Newsletter: Cloud Delivered Security Services, Aug-Sep, 2025

Introduction:

In today’s dynamic threat landscape, continuous innovation is essential for staying ahead of attackers. At Palo Alto Networks, our Cloud-Delivered Security Services (CDSS), powered by Precision AI™, are designed to provide a unified, proactive defense across your entire organization. This briefing highlights the latest advancements across our core and unified device security offerings, along with key resources to help you maximize your security posture.

Core Security: Advanced Threat Prevention at the Edge

Our core services are continuously enhanced to detect and prevent the most sophisticated threats with speed and precision.

Advanced URL Filtering (AURL):

• New Compromised-Website Category: Now available with content release 8930 and higher, with a default action set to "Block," this new category identifies and stops access to compromised websites.

• File Converter Category: A new category for sites that allow users to convert, compress, or modify files, with a default action set to "Alert."

Advanced DNS Security (ADNS):

• ADNS Security Resolver: Now generally available, this new service provides a flexible deployment and real-time, AI-powered inspection of both DNS requests and responses.

• Integrated Insights: ADNS Security Resolver insights are now integrated into Security Lifecycle Review (SLR) Reports, offering a consolidated view of your security posture.

Advanced Threat Prevention (ATP):

• SSL DL Model Update for Sliver over TLS 1.3: An updated model now enables the detection of open-source Sliver C2  transmitted over the TLSv1.3 protocol.

• Upcoming CVE Coverage: Information on upcoming CVEs is now readily available in the Threat Vault UI as well as through the Strata Copilot in the Strata Cloud Manager (SCM).

Advanced Wildfire (AWF):

• Enhanced Detection: We've improved Advanced Dynamic Analysis and enhanced our detection of Red Team tools like Cymulate.

• New Prevention Statistics: A new Advanced Wildfire Prevention Statistics Dashboard is now available in Strata Cloud Manager (SCM).

Proactive Threat Response: The SharePoint "ToolShell" Vulnerabilities

Palo Alto Networks CDSS delivered a swift, proactive response to the critical Microsoft SharePoint vulnerabilities (CVE-2025-53770, CVE-2025-49706, CVE-2025-49704, CVE-2025-53771). Our team began developing solutions on July 2, 2025, before Microsoft's official CVE publications. By July 25, multiple ATP signatures were released to block all four CVEs, with AURL Filtering and ADNS Security also updated to block associated malicious IPs. This is a testament to our commitment to a proactive defense.

Device Security: Unified, AI-Powered Protection

Palo Alto Networks Device Security unifies AI-powered protection across all connected devices, including unmanaged/managed IT, IoT, OT, and BYOD.

• Holistic Protection: Precision AI™ provides comprehensive visibility, adaptive security, and enhanced threat prevention across your entire network.

• Enhanced Integrations: We now support bidirectional integration with the ServiceNow Service Graph Connector for asset inventory enrichment and new asset creation. We have also added integrations with Jira and AIMS 3.

• Improved Discovery & Control: The Network Discovery Plug-in 2.2.2 Release improves configuration and runtime, while new API functionality allows you to list all device attribute names and retrieve up to 50 attribute values per device.

• Cost Efficiency: Customers can now activate a free, limited cloud-based Cortex XSOAR directly from the Device Security integrations page in Strata Cloud Manager, eliminating the need for a separate add-on license for third-party integrations.

Resources & Enablement

Palo Alto Networks provides extensive resources to help you leverage our security services effectively.

• Webinars & Demos: Explore our NGFW Customer Success webinars for CDSS Core Subs, AWF, ADNS, ATP, and ADNS Resolver. Learn how to get started with ATP - Blog and Demo Video

• Guides & Blogs: Access launch collateral for ADNS Resolver, including live community blog , SLA,  privacy data sheets, and Techdocs. Learn about the new File Converter release and guidance on transitioning from URL Filtering. Also read the latest on Device Security, including a new blog on the Georgia Department of Transportation.

• Research Blogs: Our Unit 42 threat intelligence blogs provide insights into the latest threats, including phishing campaigns with GenAI exploitation.

• PanTV & Podcasts: Stay informed with our CDSS PAN TV Episodes on security innovation - ATP, AWF, AURL, and ADNS;  and listen to the "Human Zero Day Series" podcast, which discusses our deepfake detection efforts.

Conclusion

Palo Alto Networks remains dedicated to providing AI-powered, unified, and proactive security through our Cloud-Delivered Security Services. Our continuous innovations across core security, and unified device security, coupled with robust enablement resources, empower your organization to effectively defend against evolving cyber threats.

#Cloud Delivered Security Services #CDSS # Network Security # Device Security