2025
By  and
Why Diverse Cloud Environments Require Flexible Security
Cloud Security, Product Features, Products and Services

Why Diverse Cloud Environments Require Flexible Security

Jul 03, 2025
By 
Navigating Heightened Cyber Risks from Iranian Threats
Announcement, Threat Brief, Unit 42

Navigating Heightened Cyber Risks from Iranian Threats

Jul 02, 2025
By 
Global Reach — The New Scale of Chinese Cyberthreats
AI Security, Must-Read Articles, News and Events, Points of View

Global Reach — The New Scale of Chinese Cyberthreats

Jun 26, 2025
By 
Chart Your SASE Transformation with Prisma SD-WAN
Announcement, Product Features, Products and Services, SD-WAN

Chart Your SASE Transformation with Prisma SD-WAN

Jun 25, 2025
By 
The Next Wave of Cybersecurity
Cloud Infrastructure Entitlement Management, Cloud Workload Protection, CSO Perspective, Must-Read Articles

The Next Wave of Cybersecurity

Jun 20, 2025
By 

POPULAR BLOGS

Popular Topics

SOC
AI
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud

Corporate Blogs

Palo Alto Networks Commitment to Europe
Government, Public Sector

Palo Alto Networks Commitment to Europe

Regulatory frameworks in Europe call for solutions delivering strong cybersecurity, operational resilience and support organization's control over their data.
Jul 09, 2025
By 
Baby Tigers Bite — The Hidden Risks of Scaling AI Too Fast
AI and Cybersecurity, AI Security, Interview, Points of View

Baby Tigers Bite — The Hidden Risks of Scaling AI Too Fast

AI systems scale from prototypes to production environments, as do the risks. Is your organization planning for the AI baby tiger or full-grown AI predator?
Jun 17, 2025
By 
The New AI Attack Surface — How Cortex Cloud Secures MCP
AI Security, AI Security Posture Management

The New AI Attack Surface — How Cortex Cloud Secures MCP

MCP Security in Cortex Cloud protects AI applications by securing Model Context Protocol communications and detecting API-layer threats in real time.
Jun 13, 2025
By  , and
See How We’re Fortifying Cloud and AI at AWS re:Inforce 2025
AI Security, AI Security, Announcement, Endpoint, Event, Firewall, Non categorizzato

See How We’re Fortifying Cloud and AI at AWS re:Inforce 2025

Join Palo Alto Networks at AWS re:Inforce '25. Connect with security experts and discover actionable solutions to AWS security challeng...
Jun 12, 2025
By 
Securing AI Agent Innovation with Prisma AIRS MCP Server
AI Security, AI Security, Announcement, Firewall, Next-Generation Firewalls, Products and Services

Securing AI Agent Innovation with Prisma AIRS MCP Server

Prisma AIRS MCP Server is now available for public preview via PyPI/Github sample code. Th...
Jun 09, 2025
By 
GenAI's Impact — Surging Adoption and Rising Risks in 2025
AI Security, Announcement, Points of View, Predictions, Reports

GenAI's Impact — Surging Adoption and Rising Risks in 2025

Explore how GenAI is reshaping enterprise operations and how to mitigate rising risks.
Jun 05, 2025
By 
Cybersecurity Challenges in the Energy and Utilities Sector
Announcement, Partners

Cybersecurity Challenges in the Energy and Utilities Sector

IBM and Palo Alto Networks are collaborating to address five key security challenges and their solutions.
Jun 03, 2025
By 
Improving National Security Through Secure AI
AI Governance, Cybersecurity, Government, Public Sector

Improving National Security Through Secure AI

Wendi Whitmore spoke on a panel of witnesses at a field hearing at Stanford’s Hoover Institution on May 28, outlining the AI innovations our team developed.
May 29, 2025
By 
See all Corporate blogs

Network Security Blogs

A Bold New Vision in Cloud Network Security for the Future of Work
AI Security, Strata Network Security Platform

A Bold New Vision in Cloud Network Security for the Future of Work

Palo Alto Networks introduces four groundbreaking innovations to its Software Firewalls portfolio. Find out more.
Jun 25, 2025
By 
Cloud NGFW is Essential for AWS & Azure Cloud Traffic Protection
Cloud Computing, Cloud NGFW, Products and Services

Cloud NGFW is Essential for AWS & Azure Cloud Traffic Protection

Get unparalleled threat prevention, operational simplicity and significant TCO savings with Cloud NGFW.
Jun 24, 2025
By  and
How Secure Are Your AI and Cloud Environments? Just Ask CLARA
AI Security, Cloud NGFW

How Secure Are Your AI and Cloud Environments? Just Ask CLARA

With complimentary Cloud and AI Risk Assessment (CLARA) services, you can see how well your network security works in AI and public cloud environments.
Jun 23, 2025
By 
See How We’re Fortifying Cloud and AI at AWS re:Inforce 2025
AI Security, AI Security, Announcement, Endpoint, Event, Firewall, Non categorizzato

See How We’re Fortifying Cloud and AI at AWS re:Inforce 2025

Join Palo Alto Networks at AWS re:Inforce '25. Connect with security experts and discover actionable solutions to AWS security challenges.
Jun 12, 2025
By 
Securing AI Agent Innovation with Prisma AIRS MCP Server
AI Security, AI Security, Announcement, Firewall, Next-Generation Firewalls, Products and Services

Securing AI Agent Innovation with Prisma AIRS MCP Server

Prisma AIRS MCP Server is now available for public preview via PyPI/Github sample code. The new component of the platform helps customers secure AI ag...
Jun 09, 2025
By 
GenAI's Impact — Surging Adoption and Rising Risks in 2025
AI Security, Announcement, Points of View, Predictions, Reports

GenAI's Impact — Surging Adoption and Rising Risks in 2025

Explore how GenAI is reshaping enterprise operations and how to mitigate rising risks.
Jun 05, 2025
By 
Empowering AI Agent Developers with Prisma AIRS Python SDK
AI Application Security, AI Security

Empowering AI Agent Developers with Prisma AIRS Python SDK

The Prisma AIRS Python SDK helps developers address the growing need to secure AI applications and AI agents.
May 28, 2025
By 
You Can’t Spell Platformization Without IoT
IoT, IoT Security

You Can’t Spell Platformization Without IoT

As many organizations race to simplify and strengthen their security posture, many are overlooking a critical element: IoT devices.
May 22, 2025
By  and
See all Network Security blogs

SASE Blogs

Dedicated Data Plane Improves SASE Resilience
Product Features, Products and Services

Dedicated Data Plane Improves SASE Resilience

Prisma SASE provides a secure, isolated and scalable way to navigate the complexities of digital transformation and the evolving nature of cyberthreats.
Jun 26, 2025
By  and
Chart Your SASE Transformation with Prisma SD-WAN
Announcement, Product Features, Products and Services, SD-WAN

Chart Your SASE Transformation with Prisma SD-WAN

Successful SASE transformations often require balancing both network-led and security-led transformation priorities for a fully integra...
Jun 25, 2025
By 
Examining the Coffee Shop Model and SASE
Product Features, Products and Services, SD-WAN, Use-Cases

Examining the Coffee Shop Model and SASE

Although alluring, the coffee shop model doesn't meet enterprise networking & security standards. Consider the Zero Trust Branch model instead.
Jun 11, 2025
By 
A Secure Browser Requires a World-Class Cyber Research Team
Product Features, Secure the Future

A Secure Browser Requires a World-Class Cyber Research Team

If security is your priority, you need a browser built by the best minds in the industry—one that evolves as fast as the threats do.
Jun 04, 2025
By  and
Introducing Prisma Access Agent: The Future of Secure Connectivity
Product Features, Products and Services

Introducing Prisma Access Agent: The Future of Secure Connectivity

Prisma Access Agent offers the visibility, robust protection & high performance needed to securely & efficiently support the distribute...
Jun 02, 2025
By 
Secure M&As and Accelerate Time-to-Value with Prisma Access Browser
Product Features, Products and Services

Secure M&As and Accelerate Time-to-Value with Prisma Access Browser

Prisma® Access Browser enables organizations undergoing a merger or acquisition to quickly provide employees secure access on any devic...
May 28, 2025
By 
Unlocking Unmatched Performance, Scale & Resilience with Prisma SASE
Product Features, Products and Services

Unlocking Unmatched Performance, Scale & Resilience with Prisma SASE

Prisma SASE has expanded its global reach and cybersecurity protections through an expanded partnership with Oracle Cloud Infrastructur...
May 27, 2025
By 
A 3X Leader in Gartner 2025 Magic Quadrant for SSE
Announcement, News & Events, Product Features, Reports

A 3X Leader in Gartner 2025 Magic Quadrant for SSE

Palo Alto Networks has been named a Leader in the 2025 Gartner Magic Quadrant for Security Service Edge, for the third time.
May 23, 2025
By 
See all SASE blogs

Cloud Security Blogs

Implementing AI Security with Cortex Cloud AI-SPM
AI Security, AI Security Posture Management

Implementing AI Security with Cortex Cloud AI-SPM

AI security posture management gives CISOs full visibility, safeguards AI data, and blocks prompt injection or model poisoning to speed secure innovation.
Jul 02, 2025
By 
Cloud Attack Surface Management: See What Other CNAPPs Miss
Announcement, Cloud ASM, Cloud Posture Security, CNAPP, CSPM

Cloud Attack Surface Management: See What Other CNAPPs Miss

Cloud attack surface management identifies unmanaged, internet-exposed assets and brings them under control to reduce risk across multicloud environme...
Jun 24, 2025
By 
The New AI Attack Surface — How Cortex Cloud Secures MCP
AI Security, AI Security Posture Management

The New AI Attack Surface — How Cortex Cloud Secures MCP

MCP Security in Cortex Cloud protects AI applications by securing Model Context Protocol communications and detecting API-layer threats in real time.
Jun 13, 2025
By , and
The Best Cloud Threat Detection Just Got Better
Cloud Detection and Response, Cloud Security

The Best Cloud Threat Detection Just Got Better

Cortex Cloud Detection and Response now adds real-time malware protection, expanded threat detection, and built-in automation to help security teams act faster.
Jun 12, 2025
By  and
Kubernetes: A Practitioner’s Guide to KSPM
Cloud Detection and Response, Cloud Security, Cloud Workload Protection Platform, KSPM

Kubernetes: A Practitioner’s Guide to KSPM

Prioritize and secure Kubernetes with real-time insights, risk-driven workflows, and full asset visibility—powered by Cortex Cloud’s KSPM capabilities.
Jun 10, 2025
By  and
Model Context Protocol (MCP): A Security Overview
AI Security, AI Security Posture Management, DSPM

Model Context Protocol (MCP): A Security Overview

Model Context Protocol (MCP) introduces new AI integration risks. Learn how to manage threats like prompt injection, credential leaks, and toolchain abuse.
Jun 06, 2025
By 
Anatomy of a Kubernetes Attack: How Cortex Cloud Provides End-to-End Protection
Cloud Security, Cloud Workload Protection Platform, CNAPP, KSPM

Anatomy of a Kubernetes Attack: How Cortex Cloud Provides End-to-End Protec...

Kubernetes attack detection requires unified visibility. See how Cortex Cloud stops multistage threats across app, container, host and cloud identity ...
May 20, 2025
By 
Cortex Cloud Stands Alone to Secure Mission-Critical Workloads with FedRAMP High and Moderate
Announcement, CNAPP, Compliance

Cortex Cloud Stands Alone to Secure Mission-Critical Workloads with FedRAMP...

Cortex Cloud earns FedRAMP High and Moderate, becoming the only CNAPP with both. Delivering real-time cloud security for mission-critical government w...
May 15, 2025
By 
See all Cloud Security blogs

Security Operations Blogs

Modern SIEM Journeys: Notes from the Migration Trail
Must-Read Articles

Modern SIEM Journeys: Notes from the Migration Trail

Energy, finance and insurance SOCs cut alert noise 75% and MTTR 98% by moving from legacy SIEM to Cortex XSIAM’s unified, AI-driven security platform.
Jun 17, 2025
By 
Why Diverse Cloud Environments Require Flexible Security
Cloud Security, Product Features, Products and Services

Why Diverse Cloud Environments Require Flexible Security

Can multicloud environments rely on one CSP to secure all their cloud environments?
Jul 03, 2025
By 
Global Reach — The New Scale of Chinese Cyberthreats
AI Security, Must-Read Articles, News and Events, Points of View

Global Reach — The New Scale of Chinese Cyberthreats

David Moulton and Wendi Whitmore of Palo Alto Networks, put today's threat landscape in stark historical perspective as they discuss Ch...
Jun 26, 2025
By 
The Next Wave of Cybersecurity
Cloud Infrastructure Entitlement Management, Cloud Workload Protection, CSO Perspective, Must-Read Articles

The Next Wave of Cybersecurity

Traditional cloud security fails against real-time attacks. Protect with a unified approach: best-in-class CDR combined with industry-l...
Jun 20, 2025
By 
Baby Tigers Bite — The Hidden Risks of Scaling AI Too Fast
AI and Cybersecurity, AI Security, Interview, Points of View

Baby Tigers Bite — The Hidden Risks of Scaling AI Too Fast

AI systems scale from prototypes to production environments, as do the risks. Is your organization planning for the AI baby tiger or full-grown AI predator?
Jun 17, 2025
By 
Beyond the Label: How AI-Driven Explanations Supercharge Malware Detection
Uncategorized

Beyond the Label: How AI-Driven Explanations Supercharge Malware Detection

Go beyond 'malicious' or 'benign'. Learn how Palo Alto Networks uses AI explanations to enhance the development of our malware detection to get more accurate verdicts.
Jun 10, 2025
By  , and
Inside a Modern Cloud Attack — How to Catch It with Cortex CDR
Must-Read Articles, Product Features

Inside a Modern Cloud Attack — How to Catch It with Cortex CDR

Learn how Cortex CDR detects modern cloud attacks like Scattered Spider's identity-driven campaigns across Okta, AWS & Office 365 with ...
Jun 05, 2025
By  , and
Cybersecurity Challenges in the Energy and Utilities Sector
Announcement, Partners

Cybersecurity Challenges in the Energy and Utilities Sector

IBM and Palo Alto Networks are collaborating to address five key security challenges and their solutions.
Jun 03, 2025
By 
See all Security Operations blogs

Unit 42 Threat Research

company article
High Profile Threats Vulnerabilities

Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-...

We detail the observed limited activity regarding authentication bypass vulnerability CVE-2024-0012 affecting specific versions of PAN-OS software, and include ...
November 22, 2024
By  Unit 42
company article
Cybercrime Threat Actor Groups

GoldMelody’s Hidden Chords: Initial Access Broker In-Memory IIS M...

An IAB campaign exploited leaked ASP.NET Machine Keys. We dissect the attacker's infrastructure, campaign and offer takeaways for blue teams....
July 8, 2025
By  Tom Marsden , Chema Garcia
company article
Threat Research Vulnerabilities

Apache Under the Lens: Tomcat’s Partial PUT and Camel’s Header Hi...

We analyze CVE-2025-24813 (Tomcat Partial PUT RCE), CVE-2025-27636 and CVE-2025-29891 (Camel Header Hijack RCE). ...
July 3, 2025
By  Jun Li , Qiang Liu , Yiheng An , Haozhe Zhang
company article
Malware Threat Research

Windows Shortcut (LNK) Malware Strategies

Our telemetry shows a surge in Windows shortcut (LNK) malware use. We explain how attackers exploit LNK files for malware delivery....
July 2, 2025
By  Haizhou Wang , Ashkan Hosseini , Ashutosh Chitwadgi
company article
Cybercrime Hacktivism High Profile Threats Malware Threat Actor Groups Threat Research

Threat Brief: Escalation of Cyber Risk Related to Iran (Updated J...

Unit 42 details recent Iranian cyberattack activity, sharing direct observations. Tactical and strategic recommendations are provided for defenders....
June 25, 2025
By  Unit 42
company article
Cybercrime Malware Threat Research

Cybercriminals Abuse Open-Source Tools To Target Africa’s Financi...

Cybercriminals are targeting financial organizations across Africa, potentially acting as initial access brokers selling data on the dark web....
June 24, 2025
By  Tom Fakterman , Guy Levi
company article
Cybercrime Malware Threat Research

Resurgence of the Prometei Botnet

We identified a resurgence of the Prometei botnet's Linux variant. Our analysis tracks the activity of this cryptominer and its new features....
June 20, 2025
By  Lee Wei Yeong , Pranay Kumar Chhaparwal
company article
Cybercrime Malware Threat Research

Exploring a New KimJongRAT Stealer Variant and Its PowerShell Imp...

We analyze two new KimJongRAT stealer variants, combining new research with existing knowledge. One uses a Portable Executable (PE) file and the other PowerShel...
June 17, 2025
By  Dominik Reichel
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts