本網站使用瀏覽器紀錄 (Cookies) 來提供您最好的使用體驗,我們使用的 Cookie 也包括了第三方 Cookie。相關資訊請訪問我們的隱私權與 Cookie 政策。如果您選擇繼續瀏覽或關閉這個提示,便表示您已接受我們的網站使用條款。 關閉
Prisma Access Browser to integrate into existing infrastructure across strategic locations in Asia-Pacific and Japan, to support customer's data residency needs SINGAPORE, March 13, 2025 /PRNewswire/ -- Palo Alto Networks® (NASDAQ: PANW), the global cybersecurity leader, announced today that it is deepening its commitment to the Asia-Pacific and Japan region by investing in new cloud infrastructures across strategic locations in the region. The new cloud investment integrates Prisma Access Browser into existing infrastructure in markets such as Australia, India, Indonesia, Japan and Singapore, ensuring local and regional customers have access to browse bravely while helping organisations meet local data residency needs without compromising on security or performance. In today's modern workplace, the browser is where the majority of work happens. According to Gartner, by 2030, enterprise browsers will be the core platform for delivering workforce productivity and security software on managed and unmanaged devices for a seamless hybrid work experience.[1] Traditional internet browsers are vulnerable to a range of cyber threats, like phishing, account takeover attacks, malware infections and malicious extensions. This is a problem worsened by the widespread adoption of software-as-a-service (SaaS) and generative AI (GenAI) applications, as well as the increased use of unmanaged devices at the workplace. While these can improve employee productivity, they also increase the attack surface and offer new entry points for cyber criminals. "Unmanaged devices are often the weakest link in an organisation's security posture, especially as organisations increasingly embrace a distributed workforce model. Many organisations have reported significant gaps in their ability to decrypt network traffic for security purposes; on average, 64%[2] of web traffic is left encrypted, and is therefore unavailable for security," said Anupam Upadhyaya, Vice President Product for Prisma SASE, Palo Alto Networks. "With our new cloud locations in the region, we're bringing secure connectivity to these workplace devices — managed and unmanaged — helping ensure critical information stays protected while enabling organisations to improve their overall security posture in the face of modern cyber threats." "Organisations across the Asia-Pacific and Japan region are increasingly moving their workloads to the cloud. Expanding our cloud security presence to Asia-Pacific and Japan is part of our ongoing commitment to provide customers with localised access to best-in-class cybersecurity offerings that help meet their data residency needs," said Simon Green, President, Asia-Pacific and Japan, Palo Alto Networks. The availability of the regionally hosted services is part of Palo Alto Networks' continuous dedication to delivering the most complete set of security services locally for Asia Pacific and Japan customers. These services enable customers to balance data residency needs with the ability to detect emerging threats, providing a seamless, streamlined security solution operated and delivered within the region. For more information on Palo Alto Networks' regional cloud locations, please visit: https://www.paloaltonetworks.com/blog/sase/prisma-access-browser-enhances-cybersecurity-asia-pacific-japan ===== About Palo Alto Networks Palo Alto Networks is the global cybersecurity leader, committed to making each day safer than the one before with industry-leading, AI-powered solutions in network security, cloud security and security operations. Powered by Precision AI, our technologies deliver precise threat detection and swift response, minimizing false positives and enhancing security effectiveness. Our platformization approach integrates diverse security solutions into a unified, scalable platform, streamlining management and providing operational efficiencies with comprehensive protection. From defending network perimeters to safeguarding cloud environments and ensuring rapid incident response, Palo Alto Networks empowers businesses to achieve Zero Trust security and confidently embrace digital transformation in an ever-evolving threat landscape. This unwavering commitment to security and innovation makes us the cybersecurity partner of choice. At Palo Alto Networks, we're committed to bringing together the very best people in service of our mission, so we're also proud to be the cybersecurity workplace of choice, recognised among Newsweek's Most Loved Workplaces (2021-2024), with a score of 100 on the Disability Equality Index (2024, 2023, 2022), and HRC Best Places for LGBTQ+ Equality (2022). For more information, visit www.paloaltonetworks.com. Palo Alto Networks, Cortex, Precision AI, Prisma, and the Palo Alto Networks logo are registered trademarks of Palo Alto Networks, Inc. in the United States or in jurisdictions throughout the world. All other trademarks, trade names, or service marks used or mentioned herein belong to their respective owners. [1] "Emerging Tech: Security — The Future of Enterprise Browsers," Gartner, April 2023. [2] "The State of Workforce Security: Key Insights for IT and Security Leaders," Omdia and Palo Alto Networks, January 2025.
Global survey reveals 75% of surveyed organizations pursuing a consolidated approach to security agree better integration across security, hybrid cloud, AI and other technology platforms is crucial ARMONK, N.Y. and SANTA CLARA, Calif., Jan. 28, 2025 /PRNewswire/ -- New global research from the IBM (NYSE: IBM) Institute for Business Value (IBV) and Palo Alto Networks® (NASDAQ: PANW), found that surveyed organizations are facing security complexity challenges as they juggle an average of 83 different security solutions from 29 vendors. It also shows 7 out of 10 surveyed companies with a high degree of security platformization report their cybersecurity investments have helped business outcomes such as operational efficiencies and revenue generation. In the study, "Capturing the cybersecurity dividend: How security platforms generate business value," more than half (52%) of surveyed executives note fragmentation of security solutions is limiting their ability to deal with cyber threats, but 75% of organizations that have embraced security platformization agree that better integration across security, hybrid cloud, AI, and other technology platforms is crucial. The analysis suggests the trend of adding more solutions to combat evolving security threats is contributing to inefficiency – impacting both performance and the bottom line – while moving to a platformized security approach can help businesses achieve reduced response times and costs without sacrificing security efficacy. Cybersecurity Complexity is a Daunting Reality Increased digital interconnectedness expands attack surfaces and can create new cybersecurity vulnerabilities. Cyberattacks are becoming more sophisticated and harder to defend against, while AI is being used by both defenders and attackers, creating a race in cybersecurity capabilities. In an evolving threat landscape, surveyed executives estimate security fragmentation and complexity costs their organizations an average of 5% of their annual revenue. For a $20 billion annual revenue company, that's a $1 billion cost to the business in aggregate. Tally the costs of security incidents, lost productivity, failed digital transformations, stalled AI initiatives, loss of customer trust and reputational damage and the numbers add up. "Organizations continue to be challenged with updating their security posture to address new threats, while simultaneously being pressed to reduce complexity and decrease spend," said Mark Hughes, Global Managing Partner for Cybersecurity Services, IBM. "Security executives need to enable innovation, protect assets and derive value from their cybersecurity investments to help their organizations thrive and further their business goals." "We have seen the positive impacts of adopting a platformized approach to security, and the benefits it delivers to organizations. In today's AI-fueled world, strong partnerships are more essential than ever," said Karim Temsamani, President, Next Generation Security, Palo Alto Networks. "IBM and Palo Alto Networks are aligned on a common vision of creating better outcomes for our customers - whether in value, operational, or security…and platformization accomplishes all of them. This isn't just about improving fragmentation today, it's about enabling better outcomes for the future." Key insights from surveyed business leaders: 52% of executives say complexity is the biggest impediment to their cybersecurity operations; 80% agree they face pressure to reduce the cost of security, and 41% say security fragmentation has driven up procurement costs; 4 out of 5 non-platform organizations say their security operations cannot effectively deal with the sheer quantity of threats and attacks; 80% of platformization adopters say they have full visibility into potential vulnerabilities and threats; and, For platformized organizations, mean time to identify (MTTI) and mean time to contain (MTTC) security incidents are shorter by an average of 72 and 84 days, respectively. Enhancing Businesses with Platformization: Unleashing the Power of Digital TransformationIn today's world, the research finds effective security requires platformization. Consolidating multiple tools into a unified platform not only bolsters security posture but enables organizations to experience nearly 4 times better return on investment (ROI) from their cybersecurity investments, leading to revenue generation and increased operational efficiencies. When it comes to AI, a platform approach can also enable an organization to better ingest and analyze data to deliver actionable insights. With 90% of surveyed executives expecting to scale, optimize, or innovate with AI within the next two years, integrating AI into their platforms can play a critical role in advancing their security preparedness. For example, accelerating adoption of agentic AI for security and tapping platformization for fewer investment cycles; or, using platformization to create the common governance needed to deliver the AI capabilities shaping the future. By adopting a platformization approach, businesses can align technologies, drive innovation, and prioritize security as a core business requirement. Through IBM and Palo Alto Networks' strategic partnership, the companies are bringing together leading security platforms, AI, and transformation capabilities to help organizations confidently navigate their digital transformation journey, achieve their desired outcomes and drive substantial business value. Tips for Platformization Success Choose partners that streamline your security mission and trim those that don't. Critically evaluate current and potential technology, services, and support partners, and make hard decisions about where to double down and when to part ways. Run your playbook. Stage incident response drills to assess where a unified platform can deliver the greatest impact. Take action to improve your incident response capabilities. Help your business get prepared to respond to threats by putting it to the test. Visit a cyber range to prepare business and technical teams to address the latest cyber threats through an immersive, organization-wide business-focused engagement. IBM and Palo Alto Networks now provide a joint Cyber Range experience in Cambridge, Massachusetts, where clients can leverage the facility to support continuous improvement, training, and change management as they transform their security operating models with platformization. Additional Resources: To learn more about IBM's partnership with Palo Alto Networks, visit: https://www.ibm.com/consulting/palo-alto To learn more about Palo Alto Networks perspectives on platformization and the IBM IBV study, visit: http://paloaltonetworks.com/resources/research/ibm-study-platforms-deliver-value. To hear more, check out the company's Ignite on Tour events: https://register.paloaltonetworks.com/igniteontour. Study MethodologyThis IBM Institute of Business Value (IBV) research, conducted in collaboration with Oxford Economics and published in partnership with Palo Alto Networks, surveyed 1,000 executives across 21 industries and 18 countries from July through September 2024. The IBM IBV team then analyzed insights and data from respondents to facilitate the creation of a "platformization index," which measures the extent to which an organization has moved toward security platformization, then used that index to ascertain the relationship between security platformization and security and business outcomes. The IBM IBV, IBM's thought leadership think tank, combines global research and performance data with expertise from industry thinkers and leading academics to deliver insights that make business leaders smarter. For more world-class thought leadership, visit: www.ibm.com/ibv. About IBMIBM is a leading provider of global hybrid cloud and AI, and consulting expertise. We help clients in more than 175 countries capitalize on insights from their data, streamline business processes, reduce costs and gain the competitive edge in their industries. More than 4,000 government and corporate entities in critical infrastructure areas such as financial services, telecommunications and healthcare rely on IBM's hybrid cloud platform and Red Hat OpenShift to affect their digital transformations quickly, efficiently and securely. IBM's breakthrough innovations in AI, quantum computing, industry-specific cloud solutions and consulting deliver open and flexible options to our clients. All of this is backed by IBM's long-standing commitment to trust, transparency, responsibility, inclusivity and service. Visit ibm.com for more information. About Palo Alto NetworksPalo Alto Networks is the global cybersecurity leader, committed to making each day safer than the one before with industry-leading, AI-powered solutions in network security, cloud security and security operations. Powered by Precision AI, our technologies deliver precise threat detection and swift response, minimizing false positives and enhancing security effectiveness. Our platformization approach integrates diverse security solutions into a unified, scalable platform, streamlining management and providing operational efficiencies with comprehensive protection. From defending network perimeters to safeguarding cloud environments and ensuring rapid incident response, Palo Alto Networks empowers businesses to achieve Zero Trust security and confidently embrace digital transformation in an ever-evolving threat landscape. This unwavering commitment to security and innovation makes us the cybersecurity partner of choice. At Palo Alto Networks, we're committed to bringing together the very best people in service of our mission, so we're also proud to be the cybersecurity workplace of choice, recognized among Newsweek's Most Loved Workplaces (2021-2024), with a score of 100 on the Disability Equality Index (2024, 2023, 2022), and HRC Best Places for LGBTQ+ Equality (2022). For more information, visit www.paloaltonetworks.com. Media Contacts:Joel Rushing, IBMJoel.Rushing@ibm.com Nicole Hockin, Palo Alto Networksnhockin@paloaltonetworks.com
攜手 IBM,為更多客戶帶來下一代 SOC 創新與 AI 驅動的安全解決方案 2024 年 9月 11 日台北訊– 全球網路安全領導者 Palo Alto Networks(NASDAQ: PANW)今日宣佈,已正式完成對 IBM QRadar 軟體即服務(SaaS)資產的收購。這筆交易突顯了Palo Alto Networks 與 IBM 致力於為客戶提供一流威脅防護的承諾,並透過全方位的平台解決方案,簡化安全作業流程,以應對日益擴大的攻擊面。 Palo Alto Networks 的 Cortex XSIAM® 平台,搭載 Precision AI™ 技術,將 SIEM、SOAR、ASM 和 XDR 等多項數據與安全作業功能整合到單一平台,大幅簡化安全作業,並有效防禦大規模威脅。作為托管安全服務供應商之首選,Palo Alto Networks 與 IBM 將透過 IBM Consulting 為符合資格的客戶提供免費遷移服務,協助全球各行業的客戶無縫轉移至 Cortex XSIAM。 此外,IBM 已將 Palo Alto Networks 的安全平台導入內部,採用 Cortex XSIAM 建構下一代安全作業,並部署 Prisma SASE 3.0,以零信任架構保護全球超過 250,000 名員工的網路安全。IBM 的實例證明,客戶能從 Palo Alto Networks 產品組合的精簡操作中獲益。同時,Palo Alto Networks 將導入 IBM 的 watsonx AI 和數據平台,進一步推動 AI 與自動化功能。 Palo Alto Networks 執行長暨主席 Nikesh Arora 表示:「我們的目標是協助企業轉型安全作業,並善用 Precision AI 驅動平台的潛力,更有效地保護其業務。與 IBM 的合作強化了我們對創新的承諾,我們深信 QRadar 客戶將從 Cortex XSIAM 強大且數據驅動的安全平台中獲益良多,有效抵禦不斷演變的網路威脅。」 IBM 董事長暨執行長 Arvind Krishna 表示:「IBM 與 Palo Alto Networks 攜手,正在為我們的客戶及整個產業塑造網路安全的未來。與 Palo Alto Networks 的合作將成為 IBM 的戰略優勢,我們將結合 Cortex XSIAM 和 watsonx 的能力,透過 IBM Consulting支援,聯手在威脅防護、應對及安全作業上展開合作。同時,IBM 將繼續創新,協助企業保護其混合雲環境及 AI 計畫,並加強在數據安全和身份及存取管理技術上的投資。」 Enterprise Strategy Group資深網路安全分析師 Dave Gruber 表示:「像 Palo Alto Networks 這樣的廠商,正提供即時可用的整合安全營運功能,使安全團隊能快速提升效能,同時簡化管理分散的安全技術堆疊所帶來的複雜性。隨著 Palo Alto Networks 完成對 Q-Radar 資產的收購,Q-Radar 的客戶現在可以更輕鬆地將安全作業現代化,轉向使用 XSIAM。」 客戶將獲得以下優勢: 無縫遷移: 在 IBM Consulting 及其安全專家團隊的協助下,Palo Alto Networks 將為符合資格的客戶提供免費遷移服務,確保順利轉移至 Cortex XSIAM 平台,同時保留現有的最佳作法和專業知識。 強化安全作業:Cortex XSIAM 整合多個 SOC 工具至 Precision AI 驅動的單一平台,不僅超越傳統 SIEM 的功能,更涵蓋 SOAR、ASM 和 XDR、TIP、CDR 及 ITDR 等全面功能。其自動化功能大幅減少了 SOC 的手動工作量,使威脅應對更加有效。 進階分析與自動化:Cortex XSIAM 近乎即時地收集、標準化並分析安全數據,自動將警示整合為少數高優先級事件。透過 Precision AI 驅動的分析和原生自動化功能,提高了準確性並減少需人工介入的事件。 IBM Consulting 平台支援: Palo Alto Networks 與 IBM 將為有興趣採用 Palo Alto Networks 安全平台的客戶提供深入的體驗。IBM 正培訓逾 1,000 名顧問,以協助企業善用其網路、雲端和安全作業平台的優勢。 地端客戶服務不中斷:仍希望使用本地伺服器 QRadar 的客戶,將繼續享有 IBM 的功能與支援,包括安全性、可用性提升及重要的漏洞修補,以及現有連接器的更新和擴展使用量的能力。對於 QRadar SaaS 客戶,在準備轉移至 Cortex XSIAM 之前,將持續提供無縫的客戶服務與支援。 關於Palo Alto Networks Palo Alto Networks 是全球網路安全領導者。我們不斷創新,以超越網路威脅,因此組織可以自信地擁抱技術。我們為全球各行各業的數千家客戶提供下一代網路安全。我們一流的網路安全平臺和服務以行業領先的威脅情報為後盾,並由最先進的自動化技術加強。無論是部署我們的產品以實現零信任企業、回應安全事件,還是通過世界一流的合作夥伴生態系統合作提供更好的安全結果,我們都致力於幫助確保每一天都比以前更安全。這就是我們成為首選網路安全合作夥伴的原因。 在 Palo Alto Networks,我們致力於將最優秀的人才聚集在一起,為我們的使命服務,因此我們也很自豪能夠成為首選的網路安全工作場所,在《新聞週刊》最受歡迎的工作場所(2023 年、2022 年、2021 年)中得到認可,在殘疾平等指數(2023 年、2022 年)和 HRC LGBTQ+ 平等最佳場所(2022 年)上得分為 100 分。欲瞭解更多資訊,請訪問 www.paloaltonetworks.com。
New cloud location in Indonesia delivers best-in-class cloud-based cybersecurity platforms while supporting customers with their data residency needs JAKARTA, Indonesia, June 7, 2024 /PRNewswire/ -- Palo Alto Networks (NASDAQ: PANW), the global cybersecurity leader, today announced the launch of its new cloud location in Indonesia. The new cloud location gives Indonesian customers access to the full breadth of Palo Alto Networks security capabilities while helping meet local data residency needs. In Indonesia, the cloud infrastructure landscape is on an upward trajectory with organizations modernizing their applications and seizing the opportunities of the cloud. At the same time organizations, particularly those in the financial sector, must ensure that the storage of their data aligns with Indonesia's regulations. [1],[2] As Indonesian organizations expand and seize the potential of cloud computing, the task of detecting and preventing threats will inevitably become increasingly challenging, demanding more time and resources. According to Palo Alto Networks State of Cloud-Native Security 2024 Report, 98% of organizations store sensitive data across multiple locations — on-premises servers, the public cloud, in SaaS applications with local storage, on private clouds hosted by third parties and endpoints — it is clear that security challenges are high. "When organizations in Indonesia modernize and move to the cloud, they will face new challenges such as protecting against complex threats and the need to remain compliant with local data protection regulations," said Adi Rusli, Country Manager, Indonesia, Palo Alto Networks. "Our investment in the new cloud location demonstrates our commitment to securing Indonesia's digital future. It gives organizations in Indonesia and the region access to our AI-powered cybersecurity platforms while helping them meet their data residency needs." The availability of the regionally hosted services is part of Palo Alto Networks' ongoing commitment to deliver the most complete set of security services locally for Indonesian and regional customers. These services help enable customers in Indonesia to balance data location needs with the ability to detect emerging threats, providing a seamless, streamlined security solution delivered within Indonesia. Customers in Indonesia already benefit from Palo Alto Networks' local cloud locations with Prisma® Access, which secures the hybrid workforce. The new cloud location provides Indonesia-based organizations with direct, high-performance access to Palo Alto Networks range of services, such as: Prisma® Cloud: Customers can secure and meet security policy compliance requirements for their applications, data, and the entire cloud-native technology stack — throughout the development lifecycle and across hybrid and multicloud environments. Cortex XDR®: Cortex XDR is an industry-leading extended detection and response platform, that integrates endpoint, network, cloud data, and more to stop attacks with state-of-the-art AI and analytics. Customers can meet data residency needs with the new Indonesian cloud infrastructure by keeping their logs and analytics in Indonesia. Cortex XSOAR®: Cortex XSOAR is Palo Alto Networks' security automation and orchestration platform for the modern SOC. XSOAR boosts efficiency by automating and streamlining SOC processes, leveraging extensive integrations and a user-friendly platform. The XSOAR marketplace offers hundreds of prebuilt playbooks and integrations, accelerating response times and enhancing overall security operations. Cortex Xpanse®: Palo Alto Networks Cortex Xpanse provides active attack surface management, allowing organizations to proactively shrink their attack surface to secure their organization. Utilizing AI-powered playbooks, it identifies and prevents unknown exposures by promptly remediating gaps in the attack surface, enhancing overall security posture, and reducing the risk of successful cyberattacks. Cortex XSIAM®: Palo Alto Networks has launched its AI-driven SOC platform that harnesses the power of machine intelligence and native automation to radically improve security outcomes and transform security operations. With Cortex XSIAM, Indonesian customers can now accelerate their SOC transformation while meeting data location preferences. For more information on Palo Alto Networks' regional cloud locations, please visit: https://www.paloaltonetworks.com/products/regional-cloud-locations About Palo Alto Networks Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice. At Palo Alto Networks, we're committed to bringing together the very best people in service of our mission, so we're also proud to be the cybersecurity workplace of choice, recognized among Newsweek's Most Loved Workplaces (2021 and 2022), Comparably Best Companies for Diversity (2021). For more information, visit www.paloaltonetworks.com. Palo Alto Networks, Cortex, Cortex XDR, Cortex XSIAM, Cortex XSOAR, Cortex Xpanse, Prisma, and the Palo Alto Networks logo are trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions throughout the world. All other trademarks, trade names, or service marks used or mentioned herein belong to their respective owners. Any unreleased services or features (and any services or features not generally available to customers) referenced in this or other press releases or public statements are not currently available (or are not yet generally available to customers) and may not be delivered when expected or at all. Customers who purchase Palo Alto Networks applications should make their purchase decisions based on services and features currently generally available. [1] https://ojk.go.id/en/regulasi/otoritas-jasa-keuangan/peraturan-ojk/default.aspx [2] https://resourcehub.bakermckenzie.com/en/resources/cloud-compliance-center/apac/indonesia
全新 AI 存取、AI安全狀況管理和 AI執行階段安全性解決方案,使企業能夠安全地採用 AI 新聞摘要: l 精準AI™ (Precision AI™)是一款專有的創新 AI 系統,匯集機器學習、深度學習和生成式 AI 的力量,可確保即時安全。 l 精準 AI 安全套組(Security Bundle)利用內嵌 AI 來防止複雜的 Web 型威脅、零日威脅、命令與控制攻擊,以及 DNS 綁架攻擊。 l 全新 AI 程式碼到雲端功能包括 AI 攻擊路徑、影響範圍 (Blast Radius) 和行動計畫。 l 推出全新解決方案:AI 存取(AI Access Security)、AI 安全狀況管理(AI Security Posture Management) 和 AI 執行階段安全性(AI Runtime Security),使企業能夠安全採用 AI。 2024 年 5 月 23 日台北訊–Palo Alto Networks(NASDAQ:PANW)今天推出一系列全新安全解決方案,幫助企業阻擋 AI 生成式攻擊,並有效保護 AI 設計的安全。全球網路安全領導者 Palo Alto Networks 運用全新專有創新的精準AI™(Precision AI™)結合機器學習(ML)和深度學習(DL)的最佳效能與即時生成式 AI (GenAI) 的存取能力,憑藉 AI 驅動的安全性先發制人,實現更主動的網路和基礎設施保護措施。 Palo Alto Networks 執行長暨主席Nikesh Arora 表示:「企業必須加緊腳步,超越不同的流程和解決方案,去了解互聯平台的優勢。這種平台不僅是技術堆疊,更代表關鍵業務機制和無庸置疑的成功驅動力。平台化是必要的方法,而能夠保護且支援 AI 的整合解決方案,是實現成果不可或缺的要素。Palo Alto Networks 的精準 AI 技術將帶來顛覆以往的改變,創造前所未有的全新安全典範,讓防禦者能夠領先敵手。」 Palo Alto Networks 已將精準 AI 技術整合進 Strata™、Prisma® 與 Cortex® 平台,透過全新功能解決關鍵企業使用案例: l 以 AI 對抗 AI:包括使用 AI 驅動的安全措施,以對抗和抵制與惡意使用 AI 相關的潛在負面影響或風險。隆重推出: n 精準 AI 安全套組:帶來由精準 AI 提供支援的進階安全服務,包括進階網址過濾、進階威脅防禦、進階防火牆® 和進階 DNS 安全性。這些服務運用內嵌 AI 來防止複雜的網路型威脅、零日威脅、規避性命令與控制攻擊,以及 DNS 綁架攻擊。 l 透過設計確保 AI 安全:藉此建立安全的 AI 生態系統,優先考慮 AI 安全架構的完整性,提高合規性,並大幅減少從開發初始階段到部署的資料暴露。 n AI存取:使組織員工能安心使用 AI 工具,為安全團隊提供全面的能見度、強大的控制能力、資料保護和主動威脅預防措施。隆重推出: n AI安全狀況管理(AI-SPM):透過識別漏洞並優先處理模型、應用程式和資源中的錯誤設定,保護您的 AI 生態系統。其改善了合規性並將資料暴露的風險降至最低,進而提高 AI 安全架構的完整性。 n AI 執行階段安全性:透過保護整體 AI 應用程式生態系統,防止執行階段威脅(例如提示注入、模型 DoS、不安全輸出等),幫助您自信建立 AI 驅動的應用程式。 n 全新支援 AI 的程式碼到雲端(Code to Cloud™)功能:包括 AI 攻擊路徑和影響範圍分析、揭示複雜風險的引導式補救措施、從初始攻擊擴散風險的潛在漏洞途徑,以及快速進行補救的步驟。 n 利用 AI 簡化安全性:透過 Palo Alto Networks 三大平台上由精準 AI 提供支援的 Copilot 實現,這些平台的功能能夠真正提供更多的自主安全性: u 情境驅動 — 真正理解使用者意圖 u 可行性 — 執行和自動化使用者行動 u 主動 — 發出警報並提供最佳實務 u 支援 — 提供產品內支援和票證建立工作流程 Palo Alto Networks 精準 AI 引領未來的業務營運 到 2030 年前,AI 可望在所有產業的效率、體驗和成長方面掀起一波新浪潮。勤業眾信 (Deloitte)報告指出,到 2032 年,AI 網路安全市場預計將達到 1,027.8 億美元,進一步顯示 AI 的普遍採用。儘管 AI 為企業帶來福音,但敵對行為者也高度利用 AI 來進行傳統安全解決方案無法偵測到的規避、獨特和破壞性的零日攻擊。若以數據來說明,Palo Alto Networks 平均每天可以發現 230 萬個前一日不存在的新型獨特威脅,並平均每天阻止 113 億個內嵌威脅,增加了實現平台化和採用精準 AI的急迫性。 IDC 集團副總裁 Frank Dickson 表示:「在現今加速採用和部署 AI 的環境中,組織應意識到輸入和輸出都呈指數級增長。輸入是指透過整合解決方案和系統取得的資料量和品質,這些解決方案和系統將產生精確的 AI 輸出,以實現想要的結果。」 Palo Alto Networks 的精準 AI 優勢在於透過 Palo Alto Networks 平台化方法實現整合功能和資料可存取性。平台化消除了不同解決方案的界限,可簡化安全性並提高營運效率。Palo Alto Networks 客戶逐漸意識到採用跨網路、雲端和資安監控中心(SOC)環境緊密整合的安全產品統一平台所帶來的重大優勢。 關於Palo Alto Networks Palo Alto Networks 是全球網路安全領導者。我們不斷創新,以超越網路威脅,因此組織可以自信地擁抱技術。我們為全球各行各業的數千家客戶提供下一代網路安全。我們一流的網路安全平臺和服務以行業領先的威脅情報為後盾,並由最先進的自動化技術加強。無論是部署我們的產品以實現零信任企業、回應安全事件,還是通過世界一流的合作夥伴生態系統合作提供更好的安全結果,我們都致力於幫助確保每一天都比以前更安全。這就是我們成為首選網路安全合作夥伴的原因。 在 Palo Alto Networks,我們致力於將最優秀的人才聚集在一起,為我們的使命服務,因此我們也很自豪能夠成為首選的網路安全工作場所,在《新聞週刊》最受歡迎的工作場所(2023 年、2022 年、2021 年)中得到認可,在殘疾平等指數(2023 年、2022 年)和 HRC LGBTQ+ 平等最佳場所(2022 年)上得分為 100 分。欲瞭解更多資訊,請訪問 www.paloaltonetworks.com。 Palo Alto Networks、Cortex、Prisma、Precision AI、Strata、WildFire 和 Palo Alto Networks 徽標是 Palo Alto Networks, Inc. 在美國和世界各地司法管轄區的商標。此處使用或提及的所有其他商標、商號或服務標誌均屬於其各自擁有者。 本新聞稿包含涉及風險、不確定性和假設的前瞻性陳述,包括但不限於有關我們產品和技術的收益、影響或性能或潛在收益、影響或性能的陳述。這些前瞻性陳述並非對未來業績的保證,並且有大量因素可能導致實際結果與本新聞稿中的陳述存在重大差異。我們在最新的 Form 10-K 年度報告、Form 10-Q 的最新季度報告以及我們不時向美國證券交易委員會提交的其他文件中確定了某些可能影響我們業績和業績的重要風險和不確定性,每一項檔都可以在我們的網站 investors.paloaltonetworks.com 和 SEC 網站上 www.sec.gov 查閱。本新聞稿中的所有前瞻性陳述均基於截至本新聞稿發佈之日我們可獲得的信息,我們不承擔任何義務更新所提供的前瞻性陳述,以反映其發佈之日後發生的事件或存在的情況。 媒體聯絡人: Palo Alto Networks 謝玲慧 lseah@paloaltonetworks.com 盛思公關 周雅玲 ruby.chou@shangs.com.tw 0952-669-609
作者: Palo Alto Networks 物聯網技術長 May Wang 博士 2024年2月26日台北訊–近年來,人工智慧(AI)已成為網路安全中不可或缺的要素,但大型語言模型(Large Language Models,以下統稱 LLMs)的廣泛應用,使得2023年成為一個格外令人興奮的一年。事實上,LLMs已開始改變整個網路安全的樣貌。然而,這也帶來了前所未有的挑戰。 一方面,LLMs使處理龐大資訊變得輕而易舉,讓每個人都能充分利用AI。它們能夠提供極大的效率、智慧和擴充性,用於管理漏洞、防止攻擊、處理警報和應對事件。 另一方面,對手亦可利用LLMs提高攻擊效率,利用LLMs引入的額外漏洞,而LLMs的濫用可能會造成更多的網路安全問題,例如由於AI的普遍使用而導致意外的資料洩露。 LLMs的部署需要重新思考資安的方式。這是一個更加動態、互動和客製化的過程。在硬體產品的時代,只有當硬體被下一個新版本的硬體替換時,硬體才會發生變化。在雲端時代,軟體可以更新、收集和分析客戶數據以改進下一個軟體版本,但只有在發布新版本或修補程式時才會進行。 現在,在人工智慧的新時代,客戶採用的模型具備了自身的智慧,能夠持續學習,並根據客戶的使用情況進行調整——無論是為了更好地滿足客戶需求,還是可能偏離正確方向。因此,我們不僅需要在設計階段將安全性納入考量——確保我們建立安全的模型並防止訓練資料被污染(Data Poisoning)——而且在部署後需要持續評估和監控LLM系統,以確保其安全、防護和道德性。 最重要的是,我們需要在我們的安全系統中內置智慧(就像灌輸孩子正確的道德標準而非僅限於規範其行為),這樣它們才能夠具備適應性,能夠做出正確且堅固的判斷,而不會輕易被不良輸入所影響而偏離正確方向。 LLMs對網路安全帶來了什麼,是正面影響還是負面影響?我將分享我們過去一年學到的東西以及對2024年的預測。 回顧2023 一年前,當我撰寫《機器學習在網路安全中的未來》(在LLM時代之前),我指出了AI在網路安全中面臨的三個獨特挑戰:準確性、數據匱乏和缺乏真實情況,以及三個常見但在網路安全領域更為嚴重的AI挑戰:可解釋性、人才匱乏和AI安全。 現在,一年後,在進行了大量探索之後,我們發現LLMs在這六個領域中的四個方面有很大的幫助:數據匱乏、缺乏真實情況、可解釋性和人才短缺。另外兩個方面,準確性和AI安全,雖然極其關鍵,但仍然非常具有挑戰性。 我將LLMs在網路安全中使用的最大優勢歸納為兩個方面: 1. 數據 有標籤數據 使用LLMs幫助我們克服了「有標籤數據不足」的挑戰。 高品質的有標籤數據使AI模型和預測更準確、更適用於網路安全案例。然而,這些數據很難獲得。例如,被入侵的組織並不樂於分享這些資訊,因此很難找到可以讓我們了解攻擊數據的惡意軟體樣本。 當使用LLMs時,它們能夠幫助我們收集初步的數據並根據現有的真實數據進行資料合成。這意味著它們可以利用現有的數據來擴充並生成新的數據,這些新數據涉及攻擊來源、媒介、方法和意圖等方面。這些資訊隨後可以用來建立新的偵測方法,而不僅僅受限於原有的現場數據。 真實情況 正如我在一年前的文章中提到的,在網路安全領域,我們並非總是能夠掌握真實情況。我們可以利用LLMs來大幅改善真實情況,方法是找出我們偵測中的漏洞以及多個惡意軟體資料庫,進而降低誤報率並且經常重新訓練模型。 2. 工具 LLMs使網路安全操作更輕鬆、更容易使用並更具操作性。到目前為止,LLMs對網路安全的最大影響是對安全營運中心(SOC)的影響。 例如,LLMs在自動化SOC方面的關鍵能力是函式呼叫(function calling),這有助於將自然語言指令轉譯為可以直接操作SOC的API調用。此外,LLMs還可以幫助安全分析師更智能、更快速地處理警報和事件應變。LLMs使我們能夠透過直接接受用戶的自然語言命令來整合複雜的網路安全工具。 可解釋性 先前的機器學習模型表現良好,但無法回答「為什麼?」的問題。LLMs具有潛力以精確且自信地方式解釋原因,這將有望改變遊戲規則,從根本上改變威脅檢測和風險評估的方式。 LLMs快速分析大量資訊的能力有助於將來自不同工具的數據進行連結:包括事件、日誌、惡意軟體家族名稱、來自常見漏洞和曝光(CVE)的資訊,以及內部和外部數據庫等。這不僅有助於找到警報或事件的根本原因,還大幅地減少了事件管理的平均解決時間(MTTR)。 人才匱乏 網路安全行業的失業率是負值。我們缺乏足夠的專家,人類無法應對龐大的警報數量。LLMs的優勢在於能夠快速組裝和消化大量資訊、理解自然語言命令、將其分解為必要的步驟,並且找到執行任務所需的正確工具,因此大幅減輕了安全分析師的工作負擔。 從獲取領域知識和數據到解析新樣本和惡意軟體,LLMs可以幫助加速建立新的檢測工具,從而使我們能夠自動執行識別和分析新的惡意軟體,並準確查明不良行為者等任務。 我們還需要為人工智慧基礎設施建立合適的工具,這樣就不必每個人都成為網路安全專家或AI專家,也能享受在網路安全中利用AI所帶來的好處。 2024年的三項預測: 在網路安全領域越來越廣泛運用人工智慧,顯然我們正處於一個新時代的開端——這是通常所謂的「曲棍球桿」增長的早期階段。我們對LLMs了解越多,就越能改善我們的安全狀態,這樣我們就越有可能在利用人工智慧方面領先對手。 雖然我認為在網路安全領域有許多值得討論的地方,尤其是關於人工智慧如何作為一種力量乘數來應對日益複雜和擴展的攻擊媒介,但有三個重點需要特別注意: 1. 模型 人工智慧模型將在建立深入的領域知識方面獲得重大突破,這些知識根植於網路安全的需求之中。 去年,人們非常關注改進通用的LLM模型。研究人員努力使模型更加智慧、更快速、更經濟實惠。然而,通用模型能夠提供的內容與網路安全的需求之間存在著巨大的差距。 具體而言,我們的產業不一定需要一個能夠回答如「如何製作菠菜蛋」或「誰發現了美洲」這種多樣問題的龐大模型。相反地,網路安全需要具有深入領域知識的高精度模型,涵蓋網路安全威脅、流程等方面的知識。 在網路安全中,準確性至關重要。例如,在 Palo Alto Networks ,我們每天從全球各地的SOC處理超過75TB的資料。即使是0.01%的錯誤檢測判定都可能造成災難。我們需要具有豐富安全背景和高精度知識的人工智慧,以提供針對客戶安全需求的客製化服務。換句話說,這些模型需要執行更少的特定任務,但要有更高的準確度。 工程師正在努力創建具有更具垂直行業和特定領域知識的模型,而我對於在2024年出現以網路安全為中心的LLMs充滿信心。 2. 應用案例 在網路安全領域,將出現轉型的LLMs應用案例,這將使LLMs在網路安全中成為不可或缺的一部分。 在2023年,人們對LLMs的驚人能力感到非常興奮。他們將這個「鎚子」用來試驗每一個「釘子」。 到了2024年,我們將意識到並非每個使用情境都是LLMs的最佳適用對象。我們將擁有真正針對特定任務的LLM-enabled網路安全產品,這些任務與LLMs的優勢相輔相成。這將真正提升效率、提高生產力、增強可用性、解決現實問題,並降低客戶成本。 想像一下,能夠閱讀成千上萬份關於安全問題的手冊,例如配置端點安全設備、排除性能問題、為新用戶提供適當的安全憑證和權限、以及根據供應商進行安全架構設計。 LLMs的能力以可擴展且快速的方式消化、總結、分析和產生正確的資訊,將改變運作方式,並徹底改革安全專業人員的部署地點和時間。 3. 人工智慧防護與安全性 除了將人工智慧用於網路安全外,如何建立安全的人工智慧並合理使用,而不損害其智能,是一個重要議題。在這方面已經進行了許多討論和工作。到了2024年,將會部署真正的解決方案,儘管可能還處於初步階段,但它們將是朝著正確的方向邁出的一步。此外,還需要建立一個智能的評估框架,動態評估人工智慧系統的安全性。 請記住,LLMs也可以被不法分子利用。例如,駭客可以輕鬆使用LLMs生成數量更大、品質更高的釣魚郵件。他們還可以利用LLMs創建全新的惡意軟體。但產業正更加合作與策略性地應對LLMs的使用,協助我們領先並持續保持優勢。 在2023年10月30日,美國總統約瑟夫·拜登簽署了一項行政命令,涵蓋了對人工智慧技術、產品和工具的負責和適當使用。該命令的目的是強調AI供應商必須採取一切必要措施,確保其解決方案被正確應用,而非用於惡意目的。 人工智慧安全性代表了一個真實的威脅,這是我們必須認真對待的問題,我們必須假設駭客已經開始設計對抗我們防禦措施的攻擊。人工智慧模型已經被廣泛使用,這一事實導致了攻擊面和威脅媒介的大幅擴展。 這是一個非常動態的領域。人工智慧模型每天都在進步。即使AI解決方案已經部署,模型也在不斷演進,從不停滯不前。持續評估、監控、保護和改進都是非常必要的。 攻擊將利用人工智慧的情況經越來越多。作為業界,我們必須將開發安全的人工智慧框架作為首要任務。這將需要一個類似當年登月計畫的投入,涉及到供應商、企業、學術機構、政策制定者、監管機構——整個技術生態系統的合作。毫無疑問,這將是一個艱鉅的任務,但我們都意識到這項任務的重要性。 結論:最好的時代尚未到來 從某種意義上說,像是ChatGPT等通用AI模型的成功,已經在網路安全領域讓我們變得有些嬌生慣養。我們都期望可以建立、測試、部署並不斷改進我們的LLMs,使其更加注重資安,但事實卻提醒我們,網路安全是一個非常獨特、專業且棘手的領域,運用人工智慧也並非易事。為了使其發揮作用,我們需要確保所有四個關鍵方面都正確:數據、工具、模型和使用案例。 好消息是,我們可以接觸到許多聰明、心志堅定的人,他們具有遠見,了解我們為何必須朝更精準的系統邁進,這些系統結合了能力、智能、易用性,也許最重要的是與網路安全的關聯性。 我很幸運能夠在這個領域工作了相當長的時間,我每天都對我在Palo Alto Networks內部以及周圍行業的同事所取得的進步感到興奮和滿足。 回到作為預言者的棘手部分,要對未來有絕對的把握是相當困難的。但我確實知道這兩件事情: ● 2024年將是人工智慧運用於網路安全的非凡之年。 ● 2024年與即將到來的未來相比將顯得相形見絀。 如欲瞭解更多資訊,請點擊此。 關於Palo Alto Networks Palo Alto Networks是全球網路安全領導者,致力於透過創新來超越網路威脅,讓企業能夠充滿信心地擁抱技術。我們在全球為成千上萬個來自不同領域的組織提供新世代網路安全支援。Palo Alto Networks 一流的網路安全平台及服務以領先產業的威脅情報為後盾,並由最先進的自動化技術而強化。透過提供產品協助實現零信任企業、回應安全事件,或是與世界級的生態圈合作確保更好的安全成果,我們始終致力於幫助實現「每一天都比前一天更安全」的目標,而這正是Palo Alto Networks 成為最佳網路安全合作夥伴的原因。 在Palo Alto Networks,我們承諾匯集最優秀的人才,為達成上述的使命而努力。所以我們也很自豪地成為網路安全領域的首選工作場所,並在近期獲選為新聞周刊「最受歡迎工作場所」(Newsweek Most Loved Workplaces, 2021) 、「多元化最佳公司」(Newsweek Comparably Best Companies, 2021),以及HRC 「最佳LGBTQ平等企業」(HRC Best Places for LGBTQ Equality, 2022)。如欲瞭解更多資訊,請造訪 http://www.paloaltonetworks.com/。
A12 藝術空間
PANW
請先登入後才能發佈新聞。
還不是會員嗎?立即 加入台灣產經新聞網會員 ,使用免費新聞發佈服務。 (服務項目) (投稿規範)
