Palo Alto Networks Launches Nebula for Network Security

Palo Alto Networks announced the release of Nebula, the latest update to its PAN-OS software, to help find evasive, zero-day attacks that can cripple organizations and stop them in their tracks.

PAN-OS 10.2 Nebula collects, analyzes and interprets potential zero-day threats in real-time using network-first online deep learning. This translates to six times faster prevention and 48% more evasive threats detected, surpassing anything previously available.

Nebula also introduces the tenth Palo Alto Networks AIOps security service and new Advanced Threat Prevention service while enhancing advanced URL filtering, DNS security, IoT security, and other related security services.

“In the past, cyberattacks carried out by nation states were considered the rarest and most advanced. But today, attackers of all kinds have an advanced arsenal at their fingertips; every organization must now assume that it will be the target of a nation-state-level attack,” said Lee Klarich, chief product officer, Palo Alto Networks.

“Modern network security requires a fundamentally new approach. Today, Palo Alto Networks has brought this new approach to our ML-powered next-generation firewalls by harnessing the processing power of the cloud to enable deep online learning We think that’s how the whole network will be kept safe in the future.”

Security services that are added and improved include:

Advanced Threat Prevention
A new best-in-class Intrusion Prevention System (IPS) that takes security analysis offline to online using cloud computing for AI and deep learning techniques without sacrificing performance. Advanced Threat Prevention can detect many unknown and targeted command and control (C2) attacks, as well as evasive attacks from tools such as Cobalt Strike.

The new AIOps uses machine learning to predict up to 51% of NGFW disruptions before they affect firewalls. Additionally, with telemetry from over 6,000 deployments, AIOps continuously recommends best practices to improve overall security.

DNS Security
Now extends protection for the latest DNS-based attack techniques, including strategically old domains, making it the most comprehensive DNS security solution available with 40% better DNS-based threat coverage than that of the other main suppliers.

Advanced URL Filtering
Adds prevention of new highly evasive phishing attacks, ransomware, and other web attacks with deep learning-based web traffic analysis, which now includes real-time, online live web content.

IoT 2.0 Security
Simplifies IoT device visibility and automates policy creation on visible and invisible devices using machine learning.

“Security approaches too often depend on exploiting an initial victim. Yet, with attackers as agile and efficient as they are today, organizations need real-time prevention to protect their environments,” said John Grady, senior analyst at Enterprise Strategy Group. .

“Palo Alto Networks recognizes these issues and is extending its machine learning capabilities by putting deep learning detection inline to prevent attacks before they affect the victim.”

Rajarshi Dhar, Industry Analyst at Frost & Sullivan, adds, “Palo Alto Networks’ industry-leading machine learning-based platform applies techniques that help customers manage sophisticated threats and respond to end-to-end network, endpoint and cloud security.

“The company enables enterprises to go beyond standard threat protection by building a strong security posture and resiliency.”

Kevin M. Risinger