Threat Prevention Services

Threat Prevention Services

Don’t let ‘em in! Block threats at the perimeter and protect your network, your assets, and your digital way of life. Palo Alto Networks protects your network against threats by providing multiple layers of prevention, confronting threats at each phase of the attack. We use global threat intelligence through the close integration of threat prevention security services, URL Filtering and WildFire to automatically discover unknown malware and deliver protections. What questions do you have about DNS Sinkhole, malware, file blocking, and more? Bring your questions to the perimeter of LIVEcommunity. Ask, share, learn, and protect.

Threat Prevention Services Discussions

Have questions? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
Thursday

Turn around time for test a site submision

So As a network admin I was disappointed to see that Palo have marked this url as low risk : https://webrecorder.io/If you do not block this site...

posted in Threat & Vulnerability Discussions

62 1
Thursday

Minemeld service doesn't start and cannot access the web page giving 403 error

hello,we have an issue in minemeld service disabling access to the web server giving 403 error.The details is in screeshots.Any help please ?...

posted in Threat & Vulnerability Discussions

39 0
Monday

Vulnerability protection for 2020-0674 RCE

Is there a timeline for release of protection for this RCE, following the release of a patch? https://portal.msrc.microsoft.com/en-US/security-gu...

posted in Threat & Vulnerability Discussions

511 2
a week ago

Suspicious TLS Evasion Suggestion

In our environment, we use another product for web traffic decryption/inspection. Since that product acts as a proxy and all web traffic gets forwarde...

posted in Threat & Vulnerability Discussions

108 0
Friday

Help with Threat log SCAN: Host Sweep

I am looking for assistance interpreting a report that shows “SCAN Host sweep traffic” in my threat log. There are multiple internal sources scanning ...

posted in Threat & Vulnerability Discussions

129 2

Threat Prevention Services Blogs

Hide N Seek Botnet Return

Jun 14, 2019 — Hide 'N Seek adds to its menacing malware family.

1368 3 by in Blogs

New IoT/Linux Malware Targets DVRs, Forms Botnet

Apr 6, 2017

Unit 42 identifies a variant of the IoT/Linux botnet "Tsunami". Read about how the "Amnesia" malware is delivered and distributed within the targeted network.

9551 2 by in Blogs

When Scripts Attacks, WildFire Protects

Jan 14, 2019 — Cyberattackers look for fast and easy ways to steal your data. Among many techniques in their playbooks, using scripts is a quickly growing trend. Why? It...

3070 4 by in Blogs

Petya cyber attack - what's it all about?

Jun 28, 2017

Petrwrap/Petya ransomware. A major ransomware attack brings business to a close throughout Europe, in an
infection reminiscent of the WannaCry attack.

9830 1 by in Blogs

Ransomware Alert! Bad Rabbit

Oct 24, 2017 — Ransomware is showing up more frequently. Something we never want to have to deal with. If you want to make sure you are protected when using Palo Alto Network devices, then click to steer clear...

7358 3 by in Blogs

Smoking Out the Rarog Cryptocurrency Mining Trojan

Apr 4, 2018

Unit 42 investigates Rarog, a relatively unknown coin mining Trojan sold on various underground forums. Check out this forum to learn more!

 

8325 4 by in Blogs

DarkHydrus Adds Google Drive Support to Its RogueRobin Trojan for C2 Communications!

Jan 21, 2019 — The APT-group DarkHydrus has been busy with a new variant of the RogueRobin Trojan. See what it's about and how to stay protected!

2030 2 by in Blogs

OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government

Sep 13, 2018 — The OilRig group has been active since at least mid-2016 and continues their attack campaigns throughout the Middle East, targeting both governmental agencies and businesses on an almost routine...

8742 1 by in Blogs

No posts

Petya cyber attack - what's it all about?

Jun 28, 2017

Petrwrap/Petya ransomware. A major ransomware attack brings business to a close throughout Europe, in an
infection reminiscent of the WannaCry attack.

9830 1 by in Blogs

Palo Alto Networks protects against WanaCrypt0r and other ransomware attacks

May 16, 2017 — Want to know more about the latest WanaCrypt0r ransomware and ways that Palo Alto Networks can help you defend your network from these attacks? Please click to read more.

11946 2 8 by in Blogs

Coinhive.com – Malware or not?

Nov 10, 2017 — With the sheer amount of malware in the wild, it is hard to know what is real malware and what is not. Read about Coinhive.com and see why it may -- or may not -- be considered malware.

16313 1 3 by in Blogs

Unit 42 Uses AutoFocus to Identify Malware Faster

Apr 15, 2015 — Every IT professional has to deal with Malware attacks on a day to day basis. They are very disruptive, a nuisance, and can cause damage as well as loss of data.So, when there is something new...

7564 by in Blogs

Threat Prevention Services Videos