The Benefits of Effective SIEM Policy Development

The Benefits of Effective SIEM Policy Development

There is an imbalance between technical issues and process aspects related to security information and event management (SIEM). This gap is the root cause of some skepticism with and disappointment in SIEM. Be aware that before implementing SIEM, it is necessary to establish the basis of the information security management system (ISMS), which includes considering [...]

AutoFocus Lenz: Taking the Blue (Team) Pill

AutoFocus Lenz: Taking the Blue (Team) Pill

The Palo Alto Networks AutoFocus threat intelligence services accelerates analysis and response workflows for unique, targeted attacks. The services further make an immense set of threat intelligence available via the AutoFocus API, which can enrich existing security systems or workflows. Today, security teams can easily build scripts on top of this data using theAutoFocus Python [...]

Prince of Persia: Infy Malware Active In Decade of Targeted Attacks

Prince of Persia: Infy Malware Active In Decade of Targeted Attacks

Attack campaigns that have very limited scope often remain hidden for years. If only a few malware samples are deployed, it’s less likely that security industry researchers will identify and connect them together. In May 2015, Palo Alto Networks WildFire detected two e-mails carrying malicious documents from a genuine and compromised Israeli Gmail account, sent [...]