Always Innovating in NetSec Series: New Innovations in ATP, AI Runtime, IoT/OT, Quantum, and Cloud NGFW

This month, we’re excited to introduce five key innovations that enhance security, visibility, and efficiency across your network security ecosystem. Advanced Threat Prevention (ATP) now integrates CVE Mapping into security reports, providing instant visibility into exploited vulnerabilities for faster decision-making. Next, AI Runtime Security is redefining how organizations protect AI agents. For IoT/OT security, new resources on Device Attribute Polling and asset discovery help organizations uncover hidden risks while maintaining operational uptime. We’re also launching a Quantum Random Number Generator (QRNG) Open API framework, enabling multi-vendor interoperability for quantum-ready security. Finally, Cloud NGFW for Azure now features a simplified pricing model, reducing costs and making enterprise-grade cloud security more accessible. Read on to learn more!

1. CVE Mapping Now Integrated Into ATP Security Reports

We’re excited to announce a new enhancement to Advanced Threat Prevention (ATP) with the integration of CVE Mapping directly into your ATP security reports. This powerful feature provides instant visibility into which vulnerabilities are being exploited, offering real-time threat context without the need to sift through release notes. With the new "CVE Information" section in the ATP interface, security teams can make faster, more informed decisions by quickly identifying the exact vulnerabilities being targeted. To ensure you're getting the full benefit of this new functionality, make sure your ATP subscription is activated, or take advantage of our 90-day free trial. This update is designed to help you stay ahead of emerging threats and strengthen your overall security posture. For more details, visit our Live Community Blog Post.

2. Secure AI Agents by Design with AI Runtime Security

In our latest blog, we explore how organizations can maintain trust in AI agents by embedding security into their design. Learn about some of the specific threats AI agents are susceptible to and why AI Runtime Security is a critical part of deploying AI agents responsibly. By using the AI Runtime Security API in low-code / no-code environments like Microsoft CoPilot Studio and Voiceflow, organizations can mitigate risks before they become problems. For a closer look at this strategy, check out the full blog.

3. Enhancing IoT/OT Security with Device Attribute Polling and Robust Asset Discovery

Two new resources are now available to help organizations navigate OT security challenges: a detailed FAQ and an in-depth blog. The IoT/OT Security Device Attribute Polling FAQ dives into the challenges of asset visibility in industrial environments, emphasizing the importance of identifying risks and vulnerabilities without disrupting critical operations. Traditional IT scanning methods often fail in these contexts, leading to production outages and limited security controls. The FAQ explains how Palo Alto’s Device Attribute Polling feature provides safe, active detection to uncover hidden or infrequently communicating devices, leveraging protocol-based queries tailored to minimize impact on industrial equipment. Meanwhile, our newest LIVECommunity blog Asset Discovery Drives OT Security Outcomes and Enables Plant Uptime highlights the role of robust asset discovery and targeted security measures in maintaining stable operations, addressing evolving risks, and achieving efficiency in interconnected industrial environments. Together, these resources provide valuable insights and tools for advancing OT security while ensuring operational uptime.

4. Quantum Random Number Generator (QRNG) Open API framework Released 

We announced the release of a Quantum Random Number Generator (QRNG) Open API framework, empowering organizations to prepare for future quantum security threats. The framework, developed in partnership with six innovators across the QRNG field, addresses the need for multi-vendor interoperability across the industry and enables organizations to invest in and build QRNG-based systems that are resilient regardless of the underlying technology or company. The QRNG Open API was created by Palo Alto Networks and six technical partners (Anametric, ID Quantique, Qrypt, Quantinuum, Quantropi, and Quside) to simplify the ability to obtain high quality entropy from an external QRNG platform (source). The QRNG Open API provides a common mechanism to obtain information on the QRNG platform’s capabilities, retrieve entropy from the platform, and to check the health of the entropy provided.

5. Simplified Security with Cloud NGFW for Azure – New Pricing Update

We’re excited to announce a new, simplified pricing model for Cloud NGFW for Azure. This update lowers costs and eliminates tiered traffic pricing, making enterprise-grade cloud security more accessible and cost-effective. Gone are the days of complex pricing structures. With this update, deployment costs are reduced from $1.50/hour to $1.25/hour, and traffic pricing is streamlined to a flat rate of $0.016/GB. Credit-based customers benefit from lower credit consumption, with 104 credits per deployment hour instead of 125 and just 1.3 credits per GB of traffic instead of 5.4. With credit fungibility across AWS and Azure, multi-cloud customers can maximize value while maintaining seamless security across platforms. Read the LIVECommunity blog to learn how this pricing update helps you optimize cloud security with Cloud NGFW for Azure.