The 10 Hottest XDR Security Companies To Watch In 2022
From blocking endpoint attacks used by sophisticated nation-state and criminal adversaries to integrating with non-endpoint data sources, here are 10 vendors vying for XDR security dominance.
Microsoft 365 Defender is an XDR platform that automatically collects, correlates, and analyzes signal, threat, and alert data from across an organization’s Microsoft environment, including endpoint, email, applications, and identities. The platform leverages extensive artificial intelligence and automation to automatically stop attacks and remediate affected assets to a safe state.
The platform is a cloud-based, unified, pre- and post-breach enterprise defense suite that coordinates prevention, detection, investigation, and response via endpoints, identities, apps, email, collaborative applications, and all of their data. Defender for Office 365 tests email attachments and makes it so that emails with harmful attachments aren’t actionable by the user or prevents the mail from arriving at all.
Defender for Endpoint detects device and network vulnerabilities that might otherwise be exploited, while Defender for Identity takes note of sudden account changes like privilege escalation or high-risk lateral movement. And Microsoft Defender for Cloud Apps notices anomalous behavior like impossible-travel, credential access, and unusual download, file share, or mail forwarding activity.