This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Advanced Threat Prevention Discussions
Welcome to the Advanced Threat Prevention discussion area. Here, we explore Precision AI-powered protection that stops zero-day malware, exploits, and command-and-control attacks in real time—ensuring proactive defense and resilience against today’s most sophisticated threats.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Threat Prevention Discussions
Welcome to the Advanced Threat Prevention discussion area. Here, we explore Precision AI-powered protection that stops zero-day malware, exploits, and command-and-control attacks in real time—ensuring proactive defense and resilience against today’s most sophisticated threats.
About Advanced Threat Prevention Discussions
Welcome to the Advanced Threat Prevention discussion area. Here, we explore Precision AI-powered protection that stops zero-day malware, exploits, and command-and-control attacks in real time—ensuring proactive defense and resilience against today’s most sophisticated threats.

Discussions

Start a conversation

Welcome to the Threat & Vulnerability Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 4175 Views
  • 0 replies
  • 0 Likes

DNS Signatures

Our Palo started blocking a 3rd party site that is used by our organization. It was being sinkholed. I found the threat ID and it appears that it was tagged as virus/spyware. Short of allowing an exception for this one threat ID, is there any other action that can be taken to have palo re-evaluate and create a new signature that would deem th...

Security Profiles

I have a PA 3410 which has an Advanced Threat Prevention licence but when I highlight Antivirus/Anti-spyware/Vulnerability Protection there is a message in red at the bottom of the screen saying "Threat Prevention License is required for antivirus, anti-spyware, and vulnerability protection to function". My current Advanced Threat Prevention li...

Wildfire Submissions

I have a couple questions concerning Wildfire which I can't find the exact answers in any of the knowledge articles. 1. Is the entire file or email attachment sent to the WF cloud or just a sample/hash? Online I've seen both statements but can't confirm. 2. After the file is sent to the WF cloud for inspection, what does WF do with that file? D...

Vulnerability (CVE-2022-41080

Hello Everyone, Hope you are all doing well, Yesterday I was received vulnerability email from paloalto. Palo Alto Networks released this emergency content update for a critical Server-Side Request Forgery Vulnerability in Microsoft Exchange (CVE-2022-41080) that is actively exploited in the wild. Can you please confirm which PA version go...

Resolved! IP Geo location issues Apps & Threats update v8559-7361?

Hi, Since we have installed Apps & Threats update v8559-7361 we see that multiple ip address spaces are incorrect categorized.Before the upgrade those ip address spaces where categorized as US and after the upgrade categorized as CN (China)Is it possible that the latest updates has changed some IP geolocations or is it a bug? A short list of...

Knipsel.PNG

Discrepancies in Prisma Vulnerability Scan Report

We are frequently getting discrepancies between our Prisma report and the Client's Prisma Report. Our one of the customers getting more critical and our Prisma scan report is not even detecting them. I have attached both reports with this mail, please find the attachment.This is taking us in the indefinite loop of fixing the Vulnerabilities.Plea...

HSoni2 by L0 Member
  • 1799 Views
  • 0 replies
  • 0 Likes

Palo Alto Firewall CVE-2022-2884

Hi, Does anyone know if GitLab Remote Command Execution Vulnerability is covered with Palo Alto AV Signature? Is Palo Alto affected by it? I was not able to find it in their Security Advisories. Vulnerability Details: Title GitLab Remote Command Execution Vulnerability CVE ID CVE-2022-2884 CVE Summary GitLab Community Editi...

EDL - Talos block list

I have various EDLs setup on various different PA models. Some work, and populate the list with IP's and effectively block in security policies. However, for Cisco Talos block list, it just will not work: http://www.talosintelligence.com/feeds/ip-filter.blf It won't populate the list at all when I request to see the list I get: vsys1/Cisco Talo...

Resolved! CVE-2022-00028

Hi all, I wanted to ask CVE-2022-0028 Pan-os:Reflected amplification dow vulnerability in URL filtering Will still affect my environment if i am using separate PROXY SERVER(Forcepoint proxy) for url filtering purpose? Palo alto url filtering is used but its for specific policies rather all other traffic use forcepoint proxy for URL filterin...

Resolved! Vulnerability protection

I am going to activate a profile with vulnerability protection enabled. I have many rules without TP profile that I need to enable, but I want to know if the firewall can handle them. What is the best way to calculate how much CPU load the TP adds to the firewall? I need to be sure that I don't exceed the firewall's limit. At the moment, the CPU...

SSH protocol uses Weak key exchange algorithms in PA 500 for PAN OS 8.1.14

Hi Team , PA 500 with 8.1.14 (latest OS ) is having the Vulnerability SSH protocol uses Weak key exchange algorithms. I understand we can change algorithm values with set deviceconfig system ssh kex to stronger algorithm post 9.0 unfortunately PA 500 do not have 9.0 release in software download.So how do we close this one , is there any alter...

Shashihm by L1 Bithead
  • 8801 Views
  • 6 replies
  • 0 Likes
  • 545 Posts
  • 78 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks