Playbook Series: Phishing: Automate and Orchestrate Your Investigation and Response

Phishing emails are not a new type of threat to most security professionals, but dealing with the growing volume and potential impact of them require an innovative solution. Today’s entry to our Playbook Series focuses on automating your Incident Response (IR) workflow for this common threat. The Phantom security automation and orchestration platform includes a sample … Continue reading Playbook Series: Phishing: Automate and Orchestrate Your Investigation and Response

Playbook Series: Ransomware: Detect, Block, Contain, and Remediate

Today’s post continues an ongoing series on Phantom playbooks; which the platform uses to automate and orchestrate your security operations plan. This example examines one of the sample playbooks included with the Phantom 2.0 platform release.  Ransomware is one the leading threats facing organizations today. With volumes of malicious inbound emails and already infected devices … Continue reading Playbook Series: Ransomware: Detect, Block, Contain, and Remediate

Automation with Palo Alto Networks and Phantom

Palo Alto Networks and Phantom combine best-in-class protection with best-in-class security automation and orchestration, offering increased advanced threat visibility and protection that is fully synchronized across the security environment. Palo Alto Networks can be quickly integrated with the Phantom platform using Phantom Apps for AutoFocus threat intelligence, PA Series network firewalls, Panorama centralized management, and … Continue reading Automation with Palo Alto Networks and Phantom

Playbook Series: Enrich Security Events with External Threat Intelligence

Today’s post continues an ongoing series on Phantom playbooks; which the platform uses to automate and orchestrate your security operations plan. This example examines one of the sample playbooks included with the Phantom 2.0 platform release.  The Phantom platform can automatically gather threat intelligence for you and enrich inbound security events. With the added context … Continue reading Playbook Series: Enrich Security Events with External Threat Intelligence

Phantom Extends Lead in Security Automation and Orchestration Market with New Product, Partners, and Playbooks

It's been less than 3 quarters since we launched the first version of Phantom, and I'm amazed at the progress we've made in such a short period of time. Today I am pleased to officially announce the General Availability of Phantom 2.0 with more than 500 improvements including the new Playbook Editor, Mission Control, Onboarding, … Continue reading Phantom Extends Lead in Security Automation and Orchestration Market with New Product, Partners, and Playbooks