Every three to five years a new cybersecurity technology term gets hyped. In 2021 it’s eXtended Detection and Response (XDR). I’m old enough to remember way back in 2017 when endpoint detection and response (EDR) was considered the ‘Holy Grail’ of cyber defense.
All about Virtualization and Cloud Security | Recent Articles:
In an earlier blog this year, I compared the concepts of cybersecurity and cyber-resiliency, arguing that the main difference between the two is one of perspective. Cybersecurity is centered on the idea that attacks can (and should) be prevented while cyber-resilience acknowledges that some attacks will go through, and that organizations must prepare to deal with the consequences quickly and effectively.
In the third and last part of the blog series on Practical Cyber Resilience, I will cover the Approaches, Tactics and Techniques that an organization should use when developing options for improving cyber resilience. In the previous blog, I detailed the practical five-step Cyber Resilience Analysis Process recommended both by NIST and MITRE for enhancing cyber resilience.
Security operations are expensive! Hiring, training, and keeping a team of security analysts demands significant resources from any organization wanting to run security operations in-house. There are many studies which show the urgent need to improve security operations center (SOC) analysts’ productivity.
On April 20th, the results of the latest round of the annual MITRE ATT&CK® Evaluation of security solutions were released. This year, a field of 29 security solutions from leading cybersecurity companies including Bitdefender, Crowdstrike, and Microsoft were tested on their ability to detect the techniques and tactics of Carbanak and FIN7.
This is the second of a 3-blog series on Practical Cyber Resilience. In the first part, I covered the four key characteristics (or guiding principles) of cyber resilience. In this blog we will review the main objectives and 5-step Cyber Resilience Analysis methodology, as defined by the NIST Special Publication 800-160, Developing Cyber Resilient Systems.
The last major release of the year brings on November 17, 2020 a new product and important enhancements:
- Bitdefender Endpoint Detection and Response is a new EDR product that can coexist with any third-party endpoint security solution
- GravityZone gets a new executive dashboard and an enhanced SIEM connector
- All EDR products now feature custom EDR detection rules capability
- Hosted Security solutions are quick to deploy, operationally friendly, flexible and more effective
- To choose the best hosted security platform, organizations should look at the ability to detect threats as well as how the solution deals with the human element
- GravityZone Ultra won PC Mag’s Editors’ Choice award as the Best Hosted Endpoint Protection and Security Software for 2020
Bitdefender’s hard-to-beat track record in third-party independent testing stretches back many years. The latest 100% APT detection score from AV-Comparatives and the new Best Protection Award from AV-TEST are just the most recent proof of what the industry already knows: Bitdefender builds superior Endpoint Security solutions. There’s a good chance these technologies are protecting you even without you knowing it: a significant portion of the security vendors around the world use Bitdefender security technologies.
Cyber Resilience - Safeguarding Your Digital Transformation with Detection and Response
Today, businesses face a new set of challenges:
- more aggressive cyber threats (higher exposure to risk)
- increased attack surface
- difficulty to find adequate security staff
- increasing complexity of security architecture
These factors lead to an increase in the number and cost of breaches. The need has never been greater for visibility and insights into the environment, timely and effective response to advanced threats, and simplified security architecture.