Advanced Threat Prevention

Threat Prevention defends your network against both commodity threats—which are pervasive but not sophisticated—and targeted, advanced threats perpetuated by organized cyber adversaries. Threat Prevention includes comprehensive exploit, malware, and command-and-control protection, and Palo Alto Networks frequently publishes updates that equip the firewall with the very latest threat intelligence. You can use the Threat Vault to research the latest threats that Palo Alto Networks next-generation firewalls can detect and prevent. 

What's New

Advanced Threat Prevention now supports LDL (Local Deep Learning) for supported firewalls operating PAN-OS 11.2 and later. Local Deep Learning complements the cloud-based Inline Cloud Analysis component of Advanced Threat Prevention by providing a mechanism to perform fast, local deep learning-based analysis of zero-day and other evasive threats.  

Inline Cloud Analysis now supports detection of command injection and SQL injection vulnerabilities in real-time to protect users against zero-day threats.

Palo Alto Networks now offers Advanced Threat Prevention, a new security service that applies predictive analytics to disrupt attacks that use DNS for command-and-control (C2) or data theft.

Firewalls equipped with Threat Prevention can now detect domain fronting, a TLS evasion technique that can circumvent URL filtering database solutions and facilitate data exfiltration.

Is your organization mission-critical, security-first, or a mix of both?  Our best practices will guide you on how to best deploy threat updates, depending on your risk tolerance and application availability needs.