Request a Quote

Cisco announces general availability of XDR platform

We Keep you Connected

Cisco announces general availability of XDR platform

Cisco Announces General Availability of XDR Platform
Your email has been sent
In alliance with Cohesity and others, Cisco is fueling near-zero latency between ransomware detection and remediation with its Extended Detection and Response platform.
Ransomware attacks exploded after COVID-19 according to several reports, and so have solutions accelerating detection. Restoring ransomed enterprise and customer data from recent backups can give organizations a leg up on recovery while making it possible to avoid paying attackers to unlock operational data.
Remediation is a capability that Cisco has added to its XDR platform, which the company announced at the RSA conference in April and launched for general availability globally on Tuesday.
SEE: Ransomware attacks increased 91% in March, as threat actors find new vulnerabilities (TechRepublic)
Jump to:
One key to Cisco’s updated XDR platform is that when attackers hold an organization’s data for ransom, they lose leverage if the organization has recent backups that can be easily and rapidly restored. Cisco and security and data management platform Cohesity, one of several third-party alliances driving Cisco’s XDR, announced this week that the XDR platform is able to do quick “snapshots” of data for rapid backup through Cohesity DataProtect and DataHawk solutions.
The new technology is designed to minimize the time between the beginning of a ransomware outbreak and capturing a snapshot of business-critical information to near zero, according to Cisco.
Raj Chopra, SVP, chief product officer for Cisco Security, said that while the market is rife with detection capabilities — and indeed, XDR, touted for rapid, comprehensive telemetry, was a major talking point at RSA this year — there are few ways to remediate attacks with near-zero time latency. He said the new capabilities in Cisco XDR will allow security operations teams to automate the process of detection while taking “snapshots” of critical information for restoration at the very first signs of a ransomware attack before it even reaches sensitive assets.
“Because we have been instructing Cohesity to take snapshots, we have isolated infected systems, and Cohesity reconstitutes those systems to the last known good configuration,” Chopra said.
Chopra added that the capabilities include artificial intelligence processes that allow fine-tuning of snapshot timing based on historical training data, including from Cisco Talos Threat Intelligence around sensitive endpoints and user behavior.
“We have 25 years’ worth of incident playbooks in Talos. Outside of the U.S. government, we are the largest corpus of threat intel in the world around incident response, which is where a lot of nuance in the AI models for our XDR comes from,” he said.
SEE: At Cisco LIVE, new security platforms with AI under the hood (TechRepublic)
Cohesity is just one of several alliances behind Cisco’s XDR platform, noted Chopra. “One of the key things new for Cisco has to do with the fact that, with cybersecurity, we were not going to win as an island,” said Chopra, adding that the role of XDR for enhancing comprehensive detection telemetry was enhanced with third-party partnerships. “When we launched in April, we already had 13 vendors we had done pre-built integrations with. So for us, ‘extended’ also means other vendors. It means receiving telemetry from wherever vendors happen to be,” he said.
Microsoft Defender, Palo Alto Networks, CrowdStrike and SentinelOne are also aligned with Cisco XDR. “This is the start of remediation becoming more mainstream. That’s what this is about,” said Chopra.
Separately, Cisco has acquired Code BGP, a privately held company based in Greece that monitors border gateway protocols, an internet data routing protocol that finds the most efficient network route for transmissions across the web.
Cisco said the acquisition is designed to enhance the network monitoring capabilities of Cisco ThousandEyes network monitoring. Cisco also recently acquired network performance monitoring company Accedian and internet performance platform SamKnows.
Strengthen your organization’s IT security defenses by keeping abreast of the latest cybersecurity news, solutions, and best practices.
Cisco Announces General Availability of XDR Platform
Your email has been sent
Your message has been sent
TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.
Microsoft is also running a grant competition for ideas on using AI training in community building.
Generative AI will be a game changer in cloud security, especially in common pain points like preventing threats, reducing toil from repetitive tasks, and bridging the cybersecurity talent gap.
Does your business need a payroll provider that offers international payroll services? Use our buyer’s guide to review the best solutions, from ADP to Oyster.
Get up and running with ChatGPT with this comprehensive cheat sheet. Learn everything from how to sign up for free to enterprise use cases, and start using ChatGPT quickly and effectively.
Looking for an alternative to monday.com? Our comprehensive list covers the best monday alternatives, their key features, pricing, pros, cons and more.
Strengthen your organization’s IT security defenses by keeping abreast of the latest cybersecurity news, solutions, and best practices.
The practical implementation of effective backup solutions can be overwhelmed by jargon and cryptic terminology. This quick glossary from TechRepublic Premium can help you understand these concepts and provide a framework for learning to master the art of data backup procedures and solutions. From the glossary: MULTIPLEXING Refers to the common practice of combining multiple …
Organizations, regardless of size, should have a disaster recovery and business continuity plan. Such a plan helps IT pros create policies that address critical elements and processes that should be considered and implemented before a crisis occurs. This plan from TechRepublic Premium provides a roadmap that organizations can follow. From the policy: DISASTER PLAN IMPORTANCE …
This policy from TechRepublic Premium provides a working framework for establishing rules and procedures that prohibit drug and alcohol use on company premises or in company vehicles. From the policy: EMPLOYEE ASSISTANCE The use of illegal drugs and the abuse of legal drugs and alcohol have many numerous harmful effects and consequences on health and …
Keeping up with the latest technological innovations in augmented reality requires a thorough understanding of the underlying terminology. This quick glossary, courtesy of TechRepublic Premium, explains terms related to AR and various business applications. From the glossary: EXTENDED TRACKING Extended tracking enables the continuous presence of digital augmentations, affixed to objects, scenes or images, within …

source

 

Enterprise Guardian (EnGuard) specializes in HIPAA Compliant Email for the Healthcare Industry.
HIPAA Compliant Email, Telehealth & Cloud Made Easy.

 

GET THE LATEST UPDATES, OFFERS, INFORMATION & MORE