Palo Alto Networks

Last updated
Palo Alto Networks, Inc.
Company type Public
Industry Network security
Cybersecurity [1]
Cloud computing [2]
Founded2005;19 years ago (2005)
FounderNir Zuk
Headquarters
Santa Clara, California
,
U.S.
Area served
Worldwide
Key people
 Nikesh Arora (CEO)
ProductsPA 220, 4x0, 8x0, 32x0, 34x0, 54x0, 70x0, VM, CN firewall series [3]
Prisma SASE, [4] Prisma Cloud, Cortex XDR, Cortex Xpanse, Cortex XSOAR, Cortex XSIAM
RevenueIncrease2.svg US$8.03 billion (2024)
Increase2.svgUS$684 million (2024)
Increase2.svgUS$2.58 billion (2024)
Total assets Increase2.svgUS$20.0 billion (2024)
Total equity Increase2.svgUS$5.17 billion (2024)
Number of employees
15,289 (2024)
Website paloaltonetworks.com
Footnotes /references
Financials as of July 31,2024. [5]

Palo Alto Networks, Inc. is an American multinational cybersecurity company with headquarters in Santa Clara, California. The core product is a platform that includes advanced firewalls and cloud-based offerings that extend those firewalls to cover other aspects of security. The company serves over 70,000 organizations in over 150 countries, including 85 of the Fortune 100. [6] It is home to the Unit 42 threat research team [7] and hosts the Ignite cybersecurity conference. [8] It is a partner organization of the World Economic Forum. [9]

Contents

In June 2018, former Google and SoftBank executive Nikesh Arora joined the company as Chairman and CEO. [10]

History

Palo Alto Networks was founded in 2005 by Nir Zuk, [11] a former engineer from Check Point and NetScreen Technologies. [12] Zuk, an Israeli native, began working with computers during his mandatory military service in the Israeli Defense Forces in the early 1990s. [13]

The company debuted on the NYSE on July 20, 2012, raising $260 million with its initial public offering, which was the 4th-largest tech IPO of 2012. [14] [15] [16] It remained on the NYSE until October 2021 when the company transferred its listing to Nasdaq. [17] [18]

In 2014, Palo Alto Networks founded the Cyber Threat Alliance with Fortinet, McAfee, and NortonLifeLock, a not-for-profit organization with the goal of improving cybersecurity "for the greater good" by encouraging cybersecurity organizations to collaborate by sharing cyber threat intelligence among members. [19] [20] By 2018, the organization had 20 members including Cisco, Check Point, Juniper Networks, and Sophos. [21]

In 2018, the company began opening cybersecurity training facilities around the world as part of the Global Cyber Range Initiative. [22]

In May 2018, the company announced Application Framework, an open cloud-delivered ecosystem where developers can publish security services as SaaS applications that can be instantly delivered to customers. [2]

In 2019, the company announced the K2-Series, a 5G-ready next-generation firewall developed for service providers with 5G and IoT requirements. [23] [ better source needed ] In February 2019, the company announced Cortex, an AI-based continuous security platform. [24]

Acquisitions

Threat research

Unit 42 is the Palo Alto Networks threat intelligence and security consulting team. They are a group of cybersecurity researchers and industry experts who use data collected by the company's security platform to discover new cyber threats, such as new forms of malware and malicious actors operating across the world. [49] The group runs a popular blog where they post technical reports analyzing active threats and adversaries. [50] Multiple Unit 42 researchers have been named in the MSRC Top 100, Microsoft's annual ranking of top 100 security researchers. [51] In April 2020, the business unit consisting of Crypsis Group which provided digital forensics, incident response, risk assessment, and other consulting services merged with the Unit 42 threat intelligence team. [52]

According to the FBI, Palo Alto Networks Unit 42 has helped solve multiple cybercrime cases, such as the Mirai Botnet and Clickfraud Botnet cases, [53] the LuminosityLink RAT case, [54] [55] and assisted with "Operation Wire-Wire". [56]

In 2018, Unit 42 discovered Gorgon, a hacking group believed to be operating out of Pakistan and targeting government organizations in the United Kingdom, Spain, Russia, and the United States. The group was detected sending spear-phishing emails attached to infected Microsoft Word documents using an exploit commonly used by cybercriminals and cyber-espionage campaigns. [57]

In September 2018, Unit 42 discovered Xbash, a ransomware that also performs cryptomining, believed to be tied to the Chinese threat actor "Iron". Xbash is able to propagate like a worm and deletes databases stored on victim hosts. [58] In October, Unit 42 warned of a new crypto mining malware, XMRig, that comes bundled with infected Adobe Flash updates. The malware uses the victim's computer's resources to mine Monero cryptocurrency. [59]

In November 2018, Palo Alto Networks announced the discovery of "Cannon", a trojan being used to target United States and European government entities. [60] [61] The hackers behind the malware are believed to be Fancy Bear, the Russian hacking group believed to be responsible for hacking the Democratic National Committee in 2016. The malware communicates with its command and control server with email and uses encryption to evade detection. [62]

Related Research Articles

<span class="mw-page-title-main">Trend Micro</span> Japanese multinational cyber security company

Trend Micro Inc. is an American-Japanese cyber security software company. The company has globally dispersed R&D in 16 locations across every continent excluding Antarctica. The company develops enterprise security software for servers, containers, and cloud computing environments, networks, and end points. Its cloud and virtualization security products provide automated security for customers of VMware, Amazon AWS, Microsoft Azure, and Google Cloud Platform.

Sophos Ltd. is a British security software and hardware company. It develops and markets managed security services and cybersecurity software and hardware, such as managed detection and response, incident response and endpoint security software. Sophos was listed on the London Stock Exchange until it was acquired by Thoma Bravo in March 2020.

Fortinet, Inc. is a cybersecurity company with headquarters in Sunnyvale, California. The company develops and sells security solutions like firewalls, endpoint security and intrusion detection systems. Fortinet has offices located all over the world.

Webroot Inc. is an American privately-held cybersecurity software company that provides Internet security for consumers and businesses. The company was founded in Boulder, Colorado, US, and is now headquartered in Broomfield, Colorado, and has US operations in San Mateo and San Diego, and globally in Australia, Austria, Ireland, Japan and the United Kingdom.

<span class="mw-page-title-main">VirusTotal</span> Cybersecurity website owned by Chronicle

VirusTotal is a website created by the Spanish security company Hispasec Sistemas. Launched in June 2004, it was acquired by Google in September 2012. The company's ownership switched in January 2018 to Chronicle, a subsidiary of Google.

SolarWinds Corporation is an American company that develops software for businesses to help manage their networks, systems, and information technology infrastructure. It is headquartered in Austin, Texas, with sales and product development offices in a number of locations in the United States and several other countries. The company was publicly traded from May 2009 until the end of 2015, and again from October 2018. It has also acquired a number of other companies, some of which it still operates under their original names, including Pingdom, Papertrail, and Loggly. It had about 300,000 customers as of December 2020, including nearly all Fortune 500 companies and numerous agencies of the US federal government.

Trellix is a privately held cybersecurity company that was founded in 2022. It has been involved in the detection and prevention of major cybersecurity attacks. It provides hardware, software, and services to investigate cybersecurity attacks, protect against malicious software, and analyze IT security risks.

Avira Operations GmbH & Co. KG is a German multinational computer security software company mainly known for its Avira Free Security antivirus software. Although founded in 2006, the Avira antivirus application has been under active development since 1986 through its predecessor company H+BEDV Datentechnik GmbH. Since 2021, Avira has been owned by American software company NortonLifeLock, which also operates Norton, Avast and AVG. It was previously owned by investment firm Investcorp.

<span class="mw-page-title-main">Ken Xie</span> American billionaire businessman (born 1963)

Ken Xie is an American billionaire businessman who founded Systems Integration Solutions (SIS), NetScreen, and Fortinet.

Imperva, Inc. is an American cyber security software and services company which provides protection to enterprise data and application software. The company is headquartered in San Mateo, California.

Trustwave is an American cybersecurity subsidiary of The Chertoff Group. It focuses on providing managed detection and response (MDR), managed security services (MSS), database security, and email security to organizations around the globe.

<span class="mw-page-title-main">Seculert</span> Israeli cloud-based cyber security technology

Seculert was a cloud-based cyber security technology company based in Petah Tikva, Israel. The company's technology was designed to detect breaches and advanced persistent threats (APTs), attacking networks. Seculert's business was based on malware research and the ability to uncover malware that has gone undetected by other traditional measures.

Mandiant, Inc. is an American cybersecurity firm and a subsidiary of Google. Mandiant received attention in February 2013 when it released a report directly implicating China in cyber espionage. In December 2013, Mandiant was acquired by FireEye for $1 billion, who eventually sold the FireEye product line, name, and its employees to Symphony Technology Group for $1.2 billion in June 2021.

<span class="mw-page-title-main">Illusive Networks</span>

Illusive Networks is a cybersecurity firm headquartered in Tel Aviv, Israel and New York. The company produces technology that stops cyber attackers from moving laterally inside networks by finding and eliminating errant credentials and connections, planting deceptive information about given network's resources, emulating devices, and deploying high interactivity decoys. Network administrators are alerted when cyber attackers use security deceptions in an attempt to exploit the network. Illusive Networks is the first company launched by the Tel Aviv-based incubator, Team8. In June 2015, Illusive Networks received $5 million in Series A funding from Team8. To date, it has raised over $54M.

Open Threat Exchange (OTX) is a crowd-sourced computer-security platform. It has more than 180,000 participants in 140 countries who share more than 19 million potential threats daily. It is free to use.

CrowdStrike Holdings, Inc. is an American cybersecurity technology company based in Austin, Texas. It provides endpoint security, threat intelligence, and cyberattack response services.

Shlomo Kramer, is an Israeli information technology entrepreneur and investor. He is the co-founder of cyber-security companies Check Point and Imperva, as well as Cato Networks, a cloud-based network security provider.

<span class="mw-page-title-main">Anomali</span> American cybersecurity company

Anomali Inc. is an American cybersecurity company that develops and provides threat intelligence products. In 2023, the company moved into providing security analytics powered by artificial intelligence (AI).

Cisco Talos, or Cisco Talos Intelligence Group, is a cybersecurity technology and information security company based in Fulton, Maryland. It is a part of Cisco Systems Inc. Talos' threat intelligence powers Cisco Secure products and services, including malware detection and prevention systems. Talos provides Cisco customers and internet users with customizable defensive technologies and techniques through several of their own open-source products, including the Snort intrusion prevention system and ClamAV anti-virus engine.

Malcolm K. Palmore, simply referred to as M.K. Palmore, is an American cybersecurity executive and former FBI agent. He currently serves as a director in Google Cloud's Office of the Chief Information Security Officer (CISO), where he leads initiatives to support customers in navigating digital transformation and enhancing their cybersecurity posture, since 2021. Between 2019 and 2021, Palmore served as vice president and field chief security officer (CSO) at Palo Alto Networks. Before joining Palo Alto Networks, Palmore spent more than a quarter of a century in public service, primarily with the U.S. Marine Corps and later with Federal Bureau of Investigation (FBI). He served as the head of the Cyber Security Branch at the FBI’s San Francisco field office.

References

  1. PCmag (2018-01-26). "Millions of PCs targeted by cryptocurrency-mining malware". Fox News. Retrieved 2018-03-11.
  2. 1 2 "Application Framework - Palo Alto Networks". paloaltonetworks.com. 2018. Retrieved 2018-09-15.
  3. "Firewalls & Appliances".
  4. "Prisma SASE". Palo Alto Networks.
  5. "Palo Alto Networks Inc. FY 2024 Annual Report (Form 10-K)". SEC.gov. U.S. Securities and Exchange Commission. 2024-09-06.
  6. "About Us - Palo Alto Networks". paloaltonetworks.com. 2018. Retrieved 2020-07-13.
  7. "Unit 42 Twitter". twitter.com. 2018. Retrieved 2018-09-12.
  8. "Ignite Conference Twitter". twitter.com. 2018. Retrieved 2018-09-12.
  9. "Palo Alto Networks". World Economic Forum . Archived from the original on 2022-03-21. Retrieved 2023-05-26.
  10. "What to Expect of Google and Softbank Star Nikesh Arora, Palo Alto Network's New CEO". fortune.com. 2018-06-02. Retrieved 2018-09-15.
  11. Blacharski, Dan (2010-04-05). "How I Got Here: Nir Zuk, CTO, Palo Alto Networks". ITworld . Archived from the original on 2019-02-13. Retrieved 2018-03-11.
  12. Leyden, John (22 October 2010). "US and UK gov cyber defences = big boys' trough-slurp". The Register . Retrieved 8 September 2014.
  13. "Nir Zuk". Forbes . Retrieved 17 September 2024.
  14. Savitz, Eric (20 July 2012). "Kayak, Palo Alto Networks IPOs Off To Strong Debuts". Forbes . Retrieved 8 September 2014.
  15. Owens, Jeremy (20 July 2012). "Palo Alto Networks stunning IPO a good sign for some tech niches". Mercury News . Retrieved October 3, 2018.
  16. "The 10 largest tech IPOs of 2012". VentureBeat . 31 December 2012. Retrieved 26 October 2018.
  17. "EDGAR Filing Documents for 0001193125-21-296438". www.sec.gov. Retrieved 2024-03-10.
  18. "Palo Alto Networks to Transfer Stock Exchange Listing to Nasdaq" (Press release). PR Newswire. October 12, 2021.
  19. Albanesius, Chloe (February 13, 2015). "Obama Wants Tech Firms to Alert Feds to Cyber Threats". PC Magazine. Retrieved March 13, 2015.
  20. "Who We Are - Cyber Threat Alliance" . Retrieved October 3, 2018.
  21. "Membership - Cyber Threat Alliance" . Retrieved October 3, 2018.
  22. Aasha Bodhani, ITP Net. "Palo Alto Networks introduces global Cyber Range initiative." Jan 16, 2018. Retrieved Feb 6, 2018.
  23. "Palo Alto Networks Introduces Fastest-Ever Next-Generation Firewall and Integrated Cloud-Based DNS Security Service to Stop Attacks". PR Newswire. 2019-02-12. Retrieved 2019-03-09.
  24. "Edited Transcript of PANW earnings conference call or presentation 26-Feb-19 9:30pm GMT". 26 February 2019. Archived from the original on 12 June 2019. Retrieved March 9, 2019.
  25. Rao, Leena (6 January 2014). "Palo Alto Networks Buys Cyber Security Startup Founded By Former NSA Engineers, Morta". TechCrunch . Retrieved 8 September 2014.
  26. "Palo Alto Networks® Acquires Morta Security". Palo Alto Networks. 6 January 2014. Retrieved 8 September 2014.
  27. Rao, Leena (24 March 2014). "Palo Alto Networks Buys Cyber Security Company Cyvera For $200M". TechCrunch . Retrieved 8 September 2014.
  28. "Palo Alto Networks® Completes Acquisition of Cyvera". Palo Alto Networks. 10 April 2014. Retrieved 8 September 2014.
  29. King, Rachel (27 May 2015). "Palo Alto Networks acquires cybersecurity company CirroSecure". Zdnet . Retrieved 27 May 2015.
  30. "Palo Alto Networks acquires LightCyber". Palo Alto Networks. 28 February 2017.
  31. "Palo Alto Networks Closes Acquisition of Evident.io". Palo Alto Networks. Mar 26, 2018.
  32. "Palo Alto Networks Closes Acquisition of Secdo". Palo Alto Networks. Apr 24, 2018.
  33. "Palo Alto Networks to acquire RedLock for $173 M to beef up cloud security". TechCrunch. October 3, 2018.
  34. "Palo Alto Networks to acquire Demisto for $560M". TechCrunch. February 19, 2019.
  35. "Palo Alto Networks to acquire container security startup Twistlock for $410M". TechCrunch. 29 May 2019. Retrieved 2019-05-30.
  36. "Palo Alto Networks to acquire Twistlock, PureSec". ZDNet. Retrieved 2019-06-13.
  37. "SEC Form 10-Q, Fiscal Third Quarter 2019, period ended April 30, 2019" (PDF). Palo Alto Networks. 2019-05-30. p. 29.
  38. "Palo Alto Networks intends to acquire Zingbox for $75M". TechCrunch. 2019-09-04.
  39. Condon, Stephanie (November 25, 2019). "Palo Alto Networks acquires Aporeto for cloud security". ZDNet. Retrieved 2024-05-15.
  40. "Palo Alto Networks completes $420m acquisition of CloudGenix in three weeks". Data Economy. 2020-04-22. Retrieved 2020-04-23.
  41. "Palo Alto Networks to buy digital forensics consulting firm for $265M". TechCrunch. 24 August 2020. Retrieved 2020-09-02.
  42. "Palo Alto Networks acquires attack surface manager Expanse in $800m deal". ZDNet. 2020-11-11. Retrieved 2020-11-11.
  43. "Prisma Cloud Shifts Left With Proposed Acquisition of Bridgecrew". 2021-02-16. Retrieved 2021-02-16.
  44. Lunden, Ingrid (2022-11-17). "Sources: Palo Alto Networks is buying Cider Security for up to $300M". TechCrunch.
  45. Ingrid Lunden (October 31, 2023). "Confirmed: Palo Alto Networks buys Dig Security, sources say for $400M". Tech Crunch. Retrieved November 2, 2023.
  46. Maria Deutscher (October 31, 2023). "Palo Alto Networks acquires Dig Security for reported $400M". Silicon Angle. Retrieved November 2, 2023.
  47. Gately, Edward (6 November 2023). "Palo Alto Networks Acquiring Talon Cyber Security in Reported $625 Million Deal". Channel Futures. Retrieved 22 November 2023.
  48. "Palo Alto Networks completes acquisition of Dig Security". Security Info Watch. 2023-12-05. Retrieved 2023-12-14.
  49. "Unit 42 FAQs". 2018. Retrieved November 28, 2018.
  50. "Unit 42 Archives". 2018. Retrieved November 28, 2018.
  51. "Four Unit 42 Vulnerability Researchers Make MSRC Top 100 for 2018". Unit 42. 16 August 2018. Retrieved November 28, 2018.
  52. Whitmore, Wendi (2021-04-20). "Unit 42 and Crypsis Combine to Offer Threat Intel, Incident Response". Palo Alto Networks Blog. Retrieved 2021-07-19.
  53. "Hackers' Cooperation with FBI Leads to Substantial Assistance in Other Complex Cybercrime Investigations". U.S. Attorney's Office, District of Alaska. U.S. Department of Justice. 18 September 2018. Retrieved 28 November 2018.
  54. Osborne, Charlie (17 October 2018). "Creator of remote access tool LuminosityLink sent behind bars". ZDNET. Retrieved 28 November 2018.
  55. "Stanford Man Sentenced to 30 Months for Computer Intrusion Crimes". U.S. Attorney's Office, Eastern District of Kentucky. U.S. Department of Justice. 15 October 2018. Retrieved 28 November 2018.
  56. "Business E-Mail Compromise (BEC) Task Force in Los Angeles Announces Local Arrests as the Department of Justice Announces the Results of "Operation Wire-Wire" Including 74 Charged in Bec Schemes Internationally". 11 June 2018. Retrieved 28 November 2018.
  57. "Hacking group combines spear-phishing with mass malware campaign". 2 August 2018. Retrieved 28 November 2018.
  58. "Chinese-speaking cybercrime group launches destructive malware family". 18 September 2018. Retrieved 28 November 2018.
  59. "Hack Brief: Fake Adobe Flash Installers Come With A Little Malware Bonus". 12 October 2018. Retrieved 28 November 2018.
  60. "Russian hacking tool gets extra stealthy to target US, European computers". 20 October 2018. Retrieved 28 November 2018.
  61. "Russia's Elite Hackers May Have New Phishing Tricks". 20 October 2018. Retrieved 28 November 2018.
  62. "Sofacy Continues Global Attacks and Wheels Out New 'Cannon' Trojan". 20 October 2018. Retrieved 28 November 2018.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.