Over the past ten years or so the number of new security products introduced has exploded. It seems that with every passing month, another tool is released that claims to finally solve your security challenges.
In fact, per the 2016 State of the Endpoint Report by the Ponemon Institute, organizations on average have six endpoint agents and management consoles to manage endpoint security. With so many ways to protect your business from attackers, your endpoints never get compromised and the attackers have finally been defeated, right? The war is over and you have won! Wait…
Since you are reading this, it must mean that the battle to keep attackers at bay rages on. The fundamental reason attackers still win is because we expect them to win.
Years ago, businesses began to adopt a “detect and respond” strategy to security. This was in large part due to the inability of current endpoint prevention solutions to prevent attacks. In the worst situations, you had endpoint prevention products – antivirus (AV) primarily – failing to block 50% of attacks. If you think about it, that puts organizations automatically into the realm of “inevitable victim,” which isn’t exactly a nice way to think about your business.
With no hope for prevention, businesses began building complex endpoint security stacks, adding layers upon layers, to try to cover all the gaps left by their failing AV products. Out of this approach came a new category of product, Endpoint Detection and Response (EDR).
VIDEO: See CylanceOPTICS in action against WannaCry ransomware:
VIDEO: OPTICS Takes on the New WannaCry/WanaCryptOr Ransomware
What is Endpoint Detection and Response?
EDR aimed to be the eyes and ears for your security team, a virtual hall monitor collecting data from all of your endpoints so you can search for threats, either using (Read more...)
This is a Security Bloggers Network syndicated blog post authored by Steve Salinas. Read the original post at: Cylance Blog