Prisma Cloud Achieves StateRAMP Authorized Status In its commitment to be the state and local government's cybersecurity partner of choice, Prisma Cloud by Palo Alto Networks has achieved StateRAMP Authorized status, providing unparalleled security for modernization efforts leveraging cloud infrastructure. Understanding State & Local Cloud Security Needs Cyberthreats to public sector infrastructure are proliferating at an alarming rate. State and local government agencies, schools, transportation systems and hospitals are being hit with a constant barrage of attacks through ransomware and ..read more

Security breaches can cost millions. Everyone answers to someone — whether it's a manager, director, CISO, CEO or the company board. They’re going to want to know how security teams are protecting their infrastructure. Prologue: Intro to Security Theater Security theater. What are you talking about? Security theater is essentially the illusion of security. It often results from a misunderstanding of what’s required for effective cloud security. Organizations may prioritize actions that appear effective but fail to improve security. Theater prioritizes appearances over effectiveness, optics ove ..read more

Leading a data security company comes with great responsibility. A good chunk of my time is spent with security leaders discussing top-of-mind trends and topics. One trend I’ve come across is the desire of security leaders to rebuild their data security teams – which also happens to raise many questions. For example: What areas should the team be responsible for? What skills and tools should they be looking for? What KPIs should they use to measure the team’s ability to support the organization’s growth in this new era? This was also the topic of a recent talk that I, together with my good fr ..read more

Prisma Cloud has added the Telecommunications Security Act to its list of out-of-the-box compliance standards. With this release, public electronic communications networks and services in the UK can assess their multicloud security posture against requirements defined in the Telecommunications Security Act Code of Practice. What Is the Telecommunications Security Act and Code of Practice? The Telecommunications Security Act establishes rigorous standards to enhance the security and resilience of the UK's telecommunications networks and services. It requires telecom providers to manage risks an ..read more

The adoption of cloud infrastructure for application modernization is a significant trend, and healthcare is no different. However, the sensitive nature of health data, combined with the healthcare sector's increasing reliance on cloud infrastructure, makes it a prime target for cyberthreats. From March 2023 to March 2024, healthcare entities reported 633 data breaches to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR), with each incident affecting more than 500 patients. Adversaries are going after the mission-critical applications and data that healthcare deli ..read more

In this blog post, second in a series, we focus on risks that come from a misconfigured Redshift, like encryption, backups and logs. We’ll explore security features and best practices that can prevent data leakage. You can catch up with the previous blog post, Redshift Security: Access and Data Flows Explained. When you're ready, let's dig in. Configuring Data Encryption in Redshift Redshift provides two types of encryption to help with protecting sensitive data, at-rest and in-transit. Protecting Sensitive Data in Transit Encryption of data in transit is important to avoid data manipulations ..read more

This blog post is the first in a series that exposes security risks, possible attack vectors, and how to hunt and prevent them using data detection and response (DDR). When correctly configured, Redshift’s security features and capabilities protect sensitive data from leaks or other security incidents. However, often, organizations struggle to correctly configure and implement these features because the manual processes can be time-consuming and require specialized skills. To mitigate security and privacy risks, you need to appropriately configure security features and follow practices. Imple ..read more

Mitigating CVE-2024-3094 By now you’ve likely heard about the vulnerability in XZ Utils Data Compression Library that impacted multiple Linux distributions (CVE-2024-3094) and read the threat brief Palo Alto Networks Unit 42 posted. I’m sure you understand all the recommended precautionary measures—downgrading vulnerable XZ Utils versions to 5.4.6 (the latest unaffected version), reverting affected Linux distributions to stable releases and treating any systems identified as vulnerable as potential security threats. But where do you start? Don’t panic. Take a deep breath. Let’s pause and take ..read more

The 2024 Globee Security Awards Gives Top Honors to Prisma Cloud Data Security Posture Management (DSPM) Solution in Multiple Categories Prisma Cloud DSPM (formerly Dig Security) was named a winner in multiple categories at the 2024 Globee Security Awards. This recognition cements Prisma Cloud’s leadership in data-centric security and validates our move toward a platform approach for cloud security. The 2024 Globee Awards recognize exceptional achievements in cybersecurity by individuals, organizations, products, and initiatives. Prisma Cloud’s inclusion in this year’s list of distinguished wi ..read more

GigaOm named Prisma Cloud a Leader in Cloud Security Posture Management (CSPM), Container Security, and now Cloud Infrastructure Entitlement Management (CIEM). Identity and access management (IAM) in the cloud is challenging. Especially as organizations deal with entitlement sprawl and managing machine identities. GigaOm notes: “CIEM solutions enable organizations to efficiently manage and secure their cloud infrastructure as well as endpoints (devices) that connect to it.” The CIEM Market is Evolving CIEM as a category is relatively new, first appearing in 2020 to address the new challenges o ..read more