As adversaries changed their view of an attack to include vectors across an organization, defenders have had to evolve their approach as well. This is best captured by Mark Harris from Gartner who observed that adversaries have shifted their focus of attacks from infecting files to infecting systems and now to infecting the entire enterprise. Previously, I talked about how this has impacted our approach to threat detection. It is no longer just about finding the one control point or system where the attack is being triggered. Multiple points across the enterprise are involved so you need to be able to connect the dots for a comprehensive understanding of the threat you are facing and know what you must defend. This is why Extended Detection and Response (XDR) is generating great interest right now.
How Threat Response is Evolving
by Marc Solomon | Sep 16, 2021 | Media Coverage