Palo Alto Networks is happy to announce the addition of the Palo Alto Networks (Known Signatures) scanner to VirusTotal, continuing our long-standing relationship with the organization, and furthering our commitment to threat intelligence sharing. This new integration allows users of VirusTotal to query malware samples against known antivirus signatures from the Palo Alto Networks Threat Intelligence Cloud, and ensures the continued joint cooperation between our organizations, in service of our joint customers and the industry as a whole.

What does this announcement mean?

The addition of the Palo Alto Networks (Known Signatures) scanner to VirusTotal provides a number of benefits to both Palo Alto Networks customers and users of the VirusTotal service, including:

Palo Alto Networks will continue to enrich our visibility into the threat landscape with samples sourced from VirusTotal, as an extension of what we receive via WildFire submissions and other third-party feeds.

VirusTotal users will be able to check malware samples against known antivirus signatures in the Palo Alto Networks Threat Intelligence Cloud.

How does this announcement affect Palo Alto Networks customers?

There is no impact to Palo Alto Networks customers or to the protections they receive from the Threat Intelligence Cloud, as part of the Next-Generation Security Platform. We do not rely on any third-party service, including VirusTotal, to provide known or unknown file verdicts for our customers. We continue to employ our WildFire threat analysis service to detonate and identify malware, extract threat intelligence and drive preventions for unknown threats, which are enforced via Threat Prevention, URL filtering (PAN-DB), Aperture and Traps.

Palo Alto Networks is firmly committed to sharing threat intelligence across public, private and commercial organizations, in order to raise the collective immunity against cyberattacks for the entire industry. Being part of the VirusTotal community continues to augment our ability to collect samples, ensuring we have wide visibility into threats sourced from internal and external sources and driving up the cost of launching successful attacks, as protections are automatically shared with Palo Alto Networks customers via WildFire.