Palo Alto Networks uses AI, ML to detect and mitigate attacks with new cybersecurity solutions

With the constant stream of news of high-profile data breaches, talks about cybersecurity are gaining ground. However, awareness is not enough and personnel shortage doesn’t help either.

To enlighten companies on the importance of acting on their cybersecurity plans, Palo Alto Networks hosted a forum with the theme “Disrupting the Cybersecurity Status Quo.” Security researchers and experts discussed their companies’ best practices and cybersecurity trends.

Marc Lainez, systems engineer of Palo Alto Networks in the Philippines, explained how organizations and consumers still don’t feel “secure” in the digital ecosystem in spite of all the talks about cybersecurity.

“Digital transformation (DX) can improve the way we serve customers,” he said in a media briefing recently. “However, some DX efforts do not include security in the journey.”

Some organizations do not prioritize their security efforts not only because of the cost but also because of its complex management.

To address this, Palo Alto decided to utilize emerging technologies such as artificial intelligence and machine learning.

Introducing Cortex
Cortex is the industry’s only open and integrated, AI-based continuous security platform. Cortex is a significant evolution of the Application Framework designed to simplify security operations and considerably improve outcomes. Deployed on a global, scalable public cloud platform, Cortex allows security operations teams to speed the analysis of massive data sets. Cortex is enabled by the Cortex Data Lake, where customers can securely and privately store and analyze large amounts of data that is normalized for advanced AI and machine learning to find threats and orchestrate responses quickly.

Cortex XDR – Breaking Data Silos
Cortex XDR is the first-of-its-kind detection, investigation and response product that natively integrates network, endpoint and cloud data. Cortex XDR uncovers threats using behavioral analytics, accelerates investigations with automation, and stops attacks before damage is done through tight integration with existing enforcement points.

Traps 6.0 – Great Prevention Gets Even Better
Traps endpoint protection and response now include a Behavioral Threat Protection engine that stops advanced threats in real time by stitching together a chain of events to identify malicious activity. Traps 6.0 acts as the ultimate data collection sensor for Cortex Data Lake, gathering the most comprehensive endpoint security data in the industry. In conjunction with Cortex XDR, customers can use Traps to extend their prevention capabilities to include detection and response across their entire digital infrastructure with a single agent.

“There are increasing vulnerabilities and security breaches looming ahead as cybercriminals continue to utilize sophisticated tactics to launch cyber attacks,” said Oscar Visaya, country manager at Palo Alto Networks Philippines.

According to Lainez, it may take an organization 197 days to detect an attack and an additional 69 days to mitigate it. With the use of AI and ML such as Cortex XDR, it can only take weeks or even days of detection and mitigation. The savings of early detection as opposed to addressing a cyberattack can run up to millions of dollars.

He also said how AI and ML can address skills shortage because they can be used to program tasks that were once done manually.

“Cortex XDR can automatically detect attacks using cloud-based behavioral analytics,” Lainez said. “It can also accelerate investigation by stitching data together to reveal the root cause.”

1 reply »