ENDPOINT DETECTION AND RESPONSE
Cloud services and hybrid working has brought many benefits to businesses of all sizes in recent years, but one of the downsides is that it has expanded the number of surfaces for cybercriminals to attack, with endpoints being one of the most at risk. This means managing this risk is imperative through endpoint detection and response (EDR) solutions. “As AI accelerates the pace and complexity of cyberthreats, attackers are increasingly targeting endpoints as they are often the most vulnerable entry points within a network,” says Steve Burden, solutions director of network, comms and cyber at Wavenet. “For SMBs and large enterprises alike, the volume of threats is growing, and attackers are using sophisticated, polymorphic malware that can adapt its code to bypass traditional antivirus solutions. This makes a proactive, behaviour-based defence model essential.” Rob Vann, cyber solutions officer at Cyberfort, adds that cybercriminals know that laptops, desktops and mobile devices are often the easiest route into a network. “We’re also seeing a sharp increase in the volume and sophistication of attacks, with AI helping threat actors automate reconnaissance, phishing and malware development at scale,” he says. “For many organisations, it’s no longer a question of if an endpoint will be targeted, but when. Strong endpoint security has become a business-critical requirement.” Dray Agha, senior manager of security operations at Huntress, says cybercriminals increasingly weaponise AI to launch multi-layered ransomware and sophisticated malware. “Every laptop, mobile, and connected device has become a frontline battleground,” he adds. Stuart Miller, director, Partner Channel at Canon UK & Ireland, adds that endpoint security is critical to ensure the safety and security of the data held by an organisation as well as the operational efficacy. “It’s hard to think
of an organisation operating today without some kind of EDR software in place whether it be a big box name or something provided with the operating system,” he says. “The solutions lend themselves to being able to not only prevent security incidents from occurring, provide telemetry during incidents but also provide valuable insights into the overall security posture of the IT estate.” Mainstream requirement Rob says EDR has rapidly moved from being a specialist security capability to a mainstream requirement. “Traditional antivirus solutions can no longer keep pace with modern threats, particularly fileless attacks, ransomware and attacks that exploit legitimate tools and processes,” he explains. “Organisations are increasingly recognising the need for continuous monitoring, behavioural analysis and rapid response capabilities. As a result, EDR adoption is accelerating across the enterprise and mid-market sectors. It provides security teams with greater visibility into endpoint activity and the ability to detect and contain threats before they become major incidents, making it a key component of modern cyber resilience strategies.” Steve says that EDR adoption is accelerating rapidly across sectors as businesses shift from static defences to dynamic detection and response. “EDR is becoming a minimum requirement when it comes to cybersecurity technology, with many cyber insurers listing it as a requirement of their customers,” he notes. “The growing awareness that traditional tools are no longer enough is pushing organisations to invest in more intelligent, automated protection. EDR is particularly valued for its ability to detect advanced persistent threats (APTs), monitor user behaviour and support real-time remediation – all of which are especially
“
We’re also seeing a sharp increase in the volume and sophistication of attacks, with AI helping threat actors automate reconnaissance, phishing and malware development at scale.
”
CONTINUED
www.newsinthechannel.co.uk
31
Powered by FlippingBook