Tag Archive for: XDR

Cisco XDR now automatically restores data after ransomware attack

/in


Cisco’s XDR platform can now provide “near real-time recovery” of business operations. In partnership with Cohesity, the company now takes a snapshot of important data to provide instant recovery in the event of an incipient ransomware attack.

We previously learned from Cisco that its own XDR platform would receive a“rolling thunder of innovations” through 2023. Within that, the new announcement certainly fits.

Cisco cites research from its own Talos Incident Response team that showed Q2 2023 featured lots of ransomware attacks, with the highest number of incidents in more than a year. With the new announcement, the company promises that such an incident can be nipped in the bud quickly.

Still problems at organizations

Security specialist at Cisco Netherlands Jan Heijdra notes that paying ransom to criminals should not be the way out of a ransomware attack. However, to recover quickly, improvement is needed. “Unfortunately, we often see companies facing severely outdated backups, resulting in data loss, significant costs and reputational damage. Merging the detection and backup process in the Cisco XDR platform enables organizations to immediately generate appropriate backups at the first signs of a ransomware attack. This ensures that very little to no data is lost when restoring the last available backup.”

Cisco is partnering with Cohesity to strengthen its XDR platform, namely by integrating with that company’s DataProtect and DataHawk solutions. Country manager Cohesity Benelux Dilip Timal hopes to work with Cisco on cyber resilience for businesses. “Proactively scanning for anomalies, potential threats and other indicators of a ransomware attack, is an important part of our data security and management vision. We are excited to partner with Cisco to bring this new functionality to market first.”

It will not be the only integration with another security party for Cisco XDR, but for now it is the only announcement the company is making about it. This at least shows Cisco that it can’t take care of security alone, so such integrations can prevent security holes.

Also read: Cisco integrates generative AI into Webex and security

Source…

Kaspersky launches XDR platform to combat growing ransomware threats in Southeast Asia

/in


  • Kaspersky has responded to the increased risk of targeted ransomware attacks on businesses in SEA by introducing the Kaspersky Extended Detection and Response (XDR) platform.
  • Kaspersky’s latest data indicates that Lockbit, a targeted ransomware group, attacked 115 businesses in SEA.

Digital kidnappers are targeting enterprises in Southeast Asia (SEA), and global cybersecurity company Kaspersky predicts that this trend will continue in the coming years, albeit in more sophisticated and targeted ways. Ransomware, a type of malware that locks computer and mobile devices or encrypts electronic files, is used by cybercriminals to demand a ransom in exchange for a decryption key or the return of data.

Ransomware has evolved as a threat since the first known attack in 1989; and since 2016, attackers have shifted from targeting users to larger enterprises. High-impact incidents, such as the WannaCry ransomware attack, have caused estimated damages of up to US$4 billion. Ransomware groups continue to target enterprises worldwide, including those in SEA, due to the high return on investment.

Kaspersky warns about the advancements in ransomware

Kaspersky is taking proactive steps to combat the escalating danger of targeted ransomware attacks on businesses in Southeast Asia. Its latest move is the introduction of the Kaspersky Extended Detection and Response (XDR) platform, which offers comprehensive protection against such attacks through its multi-layered defense mechanisms. Kaspersky reports that there has been a significant increase of almost 181% in daily ransomware attacks worldwide in the last year, resulting in approximately 9,500 encrypted files per day.

The attackers behind these attacks constantly improve their tactics and tools to demand higher ransoms and create a greater reputational impact. In 2020, Kaspersky warned of the rise of Ransomware 2.0, which employs highly targeted attacks and “pressure tactics” to achieve these goals.

Targeted ransomware groups have emerged as a new form of extortion in the past two years, using tactics such as reselling hacked data or files, conducting DDoS attacks, and launching targeted phishing campaigns. This tactic has been dubbed Ransomware…

Source…

NetWitness Launches Comprehensive XDR Offerings for Next Generation Security | Business

/in


BEDFORD, Mass.–(BUSINESS WIRE)–Jun 7, 2022–

NetWitness, a globally trusted provider of cybersecurity technologies and incident response, today announced NetWitness XDR, a family of products and capabilities delivering comprehensive detection and response on premise, in the cloud or as a hybrid of the two. This new offering and product architecture delivers the full range of deployment options enterprises seek today to meet their unique cybersecurity needs and use cases.

NetWitness XDR delivers a robust set of capabilities enabling extended detection and response (XDR) and helping customers stay ahead of the most sophisticated cyber threats. These include:

  1. Unified collection, data, and visibility across multiple security layers
  2. Automatic enrichment of data using any technical or business source
  3. A wide toolset of detection technologies including, but not limited to, advanced behavioral analysis
  4. External and internal threat intelligence to identify known security risks and threat actors
  5. Truly insightful context, visualization, and investigation tools
  6. Threat hunting tools and methodologies to identify previously unknown threats
  7. Highly repeatable and measurable incident investigation and response processes
  8. A strong array of both automated and human response options

“NetWitness has enjoyed the trust of some of the world’s most security sensitive organizations because of its unique ability to monitor the entire attack surface across the network, endpoint, cloud, IoT, logs and more,” said CEO of RSA and NetWitness, Rohit Ghai. “We have been delivering XDR capability to the market for several years and today we are delighted to announce new innovations in the platform and reintroduce it to the market as NetWitness XDR.”

Under this new model, NetWitness XDR will be comprised of three main product lines that showcase its uniquely powerful support for all XDR use cases. NetWitness Platform XDR 12 is the newest major release of NetWitness Platform. This technology stack, typically deployed as customer-managed software or hosted by MSSPs, has been enhanced to focus on detection…

Source…

Top XDR Vendor – Security Boulevard

/in


Are you satisfied with your current XDR Vendor services? If not, are you interested in getting robust security from a reliable Top XDR vendor with advanced capabilities to become your network almost impenetrable? Now, you can.

Seceon’s XDR takes grey and white spaces out of the cyber security canvas, leaving nothing to guesswork, abandonment or fate – making it a truly “One Stop Shop” for multi-layered protection against threats, attacks, compromises and exploits

Seceon provides a powerful security tool that merges multiple security products to create a unified security system for a comprehensive yet simpler outlook of potential threats across the whole network in your business environment.

As cybersecurity experts, Top XDR vendor, Seceon Inc provide a tool that helps identify highly complicated, hidden threats, track threats across various systems, lower the cost of security operations, and boost detection and response speed.

The XDR is Extended Detection and Response cybersecurity tool, a SaaS-based and vendor-specific security threat detection and response tool for improved productivity of operational security components.

We understand an enterprise’s need for a single and proactive security measure. That’s why we designed a tool to defend the entire landscape of different technology assets, such as mobile, cloud workloads, legacy endpoints, and in-house management security resources, without burdening staff or the IT department.

While attackers are developing more complex tactics, procedures, techniques to successfully penetrate and exploit security controls and sensitive information, we are also working on stopping those incidences with security measures that cancel their efforts.

Here are the advantages of using reliable and flagship XDR vendors:

Get Improved Operational Productivity

One of the best-selling points of this incredible cybersecurity tool is the unification of multiple solutions under one accessible interface. For example, you have a single screen to access a wide range of software. It helps your information security team and increases productivity without any potential attack on a network.

Get Reduced Costs & Resource Usage

Every enterprise finds…

Source…