Latest Blogs

AI, Quantum Computing and Other Emerging Risks
AI Governance, AI Security, Cybersecurity, Partners

AI, Quantum Computing and Other Emerging Risks

Oct 17, 2025
By 
Secure the Edge with Prisma Browser and the Essential Eight
Announcement

Secure the Edge with Prisma Browser and the Essential Eight

Oct 15, 2025
By  and
Closing the Cloud Security Gap
Cloud Security, Reports, Unit 42

Closing the Cloud Security Gap

Oct 09, 2025
By 
From Ransom to Revenue Loss
AI Security, Malware, Products and Services, Research, Unit 42

From Ransom to Revenue Loss

Oct 07, 2025
By 
The Case for Multidomain Visibility
AI and Cybersecurity, AI Security, Cybersecurity, Data Security, Incident Response, Reports, Unit 42

The Case for Multidomain Visibility

Oct 01, 2025
By 
Agentic AI and the Looming Board-Level Security Crisis
AI Governance, AI Security, Points of View

Agentic AI and the Looming Board-Level Security Crisis

Sep 29, 2025
By 

POPULAR BLOGS

Popular Topics

SOC
Cortex XDR
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud

Corporate Blogs

Why Threat Actors Succeed
Points of View, Reports, Unit 42

Why Threat Actors Succeed

Learn why threat actors succeed by exploiting security weaknesses. Defend against threats with integrated platforms, improved visibility and strong IAM.
Oct 24, 2025
By 
The Ransomware Speed Crisis
AI and Cybersecurity, AI Security, Must-Read Articles

The Ransomware Speed Crisis

There is a ransomware speed crisis. Attacks have accelerated 100x faster since 2021. Discover why traditional security fails and build AI-powered defenses.
Sep 24, 2025
By 
Raising the Bar for Incident Response
Announcement, Unit 42

Raising the Bar for Incident Response

Unit 42 is now NCSC Enhanced Level CIR assured, proving our commitment to exceed the highest global standards for incident response and trust.
Sep 18, 2025
By 
Securing the Future of AI
AI Security, Announcement, Event, Partners, Products and Services

Securing the Future of AI

Discover how Palo Alto Networks Prisma AIRS provides end-to-end AI security, protecting models, agents, apps and data across the entire AI lifecycle.
Sep 17, 2025
By 
Security Operations Under Fire Inside Black Hat's NOC
Events, Security Platform

Security Operations Under Fire Inside Black Hat's NOC

Palo Alto Networks secures Black Hat's NOC, managing billions of threat events with AI-driven automation, multivendor integration and rapid crisis response.
Sep 09, 2025
By 
Prisma SASE 4.0: Powering the AI-Ready Enterprise
Announcement, News & Events, Product Features, Products and Services

Prisma SASE 4.0: Powering the AI-Ready Enterprise

Prisma SASE 4.0 powers the AI-ready enterprise with AI-powered threat protection, frictionless data security and unified, intelligent o...
Sep 04, 2025
By 
Salesforce-Connected Third-Party Drift Application Incident Response
CIO/CISO, Incident Response, Unit 42

Salesforce-Connected Third-Party Drift Application Incident Response

Companies were impacted by a Salesloft Drift data breach. Our investigation reveals exfiltrated data includes business contact and sale...
Sep 02, 2025
By 
Securing the AI Before Times
AI Security, CSO Perspective, Points of View, Predictions, Unit 42

Securing the AI Before Times

The cybersecurity landscape is being reshaped by AI, requiring a fundamental rethinking of our approach to cyber resilience and a new security framework.
Aug 28, 2025
By 
See all Corporate blogs

Network Security Blogs

Why Total Multicloud Visibility? You Can’t Secure What You Can’t See
Cloud Security

Why Total Multicloud Visibility? You Can’t Secure What You Can’t See

Security blind spots are a key risk. Learn how a unified multicloud security fabric provides complete, real-time asset mapping to secure your entire estate.
Oct 15, 2025
By  and
Red Teaming Your AI Before Attackers Do
AI Security, AI Security

Red Teaming Your AI Before Attackers Do

Learn why traditional security fails against unique AI threats like prompt injection, and how continuous AI red teaming is vital for secure deployment.
Oct 01, 2025
By  and
The Modern Firewall for the Enterprise of Connected Devices
IoT Security, Products and Services

The Modern Firewall for the Enterprise of Connected Devices

The Palo Alto Networks hybrid mesh firewall delivers unified security, visibility & control for users, workloads & connected devices enterprise-wide.
Sep 30, 2025
By 
From Chaos to Command: An Organization's Journey to Master Multicloud
Products and Services

From Chaos to Command: An Organization's Journey to Master Multicloud

How organizations can master multicloud security by moving from chaos to command with a unified framework to discover, deploy, protect, and operationalize.
Sep 29, 2025
By 
Cloud NGFW for Azure by Palo Alto Networks | Scalable FWaaS Security
Cloud NGFW, Cloud Workload Protection

Cloud NGFW for Azure by Palo Alto Networks | Scalable FWaaS Security

Get scalable, fully managed security for Azure. New auto scaling and AppInsights integration lets you balance speed, scale, and security.
Sep 25, 2025
By  and
When Hidden Flaws Surface: Securing AI at Runtime
AI Security

When Hidden Flaws Surface: Securing AI at Runtime

Is your AI chatbot secure? With every prompt, new attack vectors emerge. Learn how runtime security protects your AI from evolving threats in real time.
Sep 23, 2025
By  and
Enterprise & Branch Security with Palo Alto Networks New NGFWs
Announcement, Next-Generation Firewalls, Products and Services

Enterprise & Branch Security with Palo Alto Networks New NGFWs

Get the latest details on the 14 new NGFWs Palo Alto Networks released to secure data centers, enterprise branches and remote locations.
Sep 22, 2025
By  and
Protecting the Utility Grid’s Digital Ecosystem, from Core to Edge to AI
5G Security, Firewall, IoT Security

Protecting the Utility Grid’s Digital Ecosystem, from Core to Edge to AI

Securing private 4G & 5G networks helps utilities enable critical service continuity & maintain community safety and trust.
Sep 17, 2025
By  and
See all Network Security blogs

SASE Blogs

Prisma Browser Innovations: AI-Powered Security for Enterprise Work
AI Security, Product Features

Prisma Browser Innovations: AI-Powered Security for Enterprise Work

Protect your enterprise with AI-powered Prisma Browser to stop web threats, enforce password policies & secure all apps beyond SSO.
Oct 01, 2025
By 
Secure the Edge with Prisma Browser and the Essential Eight
Announcement

Secure the Edge with Prisma Browser and the Essential Eight

Secure organizations' web edge with Prisma Browser for Essential Eight and ISM compliance. Palo Alto Networks fortifies applications against cyber threats.
Oct 15, 2025
By  and
Why Securing Web Sessions is the Missing Link in Zero Trust
Product Features, Uncategorized

Why Securing Web Sessions is the Missing Link in Zero Trust

Identity has become the new battleground. In a world where work happens everywhere and applications live in the cloud, passwords, passwordless authentication, and even MFA can no l...
Sep 17, 2025
By  , and
Prisma SASE a Leader in Forrester Wave: Secure Access Service Edge
Announcement

Prisma SASE a Leader in Forrester Wave: Secure Access Service Edge

Forrester has named Palo Alto Networks a Leader in its newly released report, The Forrester Wave™: Secure Access Service Edge Solutions, Q3 2025.
Sep 11, 2025
By 
Prisma SASE 4.0: Powering the AI-Ready Enterprise
Announcement, News & Events, Product Features, Products and Services

Prisma SASE 4.0: Powering the AI-Ready Enterprise

Prisma SASE 4.0 powers the AI-ready enterprise with AI-powered threat protection, frictionless data security and unified, intelligent o...
Sep 04, 2025
By 
The End of Data Leaks: Modern Data Security Begins in the Browser
Data Security, Product Features, Use-Cases

The End of Data Leaks: Modern Data Security Begins in the Browser

See how Prisma Access Browser provides a proactive, intelligent and user-centric approach that ensures sensitive data is protected in t...
Sep 03, 2025
By  , and
Deliver a Best-of-Breed Application Experience with Prisma SD-WAN
Products and Services, SD-WAN

Deliver a Best-of-Breed Application Experience with Prisma SD-WAN

Prisma SD-WAN provides the automation, intelligence, and deep insight needed to deliver secure and reliable application experiences.
Aug 28, 2025
By  and
Raising the Bar for Endpoint Security: Prisma Access Browser & IGEL
Partner Integrations, Partners

Raising the Bar for Endpoint Security: Prisma Access Browser & IGEL

Prisma Access & IGEL address the modern challenges of a browser-first workspace with a unified solution that secures work from endpoint to cloud.
Aug 27, 2025
By  and
See all SASE blogs

Cloud Security Blogs

How Cortex Cloud and Semgrep Are Redefining AI-Driven Application Security
Application Security, AppSec, Cloud Security, Partners

How Cortex Cloud and Semgrep Are Redefining AI-Driven Application Security

Modern AppSec demands context. Cortex Cloud and Semgrep integrate to unify code, runtime, and infrastructure visibility, helping teams prioritize expl...
Oct 09, 2025
By 
Beyond Shift Left: Why Application Security Needs Smart Context
Application Security, ASPM, Cloud Security

Beyond Shift Left: Why Application Security Needs Smart Context

Application security posture management (ASPM) turns scans into context, prioritizes risk, and embeds guidance in developer workflows to prevent produ...
Sep 26, 2025
By 
The Expanding API Attack Surface
API Security, Cloud Runtime Security, Cloud Workload Protection, CWPP, Web Application & API Security

The Expanding API Attack Surface

API security for cloud-native teams: discover every API, prioritize risk with context, and enable real-time protection without slowing developers.
Sep 24, 2025
By  and
How Auto-Remediation Shifts the Odds in Cloud Security
Cloud Security, Cloud-Native Application Protection Platform, CNAPP

How Auto-Remediation Shifts the Odds in Cloud Security

CNAPP autoremediation streamlines cloud security by cutting alert noise, enforcing guardrails, and driving faster, safer outcomes for teams.
Sep 17, 2025
By 
Breakdown: Widespread npm Supply Chain Attack Puts Billions of Weekly Downloads at Risk
AppSec, ASPM, Cloud Security

Breakdown: Widespread npm Supply Chain Attack Puts Billions of Weekly Downl...

npm supply chain attack exposed billions of downloads to risk. Learn how malicious packages spread and how to prevent threats with Cortex Cloud.
Sep 10, 2025
By  and
Accelerate Secure Development by Automating Delivery of a Compliant Cloud Infrastructure
AppSec, Cloud Security, Partners

Accelerate Secure Development by Automating Delivery of a Compliant Cloud I...

Cortex Cloud and HashiCorp Terraform integration secures cloud infrastructure by default, enabling fast, compliant provisioning and reduced risk.
Sep 09, 2025
By 
Taking Cloud Security from Visibility to Prevention with eBPF
Cloud Detection and Response, Cloud Runtime Security, Cloud Security, Cloud Workload Protection, CNAPP

Taking Cloud Security from Visibility to Prevention with eBPF

eBPF delivers real-time cloud security with deep visibility, stability, and speed—enabling Cortex to protect workloads w...
Aug 27, 2025
By 
Why Self-Managed AI Models Are Blind Spots and What to Do About It
AI Security, AI Security Posture Management, Cloud Security

Why Self-Managed AI Models Are Blind Spots and What to Do About It

Understand the real AI security risks of running self-managed models, from hidden deployments to supply chain threats, and how to effectively monitor ...
Aug 18, 2025
By 
See all Cloud Security blogs

Security Operations Blogs

The Data Digestion Revolution: Why Cortex XDL is the Foundation of Modern Security
AI and Cybersecurity, Must-Read Articles, Product Features

The Data Digestion Revolution: Why Cortex XDL is the Foundation of Modern S...

Discover how Cortex XDL's intelligence-first approach transforms raw security data into actionable threat intelligence at enterprise scale
Oct 22, 2025
By 
Forrester TEI: Unlock 257% ROI with Cortex XSIAM
AI and Cybersecurity, Product Features, Use-Cases

Forrester TEI: Unlock 257% ROI with Cortex XSIAM

AI-driven SecOps platform delivered 257% ROI, cut breach risk 60%, and consolidated tools for significant savings. Learn more about Palo Alto Networks Cortex XSIAM.
Oct 16, 2025
By 
SIEM Replacement Made Easy (Yes, Really!)
Must-Read Articles, Product Features, Uncategorized

SIEM Replacement Made Easy (Yes, Really!)

Deploy Cortex XSIAM in 3 months or less with AI-powered migration tools. Replace your SIEM faster with automated onboarding and ready-to-use analytics.
Oct 15, 2025
By 
Breaking Down Security Silos: How XDL Powers Advanced Threat Operations
Must-Read Articles, Product Features, Uncategorized

Breaking Down Security Silos: How XDL Powers Advanced Threat Operations

Learn how Cortex XDL unifies vulnerability management and email security through shared intelligence to stop coordinated attacks at ent...
Oct 14, 2025
By  and
How Cortex Defends Against Microsoft SharePoint
Must-Read Articles, Product Features

How Cortex Defends Against Microsoft SharePoint "ToolShell" Exploits

Cortex defends against the new "ToolShell" attack chain, which exploits vulnerabilities to achieve full remote code execution without r...
Oct 10, 2025
By 
Real-World Email Attacks Detected by Cortex Advanced Email Security
Must-Read Articles, News and Events, Product Features, Use-Cases

Real-World Email Attacks Detected by Cortex Advanced Email Security

Discover how unified email security stops brand impersonation, credential harvesting, and ...
Oct 09, 2025
By 
The Case Files of Detective Aems: A Study in Digital Deduction
AI and Cybersecurity, Must-Read Articles, Product Features, Use-Cases

The Case Files of Detective Aems: A Study in Digital Deduction

Discover how AI-powered email security defeats sophisticated phishing, BEC attacks, and br...
Oct 08, 2025
By  and
From Silos to Synergy: How Cortex XDL Transforms XDR to Elevate Threat Detection
AI and Cybersecurity, Must-Read Articles, News and Events, Product Features, Use-Cases

From Silos to Synergy: How Cortex XDL Transforms XDR to Elevate Threat Dete...

Learn how Cortex XDL transforms Cortex XDR by breaking down data silos and fusing telemetr...
Oct 07, 2025
By 
See all Security Operations blogs

Unit 42 Threat Research

company article
Cloud Cybersecurity Research Threat Research

Cloud Discovery With AzureHound

Executive Summary AzureHound is a data collection tool intended for penetration testing that is part of the BloodHound suite. Threat actors misuse this tool to ...
October 24, 2025
By  Margaret Kelley , Bill Batchelor , Eyal Rafian
company article
Malware Threat Research

The Smishing Deluge: China-Based Campaign Flooding Global Text Me...

Global smishing activity tracked by Unit 42 includes impersonation of many critical services. Its unique ecosystem allows attackers to quickly scale....
October 23, 2025
By  Reethika Ramesh , Zhanhao Chen , Daiping Liu , Chi-Wei Liu , Shehroze Farooqi , Moe Ghasemisharif
company article
Cloud Cybersecurity Research Cybercrime Threat Research

Jingle Thief: Inside a Cloud-Based Gift Card Fraud Campaign

Threat actors behind the gift card fraud campaign Jingle Thief target retail via phishing and smishing, maintaining long-term access in cloud environments....
October 22, 2025
By  Stav Setty , Shachar Roitman
company article
Hospitality Hacks and Retail Reality Checks Insights

The Golden Scale: Notable Threat Updates and Looking Ahead

Unit 42 shares notable developments of cybercrime group Scattered LAPSUS$ Hunters. Learn how this group may operate in the future....
October 20, 2025
By  Matt Brady
company article
High Profile Threats Vulnerabilities

Threat Brief: Nation-State Actor Steals F5 Source Code and Undisc...

A nation-state actor stole BIG-IP source code and information on undisclosed vulnerabilities from F5. We explain what sets this theft apart from others....
October 16, 2025
By  Unit 42
company article
Malware Threat Research

PhantomVAI Loader Delivers a Range of Infostealers

PhantomVAI is a new loader used to deploy multiple infostealers. We discuss its overall evolution and use of steganography and obfuscated scripts....
October 15, 2025
By  Tom Fakterman
company article
General Insights

Anatomy of an Attack: The "BlackSuit Blitz" at a Global Equipment...

BlackSuit ransomware delivered by APT Ignoble Scorpius started with a vishing attack. Read how Unit 42 helped and the ultimate outcome....
October 14, 2025
By  Preston Miller
company article
Hospitality Hacks and Retail Reality Checks Insights Threat Actor Groups

The Golden Scale: Bling Libra and the Evolving Extortion Economy

Scattered Lapsus$ Hunters: Organizations, be aware of the effort of this cybercriminal alliance as they target retail and hospitality for extortion....
October 10, 2025
By  Matt Brady
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts