Cloud-Delivered Security Service (CDSS) February Newsletter

Cloud-Delivered Security Service: The Monthly Newsletter for Security That Never Sleeps

Welcome to the February edition of the Cloud-Delivered Security Service (CDSS) Newsletter

This month brings powerful momentum across CDSS, including the launch of our new 30 Day Free Trial designed to help you validate AI-driven protection in your own production environment. We are also sharing insights from the 2026 Unit 42 Global Incident Response Report, highlighting how rapidly modern threats are evolving across multiple attack surfaces. Discover how CDSS delivers real-time prevention, deeper visibility, and simplified operations to help you stay ahead of today’s attackers.

What’s New In CDSS 

• New Customer Story: Winston-Salem State University modernized its security with Palo Alto Networks, deploying Next-Generation Firewalls and Cloud-Delivered Security Services to protect more than 60,000 connected devices. With automated prevention against over 1 million daily attack attempts and significantly reduced manual effort, the university eliminated recurring outages and gained the visibility needed to keep campus operations running smoothly.
• This month, we are highlighting the new CDSS 30 Day Free Trial, giving you the ability to validate Cloud Delivered Security Services within your own production environment. Evaluate real-time threat prevention powered by Precision AI, analyze traffic across users, devices, and applications, and measure how unified cloud-delivered controls improve detection efficacy and operational efficiency. Experience the impact in your environment today.

Security Spotlight of the Month

This month, we are highlighting the new 2026 Unit 42 Global Incident Response Report, which reveals that 87% of intrusions spanned multiple attack surfaces, including endpoints, networks, cloud environments, and SaaS applications. As attackers move laterally and combine techniques across environments, security controls must operate in real time to detect exploits, block command-and-control traffic, and prevent coordinated activity before impact. Read the full report to understand how unified, AI-driven threat prevention strengthens protection across your entire attack surface.

Latest Product Updates Across CDSS Core Subscriptions

FedRAMP Moderate: FedRAMP Moderate authorization for ALL of the CDSS Core Subscriptions is complete. Refer to all Palo Alto Networks FedRAMP Authorized services here.

Advanced Threat Prevention

• Command Injection Header Model has been improved to bring True Positive Rate (TPR) to 99.99% and False Positive Rate (FPR) to 0.014% 

• NSS Labs EFW 2025 – Palo Alto Networks has been upgraded to a “Recommended” rating after a Follow-On Enterprise Firewall test. 

• SecureIQ 2025 Command and Control Comparative report – 97.02% Overall Block Rate (Next best 46.59%), 100% Empire Block Rate, 94.04% Cobalt Strike Block Rate. - Demo Video

Advanced Wildfire

• Codegene: The proprietary Codegene database to automatically identify and fingerprint shared malware logic. By identifying "fingerprints" in malicious code logic reused across malware families, the system automatically deploys high-confidence YARA rules. 

Advanced DNS Security

• Advanced DNS Security Resolver (ADNSR) for Prisma Access Agent: Extends real-time protection to every Windows and macOS endpoint, regardless of location. Armed with ADNSR, the prisma access agent can now stop zero-day DNS threats even when the tunnel is disconnected - LC Blog

Advanced URL Filtering

• Pastejacking is now GA. Provides detection of malicious clipboard content that requires user interactions such as clicking, copying, or pasting - LC Blog. 

• "Browser-Runtime-Attack" category via Content Updates on January 29, 2026, visible under URL filtering profiles scheduled to become functional on March 27, 2026 - LC Blog 

• Custom FQDN Lists & Automatic EDL Subdomain Expansion are now available to Advanced DNS Security Resolver (ADNSR) customers.ADNSR offers custom FQDN and automated subdomain EDL management, providing granular control while eliminating manual overhead and security gaps at scale - LC Blog.

Tips & Best Practices

Tip of the week: Validate your unified cloud-delivered threat prevention controls against live traffic, not just policy configuration. Regularly review detection logs, blocked sessions, and response times to ensure protections across DNS, web, and network traffic are operating effectively in real-world conditions.

What is the best practice? Establish a recurring validation process that measures detection efficacy, false positives, and time to prevention across users, devices, and applications. Testing unified cloud-delivered security services within your production environment provides measurable insight into coverage gaps and ensures consistent, AI-driven protection across your entire infrastructure.

Did You Know Threat Facts & Insights

Did you know… AI-enabled attacks are compressing breach timelines to under 72 minutes, leaving security teams with little time for manual response. Real-time, AI-driven prevention is no longer optional. Learn more in our latest Unit 42 Incident Response Report.

Explore More Cloud-Delivered Security Services  Resources

• CDSS Website 
• CDSS 30-day Free Trial Page 
• Advanced Threat Prevention 
• Advanced WildFire
• Advanced DNS Security | Advanced DNS Security Resolver 
• Advanced URL Filtering 
• Device Security
• Palo Alto Networks LIVEcommunity YouTube channel 
• Cloud Delivered Security Service YouTube Channel 
• CDSS PAN TV Episodes 
• CDSS Infographic
• CDSS Ebook

Stay Protected with Cloud-Delivered Security Services 

Palo Alto Networks Cloud-Delivered Security Services (CDSS) help organizations stay ahead of modern threats with unified, AI-driven protection across DNS, web, network, and device environments. This month’s highlights, including the launch of our new 30 Day Free Trial and insights from the 2026 Unit 42 Global Incident Response Report, reinforce the need for real-time, coordinated prevention across today’s expanding attack surface.

To learn more about how CDSS can strengthen your security strategy, including hands-on experience through the CDSS Ultimate Test Drive, contact your Palo Alto Networks representative. Check back next month for the latest innovations and product updates!