News: 1725488115

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Palo Alto takes a big $500M bite out of IBM QRadar

(2024/09/05)


Palo Alto Networks has completed its purchase of IBM's QRadar SaaS offering, spending $500 million to buy up the service's customers and hopefully shift them into its own Cortex platform.

Neither company is commenting beyond their individual announcements. To us this looks like a straight customer grab, with IBM [1]promising a "seamless and cost-free migration" from QRadar SaaS to PAN's Cortex system. Over 1,000 Big Blue consultants have been trained on that Palo Alto system and costs shouldn't rise for eligible customers, it is claimed.

"Working with Palo Alto Networks will be a strategic advantage for IBM as our two companies partner on advanced threat protection, response, and security operations using Cortex XSIAM and watsonx, backed by IBM Consulting," IBM CEO Arvind Krishna said in a canned statement.

[2]

"At the same time, IBM will continue innovating to help secure organizations' hybrid cloud environments and AI initiatives, focusing our investments on data security and identity and access management technologies."

[3]

[4]

According to PAN's buzzword-bingo-heavy [5]release , the Cortex platform is said to provide security information and event management (SIEM), security orchestration, automation and response (SOAR), attack surface management (ASM) and the all-important extended detection and response (XDR), the current phrase for using AI to potentially fix issues faster than admins.

[6]IBM slurps up Bruce Schneier with Resilient purchase

[7]IBM buys Randori to address multicloud security messes

[8]Palo Alto Networks execs apologize for 'hostesses' dressed as lamps at Black Hat booth

"We are on a mission to help organizations transform their security operations and harness the potential of Precision AI-powered platforms to better protect their businesses," claimed PAN CEO Nikesh Arora.

"Our partnership with IBM reinforces our commitment to innovation and our conviction in the tremendous benefit of QRadar customers adopting Cortex XSIAM for a robust, data-driven security platform that offers transformative efficiency and effectiveness in defending against evolving cyber threats."

One practical result of this is that IBM is shifting to PAN. Around a quarter of a million IBM staff will be using Palo Alto's Prisma SASE 3.0 security software.

[9]

Big Blue takes a payoff to preserve shareholder value, and it's all about PAN's Cortex XSIAM AI platform from now on. The security giant is betting on XSIAM to grab a significant share of the security management market, and buying IBM's business is a logical move. ®

Get our [10]Tech Resources



[1] https://www.ibm.com/blog/announcement/palo-alto-networks-ibm-qradar-saas/

[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2Ztks6Ww1q7ksbMC_IZ-FHwAAAdM&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0

[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Ztks6Ww1q7ksbMC_IZ-FHwAAAdM&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33Ztks6Ww1q7ksbMC_IZ-FHwAAAdM&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0

[5] https://investors.paloaltonetworks.com/news-releases/news-release-details/palo-alto-networksr-closes-acquisition-ibms-qradar-saas-assets

[6] https://www.theregister.com/2016/02/29/confirmed_ibm_slurps_up_bruce_schneier_with_resilient_purchase/

[7] https://www.theregister.com/2022/06/07/ibm_buys_randori_rsa_news/

[8] https://www.theregister.com/2024/08/14/palo_alto_networks_execs_apologize/

[9] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Ztks6Ww1q7ksbMC_IZ-FHwAAAdM&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[10] https://whitepapers.theregister.com/



BSOD Simulator

Users of Red Hat 6.0 are discovering a new feature that hasn't been widely
advertised: a Blue Screen of Death simulator. By default, the bsodsim
program activates when the user hits the virtually unused SysRq key (this is
customizable) causing the system to switch to a character cell console to
display a ficticious Blue Screen.

Red Hat hails the bsodsim program as the "boss key" for the Linux world. One
RH engineer said, "Workers are smuggling Linux boxes into companies that
exclusively use Windows. This is all good and well until the PHB walks by
and comments, 'That doesn't look like Windows...' With bsodsim, that problem
is solved. The worker can hit the emergency SysRq key, and the system will
behave just like Windows..."

The bsodsim program doesn't stop at just showing a simulated error message.
If the boss doesn't walk away, the worker can continue the illusion by
hitting CTRL-ALT-DEL, which causes a simulated reboot. After showing the
usual boot messages, bsodsim will run a simulated SCANDISK program
indefinitely. The boss won't be able to tell the difference. If the boss
continues to hang around, the worker can say, "SCANDISK is really taking a
long time... maybe we should upgrade our computers. And don't you have
something better to do than watch this computer reboot for the tenth time
today?"