Palo Alto Networks introduces Out-of-Band WAAS

Latest Prisma Cloud platform updates help organizations continuously monitor and secure web applications with maximum flexibility.

Over the last two years, organizations have expanded their use of cloud environments by more than 25%. Many are now struggling to manage the technical complexity of cloud migration, including the ability to secure their applications across the entire application development lifecycle. Palo Alto Networks has introduced Out-of-Band Web Application and API Security (Out-of-Band WAAS) to Prisma® Cloud to help organizations secure web applications with maximum flexibility.



Until now, a primary industry approach to securing web applications has been to deploy inline web application firewalls (WAFs). Some organizations are reluctant to introduce WAFs or API security solutions inline, however, due to performance and scalability concerns. With today’s announcement, Prisma Cloud can provide organizations with deep web and API security both inline and out of band, allowing them to choose how to protect their applications in the cloud.



“Companies no longer have to decide between application security and performance. By adding Out-of-Band WAAS to Prisma Cloud, we are empowering customers with flexible security options that fit their evolving application needs,” said Ankur Shah, senior vice president, Prisma Cloud, Palo Alto Networks. “As more organizations move workloads to the cloud, the capabilities that make up Prisma Cloud help provide the most complete protection, reducing complexity and increasing visibility across infrastructure, workloads, identities and applications.”



“As organizations increasingly build and deploy their applications in the cloud, protecting their business-critical applications without impacting performance has been a challenge,” said Melinda Marks, senior analyst, ESG. “Adding the option of Out-of-Band WAAS helps both developer and security teams secure their applications with the same level of security as traditional in-line WAFs and API security without impacting performance.”



In addition to Out-of-Band WAAS, Prisma Cloud is getting new threat detection, alert prioritization and permissions management capabilities to help provide organizations with deeper, unified visibility across their entire cloud application portfolio:


Multicloud Graph View for Cloud Infrastructure Entitlement Management (CIEM): Discover over-privileged accounts and understand access risk across multicloud environments. Prisma Cloud now provides a graph view of the net effective permissions across AWS, Microsoft Azure and Google Cloud.

Multicloud Agentless Cloud Workload Protection: Extend visibility into cloud workloads and application risks across Azure and Google Cloud, in addition to AWS, to complement existing agent-based protection.

DNS-Based Threat Detection: Surface malicious activity and anomalous behavior in cloud environments. Prisma Cloud Threat Detection now leverages machine learning (ML) and advanced threat intelligence to identify bad actors hiding in DNS traffic.

MITRE ATT&CK® Alert Prioritization: Enable security teams to prioritize risks and incidents based on the industry’s most widely adopted framework.

New dynamic reporting provides faster intelligence for making data-driven decisions and reducing cyber risk.
Trained on the world's richest threat intelligence, new detection and response capabilities proactively protect organizations against emerging adversary techniques.
Checkmarx has introduced Checkmarx API Security, the first true “shift-left” API security solution. Building on the launch of Checkmarx Fusion, which prioritizes and correlates vulnerability data from across different AppSec engines, Checkmarx API Security is delivered as part of the industry-leading application security platform Checkmarx One. The developer workflow-oriented solution inventories even shadow and zombie APIs as part of the most comprehensive inventory and remediation solution available to secure the entire API lifecycle.
Intended victim experienced no downtime despite attacker's persistence.
ConnectWise has published the 2022 findings of its annual State of SMB Cybersecurity report, revealing that the growing number of attacks are fueling investment in cybersecurity, particularly with managed service providers (MSPs). Key findings show nearly three-quarters (73%) of report respondents are in agreement that their organisation has reached a tipping point where cybersecurity concerns demand action.
HP Wolf Security report highlights the latest techniques and phishing lures targeting employees and putting companies at risk.
IGEL OS and the IGEL UD Pocket, bundled with expert resources including access to an IGEL Technical Relationship Manager, enables IT organizations to quickly regain control of malware affected devices and ransomware attacks to quickly restore productivity for end-users.
Burned out security teams fight back against geopolitically motivated attacks and lateral movement inside networks.