Cortex XDR 7.1.1 reported as OLD defs after update from 7.0.1.

Hello all.  We are using Global Protect with HIP rules turned on to enforce valid AV, etc. After an update to 7.1.1, HIP was seeing our virus definitions were dated 1/1/1970 for at least a few hours. Had to reboot before GlobalProtect would see curre

Cortex Components in plain english / non-secops terms

Cortex XDR unable to detect nbns spoofing using kali linux responder

Hello, I am new to Cortex XDR, I  just installed it. I tried nbns spoofing on a pc with Cortex XDR and it did not stop or detect it. My previous test with Symantec was detected and stopped. Any thoughts on this? 

Query to Search For Password Files in Cortex XDR Pro

Hello community!

Do you know whether it´s possible in Cortext XDR Pro to build a query to Search For Password Files ?

Many thanks!

XQL Query for CVE-2021-1675 exploitation attempts (printnightmare)

Hi Community

I need some help in creating an XQL query for a BIOC which detects exploitation attempts for CVE-2021-1675 (printnightmare). So far I have the following two queries:

1. A query that detects incoming connections on port 445

My agent BSOD when I use bluekeep vulnerability to explit it .

Hi 

My experimental machine was hit by BSOD by CVE-2019-0708 even though cortex agent is installed

Does anyone have such a situation?

Scheduled Maintenance for Cortex XDR in America, Canada, Singapore, Australia and Japan Region Scheduled for Mar 7, 10:00 - 12:00 UTC

Hello 

Do you konw if this maintanence will affect the endpoints?

Cortex XDR Blog

Great blog read on Cortex XDR's MITRE performance written by Peter Havens. 

MITRE Round 2 Results Solidify Cortex XDR as a Leader in EDR

Join us on May 7 for the “MITRE ATT&CK Round 2: Results Unveiled” webinar for a deep dive into the MITRE APT29 E

Will Cortex XDR identify IoT threats?

Cortex XDR (formerly Magnifier) is well suited to stopping Internet of Things (IoT) threats. IoT devices can be exploited to become a point of entry for a network attacker or to launch different kind of attacks like DDoS attacks. Industry researchers

How is Cortex XDR different from AutoFocus?

AutoFocus complements Cortex XDR (formerly Magnifier). AutoFocus provides contextual threat intelligence to accelerate investigations. Security analysts can look up information about suspicious files, URLs, or IP addresses with AutoFocus. Plus, AutoF

New Cortex XDR (2.4) Features

Hello, all-

I know I'm a few days late on this.  I just wanted to make sure everyone got a chance to see the new features that were released on Sunday.  If you haven't had a chance to look, please log in and/or check out the release notes for May 202

Review Cortex XDR Get $25 Visa Gift Card

As a valued member of our Cortex XDR community, we’d greatly appreciate your feedback on the Gartner Peer Insights platform.  You do not need to be a Gartner client to provide a review.  The first 100 respondents will receive a $25 Visa gift card. Th

Cortex XDR and Early launch Anti-Malware Protection

Hello,

Anyone can help if the cortex XDR have a Function called launch Anti-Malware Protection during boot this will work with Secure Boot

Thanks