Palo Alto Networks announced Wednesday it will acquire Chronosphere, a cloud observability platform, for $3.35 billion in cash and equity, marking the cybersecurity company’s latest move to expand beyond its traditional security perimeter into adjacent infrastructure monitoring capabilities. The acquisition represents a significant bet on the convergence of security and operational observability as organizations grapple…
Category: Palo Alto Networks
Global Security News, Mergers and Acquisitions, Money, Palo Alto Networks
Palo Alto Networks to acquire CyberArk for $25 billion
Palo Alto Networks has agreed to acquire identity security firm CyberArk for approximately $25 billion, marking the cybersecurity giant’s largest acquisition and its formal entry into the identity security market as the industry continues consolidating amid rising cyber threats. The transaction ranks among the largest technology acquisitions this year and underscores the market’s focus on…
crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42
CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution
CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups. The alliance between the longstanding competitors doesn’t…
crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42
CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution
CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups. The alliance between the longstanding competitors doesn’t…
crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42
CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution
CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups. The alliance between the longstanding competitors doesn’t…
Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Global Security News, Government, McCrary Institute, National Cyber Director, NightDragon, North America, Palo Alto Networks, Senate Homeland Security and Governmental Affairs Committee, U.S. Chamber of Commerce, Workforce
Experts endorse Sean Cairncross for national cyber director ahead of Senate hearing
President Donald Trump’s pick to serve as national cyber director was endorsed by a collection of cyber experts days before a Senate panel will consider his nomination. The 24 people who signed the letter endorsing Sean Cairncross include former government officials and current industry leaders, many who served in Republican-led administrations but some who also served…
Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Global Security News, Government, McCrary Institute, National Cyber Director, NightDragon, North America, Palo Alto Networks, Senate Homeland Security and Governmental Affairs Committee, U.S. Chamber of Commerce, Workforce
Experts endorse Sean Cairncross for national cyber director ahead of Senate hearing
President Donald Trump’s pick to serve as national cyber director was endorsed by a collection of cyber experts days before a Senate panel will consider his nomination. The 24 people who signed the letter endorsing Sean Cairncross include former government officials and current industry leaders, many who served in Republican-led administrations but some who also served…
Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Global Security News, Government, National Cyber Director, NightDragon, North America, Palo Alto Networks, Senate Homeland Security and Governmental Affairs Committee, U.S. Chamber of Commerce, Workforce
Experts endorse Sean Cairncross for national cyber director ahead of Senate hearing
President Donald Trump’s pick to serve as national cyber director was endorsed by a collection of cyber experts days before a Senate panel will consider his nomination. The 24 people who signed the letter endorsing Sean Cairncross include former government officials and current industry leaders, many who served in Republican-led administrations but some who also served…
Check Point, CISA, cisco, CVE, Cybercrime, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), exploit, Exploits, firewall, Fortinet, Global Security News, Mandiant, Palo Alto Networks, Rapid7, Research, sonicwall, Technology, Threats, virtual private network (VPN), vulnerabilities
SonicWall customers confront resurgence of actively exploited vulnerabilities
Vulnerabilities are proliferating in SonicWall devices and software this year, putting the vendor’s customers at risk of intrusion via secure access gateways and firewalls. The year started off on a sour note for the California-based company when it released security advisories for nine vulnerabilities on Jan. 7. The total number of vulnerabilities publicly disclosed by…
Amazon, CISA, crowdstrike, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Google, Government, intelligence sharing, Joint Cyber Defense Collaborative, Joint Cyber Defense Collaborative (JCDC), National Security Agency, Palo Alto Networks, Research, Technology, Threat Intelligence, Threats
Amazon, CrowdStrike, Google and Palo Alto Networks claim no change to threat intel sharing under Trump
SAN FRANCISCO — Threat intelligence sharing is flowing between the private sector and federal government and remains unimpeded thus far by job losses and budget cuts across federal agencies that support the cyber mission, according to executives at major security firms. Top brass at Amazon, CrowdStrike, Google and Palo Alto Networks said there’s been no…
AI agents, AI and ML in Security, Cybersecurity, DevOps, Featured, generative ai, Global Security News, machine learning, Mobile Security, Palo Alto Networks, Protect AI, rsa, rsac, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight
Palo Alto Networks to Acquire Protect AI, Launches AI Security Platform
Accelerating its aggressive foray into artificial intelligence (AI) security, Palo Alto Networks Inc. on Monday said it has agreed to acquire cybersecurity startup Protect AI. Additionally, the company launched an ambitious AI security platform at the RSA Conference in San Francisco, as well as updates to two of its core products. The deal to buy..…
Cybercrime, Cybersecurity, exploit, Exploits, firewall, Fortinet, Global Security News, Google Threat Intelligence Group, ivanti, Mandiant, Palo Alto Networks, Ransomware, Research, routers, Threats, virtual private network (VPN), vulnerabilities
Attackers hit security device defects hard in 2024
Attackers are having a field day with software defects in security devices, according to a new report released Wednesday by Mandiant Exploits were the most common initial infection vector, representing 1 of every 3 attacks in 2024, and the four most frequently exploited vulnerabilities were all contained in edge devices, such as VPNs, firewalls and…
china, CISA, cisco, citrix, CVE, Cybercrime, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), espionage, exploit, Exploits, firewall, firewalls, Fortinet, Gartner, Global Security News, Google Threat Intelligence Group, ivanti, known exploited vulnerabilities (KEV), Mandiant, National Vulnerability Database, NIST, Palo Alto Networks, Rapid7, Research, routers, Technology, Threats, virtual private network (VPN), VulnCheck, vulnerabilities, vulnerability disclosure, zero days
Is Ivanti the problem or a symptom of a systemic issue with network devices?
Network edge devices — hardware that powers firewalls, VPNs and network routers — have quickly moved up the list of attackers’ preferred intrusion points into enterprise networks. While dozens of companies make and sell these devices, customers of one company in particular — Ivanti — have confronted exploited vulnerabilities in their products more than any…
Check Point, cisco, Cybersecurity, Exploits, firewall, Forcepoint, Fortinet, Global Security News, google cloud, Juniper Networks, Microsoft Azure, Palo Alto Networks, Research, Technology, Versa Networks
Independent tests show why orgs should use third-party cloud security services
Businesses don’t always get what they pay for in cybersecurity. Some of the most expensive cloud network firewall vendors are among the worst performers against exploits and evasions, according to the most comprehensive, independent testing CyberRatings.org has conducted to date. Cisco, by far the most expensive cloud network firewall offering across the top 10 vendors…
crowdstrike, Cybercrime, Cybersecurity, Global Security News, North Korea, North Korean IT workers, Palo Alto Networks, Research, Threats, Unit 42
The North Korea worker problem is bigger than you think
North Korean nationals have infiltrated businesses across the globe with a more expansive level of organization and deep-rooted access than previously thought, insider risk management firm DTEX told CyberScoop. This swarm of technical North Korean experts isn’t just intruding businesses as ad hoc freelance IT workers; they’ve gained full-time employment as engineers and specialists of…
Asia Pacific, Cybercrime, Cybersecurity, FCC, Federal Bureau of Investigation (FBI), FTC, Global Security News, imessage, Palo Alto Networks, Scam, Social Engineering, Threat Intelligence, Threats, Unit 42
Who is sending those scammy text messages about unpaid tolls?
It’s not just you. Seemingly everyone is getting those text messages that serve as a notification of an unpaid toll road violation. The past due is usually less than $25, but is often paired with threats of excessive penalties, suspended vehicle registrations and threats to report the fare to state motor vehicle agencies. None of…
AI, Cybersecurity, Enterprise, Fundraising, Global IT News, Global Security News, low-code, no-code, Palo Alto Networks, Security, Sola, sola security
Sola emerges from stealth with $30M to build the ‘Stripe for security’
Enterprises these days can choose from hundreds of apps and services available to secure their networks, data and assets — nearly as many more to help them manage all the alerts and extra work that those security apps generate. But what if you could build your own apps, customised to your own workloads, to simplify…
Exploits, Global Security News, industrial control systems (ICS), Palo Alto Networks, SCADA, Technology, vulnerabilities
Multiple vulnerabilities found in ICONICS industrial SCADA software
A popular set of SCADA software systems used in critical infrastructure around the world suffered from at least five known vulnerabilities that could have allowed for privilege escalation, DLL hijacking and the ability to modify critical files. The vulnerabilities were found within a suite of software made by ICONICS, which claims on its website that…
crowdstrike, Cybercrime, Cybersecurity, Global Security News, hacking, Palo Alto Networks, Ransomware, ReliaQuest, Research, Threat Intelligence, Threats, Unit 42
Cybercriminals picked up the pace on attacks last year
Threat actors became increasingly efficient last year, rapidly achieving lateral movement and swiftly stealing data at a faster clip than ever before, according to multiple threat intelligence firms. The reduced time frame is a clear indicator that cybercriminals are constantly improving their ability to be successful. With the abuse of legitimate system tools to help…
Cybercrime, Cybersecurity, encryption, extortion, Global Security News, Incident Response, Palo Alto Networks, Ransomware, Research, Threats, Uncategorized, Unit 42
Threat actors are increasingly trying to grind business to a halt
Cybercriminals intentionally disrupted operations at a growing rate last year, Palo Alto Networks’ threat intelligence firm Unit 42 said in an annual incident response report released Tuesday. Of the nearly 500 major cyberattacks Unit 42 responded to last year, 86% involved business disruption, including operational downtime, fraud-related losses, increased operating costs and negative reputational impacts. …
Application Security, authentication bypass, Cloud Security, Cybersecurity, Data Privacy, Data Security, DevOps, Featured, firewall, Firewall Exploit, firewall security, Global Security News, Governance, Risk & Compliance, Humor, Identity & Access, Incident Response, Industry Spotlight, Most Read This Week, Network Security, News, Palo Alto Networks, Palo Alto Networks PAN-OS, PAN-OS, PAN-OS Vulnerability, php, Popular Post, SB Blogwatch, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, vulnerabilities
PAN-PAN-PAN-OS: Palo Alto Firewalls Under Attack (Again)
Time to Declare an Emergency? Scrotes chain three flaws to take full control—seems pretty easy. The post PAN-PAN-PAN-OS: Palo Alto Firewalls Under Attack (Again) appeared first on Security Boulevard.
Cybercrime, Cybersecurity, Exploits, Fortinet, Global Security News, ivanti, Palo Alto Networks, Research, Threats, vulnerabilities, vulnerability
Edge device vulnerabilities fueled attack sprees in 2024
Edge devices harboring zero-day and n-day vulnerabilities were linked to the most consequential attack campaigns last year, Darktrace said in an annual threat report released Wednesday. Darktrace’s threat researchers found the most frequent vulnerability exploits in customers’ instances of Ivanti Connect Secure and Ivanti Policy Secure appliances, along with firewall products from Fortinet and Palo…
Blog, Emergency Response, Global Security News, Palo Alto Networks, PAN-OS, Security Bloggers Network
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability (CVE-2025-0108)
Overview Recently, NSFOCUS CERT detected that Palo Alto Networks issued a security announcement and fixed the identity bypass vulnerability in PAN-OS (CVE-2025-0108). Due to the problem of path processing by Nginx/Apache in PAN-OS, unauthenticated attackers can bypass authentication to access the management web interface of PAN-OS device and call some PHP scripts, thus obtaining sensitive…