Vectra AI introduces its new MDXR hybrid attack protection service. Through integrations with products from EDR vendors, the new service breaks down silos to provide visibility into the entire hybrid attack surface - from identities to public cloud, SaaS, data center and cloud networks to endpoints. The use of traditional and many different threat detection solutions often leads to tool silos and an unmanageable number of rules, which confronts SOC managers with a flood of alerts. As recent research shows, SOC teams spend nearly four hours a day manually sifting through and prioritizing alerts.

With Vectra MXDR, organizations can consolidate all aspects of threat detection and response into one service instead of having to source solutions from multiple vendors. Thanks to integrations with industry-leading EDR platforms such as Crowdstrike, SentinelOne and Microsoft Defender, Vectra AI's MXDR analysts can monitor the health of an entire security system and take immediate action, no matter where the attack signal is coming from.

Relief for the security teams

"Following the launch of our Vectra AI platform last year, we saw that our customers who outsource these services needed a comprehensive platform and the ability to collaborate with MXDR experts who specialize in investigating malicious activity," said Hitesh Sheth, President and CEO of Vectra AI. "With the launch of Vectra MXDR, we are now providing our customers with the most experienced experts in hybrid attack defense and the most accurate AI-powered attack signal on the market. This will help them manage the increasing workload and overcome burnout."

The features of the service

Vectra MXDR provides SOC leaders, security analysts and architects with complete coverage, visibility and control over the entire hybrid attack surface.

• AI-driven Attack Signal Intelligence: Powered by Vectra AI's patented Attack Signal Intelligence, Vectra AI's MXDR analysts use artificial intelligence and machine learning to understand customers' specific environments and differentiate between malicious and benign events based on attacker behavior characteristics.
• 24x7x365 available deployment
• Vectra MXDR covers all aspects of detection and response with a single service. This eliminates the need to work with multiple service providers and multiple consoles.
• Remote response and remediation: Organizations can isolate, contain and mitigate hybrid attacks with manual or automated responses to minimize damage and maintain business continuity.
• Adaptation to customer needs: Thanks to a flexible operating model, Vectra MXDR can be tailored to the specific business requirements of organizations. This ensures an optimally customized security strategy.
• Managed security policy configuration: Vectra's industry experts build the policy configuration of organizations' security system, whether on the Vectra AI platform or in the EDR, proactively protecting against threats.

An approach with AI and ML support

"The fact is, organizations need a combination of endpoint protection and network security tools to protect against hybrid attacks," said Gary Ruiz, VP, WW Professional Services, Vectra AI. "Our XDR approach is unique because not only do we integrate these technologies into a single solution, but we also use our AI-powered attack signaling to gain insights across the entire hybrid attack surface to detect the real attacks. Vectra MXDR also has a service component: This brings the human element into the process to help customers implement and manage our integrated approach. Around the clock, our experts monitor the threat landscape and help customers manage incidents by responding and remediating on their behalf. This takes a lot of pressure off the SOC teams and allows us to work much more effectively for our customers."