Sophos Intercept X
With a focus on helping security and IT teams to rapidly respond to endpoint threats, Sophos recently debuted a major upgrade to its Intercept X offering—including an update of the company’s Endpoint Detection and Response solution within several new versions of Intercept X. The updated EDR offering includes new capabilities such as Live Discover (for pinpointing activity and answering threat hunting questions) and Live Response (which enables remote response to endpoints via a command line interface). Separately, Sophos recently launched protection capabilities for Chrome OS users against unsuitable and malicious web content, with its rebranded Intercept X for Mobile offering.
Cybereason Defense Platform
Bringing together prevention, detection and response within a single lightweight agent, the Cybereason Defense Platform provides both signature and signature-less defense against malware. The platform thus prevents threats that are both known and unknown, while also using techniques such as deception to quash ransomware.
Malwarebytes Endpoint Detection And Response
Key capabilities of Malwarebytes’ Endpoint Detection and Response offering include guided UI (providing guided workflows and intuitive controls to enable efficient administration); threat activity replay (charting the spread of infection and analyzing outcomes for response and remediation outcomes); and a centralized partner dashboard (offering multitenant management and guided on-boarding).
McAfee MVision EDR
For its MVision EDR solution, McAfee recently launched new features including Automated AI-Guided Investigations, which offer improved guidance of customer investigations using internally generated machine learning and threat intelligence, and Advanced Analytics, which identify and prioritize suspicious behavior from contextually rich endpoint data.
Tanium as a Service
A “zero-infrastructure” endpoint security platform, Tanium as a Service leverages the company’s unique architecture for optimized remote management and securing of devices. The cloud-hosted and cloud-delivered offering brings intelligence to edge endpoints while combining capabilities around management, detection and response.
VMware Carbon Black Cloud
Aimed at providing consolidated and cloud-native endpoint protection, the VMware Carbon Black Cloud combines multiple powerful endpoint security features into a single, lightweight agent that is complemented by a console that is easy to operate.