Palo Alto Networks

This category contains 607 posts

The Curious Case of Notepad and Chthonic: Exposing a Malicious Infrastructure

Recently, I’ve been investigating malware utilizing PowerShell and have spent a considerable amount of time refining ways to identify new variants of attacks as they appear. This posting is a follow-up of my previous work on this subject in  “Pulling Back the Curtains on EncodedCommand PowerShell Attacks”. In a sample I recently analyzed, something stood … Continue reading

OilRig Uses ISMDoor Variant; Possibly Linked to Greenbug Threat Group

Unit 42 has discovered activity involving threat actors responsible for the OilRig campaign with a potential link to a threat group known as GreenBug. Symantec first reported on this group back in January 2017, detailing their operations and using a custom information stealing Trojan called ISMDoor. In July 2017, we observed an attack on a Middle Eastern technology … Continue reading

How Traps Protects Against Astrum

Astrum is a relatively old exploit kit (EK) that is also known as Stegano EK. We noted in January 2017 how Stegano/Astrum had reappeared in recent months and talked about how Traps protects against it. Since then, researchers have seen Astrum updated with new specific countermeasures that target security products and seek to evade detection, making it one … Continue reading

Embracing Diversity in Cybersecurity – Key Takeaways From Palo Alto Networks Ignite Diversity Panel

Palo Alto Networks hosted its first-ever diversity panel session at Ignite, our annual end user conference, held this year in Vancouver, Canada. The session, “Embracing Diversity: The Catalyst to Effectively Solve Today’s Toughest Cyber Challenges,” was co-chaired by Carly Chaikin of the popular USA Network cybersecurity TV series “Mr. Robot” and our own Rick Howard, … Continue reading

Tips for Gamifying Your Cybersecurity Education and Awareness Programs

Employees are fast becoming the weakest link in the defence against cybercriminals. Sometimes common sense can only go so far, as you need to make sure that best practices around security don’t go in one ear and out the other. Whether through innocent mistakes or because they were targeted for their access to sensitive information, … Continue reading

Palo Alto Networks Joins the European Commission’s Digital Skills and Jobs Coalition

This month Palo Alto Networks proudly joined the European Commission’s Digital Skills and Jobs Coalition. This coalition brings together European Union (EU) member states, companies, social partners, non-profit organisations and education providers, all of whom are taking action to boost digital skills in Europe. Members of the coalition have endorsed its objectives and principles: to build strong … Continue reading

CrashOverride/Industroyer: Protections for Palo Alto Networks Customers

This week, the Industrial Control System (ICS) community was again abuzz after reports of a new ICS-specific malware researchers are calling CrashOverride or Industroyer. Several reports indicate that CrashOverride or Industroyer could be the tool used in the December 17, 2016 power outage in the Ukraine. It’s imperative that ICS/SCADA environments adopt next-generation cybersecurity capabilities to prevent … Continue reading

Collaborating with Girl Scouts of the USA for First-Ever National Cybersecurity Badges!

Professionals of the future will contend with cybersecurity challenges unprecedented in scope and sophistication. Girl Scouts of the USA and Palo Alto Networks recognize that we all must work together to solve these challenges by creating the innovative cybersecurity problem solvers of tomorrow, which means educating today. Building interest in STEM at a young age … Continue reading

Announcing GlobalProtect Cloud Service: Consistent Protection Delivered to Remote Networks and Mobile Users

Today at Ignite 2017 in Vancouver, we announced GlobalProtect cloud service, a new cloud-based security infrastructure managed by Palo Alto Networks that allows you to deploy consistent next-generation security to your remote networks and mobile users using Panorama management. The old ways of thinking about perimeter security are just that: old. Organizations often have many remote … Continue reading

Accelerating Security Innovation: Introducing the Palo Alto Networks Application Framework

At Palo Alto Networks, we strive to provide the most compelling security to our customers, delivered with the utmost consistency across the network, endpoint and cloud. We are trusted by more than 39,500 customers to protect their organizations, prevent cyberattacks, and help maintain trust in the digital age. Our decade-long journey was founded on two … Continue reading

Web Stats

  • 116,973 hits


@PhilipHungCao, CISM, CCSP, CCSK, CASP, CIW-WSP, GICSP, PCNSE, ACSP, CCDA, DCSE, JNCIA, MCTS, MCSA, VCP5-DCV, VCP6-NV, ZCNT is a #TekF@rmer. He has 16 years' experience in ICT/Cybersecurity industry in various sectors & positions.

Personal Links

View Full Profile →

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 2,132 other followers

Twitter Updates


August 2017
« Jul