sb-nz logo
Story image

Bitdefender releases new EDR security solution to achieve 'holy grail' of protection

13 Nov 2017

Bitdefender has released a new cloud-based security offering to the market that brings together endpoint detection, prevention and response into a single console.

The company designed its GravityZone XDR to be a layered platform that is able to provide protection against both known and unknown cyber threats.

According to Harish Agastya, VP of Enterprise Solutions at Bitdefender, “EDR as a technology holds much promise for the security industry, but existing market offerings are too complex to be deployed by most organisations.”

XDR uses a combination of firewall and patch management abilities and it is able to block threats at pre-execution through machine learning. 

The company included real-time process monitoring, anti-exploit protection, sandbox analysis and full disk encryption as part of its offering.

“These components work together to continuously evolve protection of the endpoint from increasingly sophisticated attackers while supporting an organization’s overall security posture,” the company states.

The company has also integrated big data as part of a threat analytics module. It uses an event recorder to stream insights about event chains that look suspicious.

Security administrators are also able to look up XDR investigations in VirusTotal and submit samples for behaviour analysis to Bitdefender’s Sandbox Analyser. They can then delete, kill or quarantine any indicators of compromise or apply policy changes.

“With only the most relevant events being offered for incident response, threat hunting cost and effort are lowered. Having this EDR capability as part of a truly integrated security platform enables the holy grail of endpoint protection - prevent, detect, investigate, respond, and evolve,” Agastya continues.

In a separate announcement, the company announced a collaboration with Microsoft to provide enterprise security for Mac and Linux devices.

Enterprise customers will be able to access Bitdefender’s solutions across Microsoft’s Windows Defender ATP management console.

Microsoft selected Bitdefender for its reputation for having the ‘highest malware detection efficacy and fewest false positives for Mac and Linux endpoints,’ the company says in a statement.

We are delighted to have this opportunity to work with Microsoft and be one of their ‘go-to’ partners for Windows Defender ATP customers needing to protect Mac and Linux devices,” comments Vince Schiavo, Bitdefender’s SVP of Worldwide Enterprise Sales and Marketing.

Moti Gindi, Microsoft’s general manager of Windows Cyber Defense, says customers can extend Microsoft protection to non-Windows endpoints.

“This provides Sec-ops holistic protection and visibility across their Windows and non-Windows endpoints and ensures they can quickly and accurately detect, investigate and responds to attacks across their entire install base.”

Story image
IT leaders prioritising automation, Zero Trust and API-based security investments
"The study shows that a cocktail of multiplying threats, the proliferation of hybrid and cloud architectures, blended with a pandemic-fuelled explosion in distributed and remote work has created a perfect storm for network security teams."More
Story image
5G network security a US$9 billion dollar opportunity - report
The cloud-native nature of 5G networks will have a disruptive and positive impact on the cybersecurity industry in the next few years, with 5G network security presenting a US$9 billion enterprise market opportunity by 2025.More
Story image
Ransomware and Microsoft Exchange attacks surging 
There are global surges in ransomware attacks alongside increases in cyber attacks targeting Microsoft Exchange Server vulnerabilities, according to Check Point Research.More
Story image
Financial malware activity dropped in 2020 as creators honed their wares
Cybercriminals used the time to plan more malicious propagation techniques, both new and evolved from previous methods.More
Story image
ThreatQuotient hits $22.5m in new financing, continues growth streak
“Since we first invested in ThreatQuotient in 2017, their team has continued to prove to the market that there is a critical need for cybersecurity solutions aimed at security operations."More
Story image
Claroty discovers vulnerabilities in Ovarro TBox RTUs
The vulnerabilities could enable attackers to break into the systems and run code, crash systems, and meddle with configuration files, amongst other malicious actions.More