ATLANTA--(BUSINESS WIRE)--Damballa, the experts in network security monitoring, today announced that its Failsafe threat detection platform now integrates with Palo Alto Networks’ Panorama network security management platform and Next-Generation Firewalls (NGFW) to help customers identify and mitigate external threats at the earliest possible stage. With this integration, customers of Palo Alto Networks will be able to leverage Damballa Failsafe to discover active infections and notify the Palo Alto Networks Panorama or NGFW platform of suspected or infected devices, and identify whether communication attempts are being made with a command and control (C&C) server. Damballa Failsafe 6.0 leverages a distributed computing architecture that enables the seamless addition of powerful new detection modules, ease of integration with other security technologies, and more efficient processing power. As a result, enterprises can ‘future-proof’ their threat detection platform to deal with current and emerging threats.
“Thousands of enterprises rely on Palo Alto Networks’ portfolio of products and solutions to secure the integrity of their network and protect what matters most: their applications, users, and content,” said Steve Laubenstein, VP, Business Development & Strategic Partnerships for Damballa. “This integration will add another critical layer of threat intelligence, with Damballa Failsafe providing an additional source of information that can be used to determine the precise nature of a given threat.”
The integration of Damballa and Palo Alto Networks works in the following manner:
- Damballa Failsafe discovers infected devices, suspected devices, and/or active C&C domains
- Damballa Failsafe notifies Palo Alto Networks’ Dynamic Block List of device state and identified C&C communication attempts
- Palo Alto Networks implements policies based on device state (suspected or infected) information (i.e., block infected assets from communicating to internet and/or high-value assets, enhance logging on suspected assets)
- Palo Alto Networks blocks active C&C communication attempts identified by Failsafe
To learn more about the integrated offering between Damballa and Palo Alto Networks, click here.
Damballa is a network security monitoring system that provides evidence of threat-related activity needed to prevent data theft. We discover criminal operators that have already bypassed perimeter defenses and pose a business risk. Our automated system works in real-time and over time regardless of the attack vector, device type or OS. Attackers may take time to reveal themselves and when they do, Damballa will expose them and initiate mitigation. Our patented solutions leverage Big Data from one-third of the world’s Internet traffic, combined with machine learning, to automatically discover and terminate criminal activity, stop data theft, minimize business disruption, and reduce the time to response and remediation. Damballa protects any device or OS including PCs, Macs, Unix, iOS, Android, and embedded systems. Damballa protects more than 400 million endpoints globally at enterprises in every major market and for the world's largest ISP and telecommunications providers. For more information, visit www.damballa.com, or follow us on Twitter @DamballaInc.
About Palo Alto Networks
Palo Alto Networks is leading a new era in cybersecurity by protecting thousands of enterprise, government, and service provider networks from cyber threats. Unlike fragmented legacy products, our security platform safely enables business operations and delivers protection based on what matters most in today’s dynamic computing environments: applications, users, and content. Find out more at www.paloaltonetworks.com.