Palo Alto Networks, a global leader in cybersecurity, is a proud Diamond sponsor of Black Hat 2024. Our mission is to make sure each day is safer than the one before, but we can't do this on our own. We're committed to partnering with cybersecurity leaders, practitioners and strategists to transform cybersecurity.
Discover how Precision AI by Palo Alto Networks can help you trust AI outcomes by using rich data and security-specific models to automate detection, prevention and remediation.
Register for Black Hat using code PANW for $200 off a briefing pass or $50 off a business hall pass.
Stop by booth #1632 and learn more about the latest developments across the full Palo Alto Networks platform of security products.
Do you have a specific use case you want to explore? Are you a current customer looking to learn about what's next from Palo Alto Networks leaders? Request a 1:1 meeting with us.
AUG 7 | 1:30–2:20 PM PDT | Mandalay Bay Ballroom J
When a security threat emerges, your response is crucial. Effective threat intelligence involves understanding the threat and assessing its potential damage. Concurrently, you need a rapid response plan.
In this session, learn from our Cortex® and Unit 42® teams on preparing for and responding to major security events. We'll cover the evolving threat landscape, collecting and analyzing intelligence and strategic War Room activities like automation, assessing vulnerabilities and swift defensive measures.
Our best practices are practical and actionable, providing immediate steps for your War Room operations.
AUG 7 | 2:35–3:25 PM PDT | Mandalay Bay Ballroom J
Generative AI is driving innovation but also introduces new security risks. This presentation explores emerging threats to Generative AI.
Unit 42's latest research shows how cybercriminals manipulate AI systems. Through examples and live demos, we'll reveal how attacks bypass security, manipulate AI content and compromise data. We’ll also discuss practical defense strategies to protect AI applications.
By understanding both attack and defense tactics, organizations can better navigate security challenges and ensure safe, responsible use of this powerful technology.
AUG 7 | 12:05–1:30 PM PDT | Lagoon CD Room
The recent emergence of Artificial Intelligence has drastically changed the way we work and live, increasing our efficiency and productivity, helping us make better decisions and much more.
However, as expected, AI has already fallen into the hands of today’s threat actors, heightening the sophistication of their attacks and making them faster, more widespread and ultimately harder to detect. Join Scott Fanning, Vice President of Product at Palo Alto Networks, as he explains how AI must be used in Network Security to fight off AI-enabled attackers and stop zero-day threats.
Exploiting the Chrome browser with V8 JavaScript engine vulnerabilities has become increasingly difficult due to the V8 team's continuous security improvements, including the introduction of the V8 Sandbox in Chrome M123. This presentation discloses the full V8 exploit chain used against Google Chrome and Microsoft Edge to break both V8 and V8 Sandbox at Pwn2Own Vancouver 2024, ending Chrome's three-year unbroken streak. We will detail how a single JavaScript object creation can trick the V8 engine, discuss universal techniques for converting an out-of-bounds read vulnerability into a highly reliable exploit, and share our novel V8 Sandbox escape technique.
Cloud Offensive Breach and Risk Assessment (COBRA) is an open-source tool designed to empower users to simulate attacks within multi-cloud environments, offering a comprehensive evaluation of security controls. By automating the testing of various threat vectors including external and insider threats, lateral movement, and data exfiltration, COBRA enables organizations to gain insights into their security posture vulnerabilities. COBRA is designed to conduct simulated attacks to assess an organization's ability to detect and respond to security threats effectively.
Hear insights and best practices from the Cortex content team on leveraging automation for incident investigation and response, streamlining processes across your organization's technology stack. Automation optimizes SecOps practices, enhances organizational efficiency, and strengthens security posture, making SOAR a standard in security operations. Attendees will acquire valuable knowledge to effectively embark on or advance their automation journey.
This session explores how leveraging the Ansible Automation Platform (AAP) and Palo Alto Networks can significantly enhance your security automation capabilities. By unifying security and network operations, organizations can streamline their processes, reduce manual intervention, and respond to threats more swiftly and effectively. Join us to discover practical insights and strategies for deploying AAP and Palo Alto solutions, for a more integrated and fortified network environment.
Amp Up Your Network and Security Automation Leveraging Red Hat Ansible Automation Platform and Palo Alto Networks for better Network Security Operations
This session explores how leveraging the Ansible Automation Platform (AAP) and Palo Alto Networks can significantly enhance your security automation capabilities. By unifying security and network operations, organizations can streamline their processes, reduce manual intervention, and respond to threats more swiftly and effectively. Join us to discover practical insights and strategies for deploying AAP and Palo Alto solutions, for a more integrated and fortified network environment.
The scale, speed and sophistication of threat actors’ actions have increased in the past year. In about 45% of cases investigated by Unit 42 Incident Response in 2023, attackers exfiltrated data in less than a day after compromise. Watch as our security experts unpack key findings from our 2024 Unit 42 Incident Response Report to understand how that knowledge will help you align your strategies to prevent, detect and respond to threats.
The scale, speed and sophistication of threat actors’ actions have increased in the past year. In about 45% of cases investigated by Unit 42 Incident Response in 2023, attackers exfiltrated data in less than a day after compromise. Watch as our security experts unpack key findings from our 2024 Unit 42 Incident Response Report to understand how that knowledge will help you align your strategies to prevent, detect and respond to threats.
Join this session to hear about a new advanced persistent threat (APT) group that has been conducting an ongoing espionage campaign in the Middle East, Africa, and Asia. This session explores the very rare TTPs employed by the threat actor and outlines an intelligence-driven hunting and attribution methodology that analysts can use to detect and mitigate similar complex attacks.
AI apps introduce a whole new AI stack composed of models, plugins, inference and training datasets with access to sensitive internal data. Each new component exposes new risks for attackers to exploit. Explore how Palo Alto Networks helps customers understand and manage these risks at every step of the AI journey - all the way from build to runtime.
Securing the enterprise AI technology stack through a Secure Software Development Lifecycle™ will examine critical strategies for integrating security measures at each stage of AI software development. It will emphasize risk prevention, asset protection, and continuous monitoring to enable protection of AI systems from potential vulnerabilities and cyber threats.
Digital transformation for enterprises involves quickly delivering new business and customer value at scale, with the cloud playing a crucial role by enabling rapid, on-demand service deployment and comprehensive, automated security measures. HashiCorp and Palo Alto Networks enable enterprises to easily access and gain the significant benefits of a secure cloud operating model with their closely integrated suite of security solutions. During this presentation we will focus on securing infrastructure as code to ensure that your infrastructure deployments follow best practices as well as rules and regulations.
Speed is paramount in security. But when focusing on speed, security teams can easily become reactive, prioritizing what matters now versus what might be critical tomorrow. In this session, we'll introduce you to a new approach to SecOps that allows you to take back control of your time and shift from reactive to proactive with Cortex XSIAM.
The scale, speed and sophistication of threat actors’ actions have increased in the past year. In about 45% of cases investigated by Unit 42 Incident Response in 2023, attackers exfiltrated data in less than a day after compromise. Watch as our security experts unpack key findings from our 2024 Unit 42 Incident Response Report to understand how that knowledge will help you align your strategies to prevent, detect and respond to threats.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Curabitur porttitor lacus a condimentum dictum. Proin efficitur lobortis leo vel sodales. Vivamus mauris enim, tempus ut sapien at, iaculis vestibulum dolor. Praesent vehicula, lacus ut ultricies pellentesque, ligula enim maximus urna, nec tempor eros mauris quis sapien. Suspendisse potenti. Nunc ac ornare dui. Aenean ultrices elit lectus, non viverra lectus malesuada a. Curabitur mattis tincidunt erat in gravida. Vivamus sit amet lacus egestas mi suscipit finibus. Aliquam ac urna libero.