Extended Detection and Response (XDR) is a cybersecurity response strategy that focuses on three core principles:
- Early detection of indicators of attacks.
- Fast containment of compromised systems.
- Rapid eradication of malware from infected systems.
The earlier an attack is detected, the easier it is to contain and eradicate it. The longer it goes undetected, the more time there will be for an attacker to:
- Steal information.
- Perform lateral movement within a network environment to infect other devices.
- Establish command-and-control infrastructure outside of an organization’s perimeter defenses.
- Worse yet – pivot onto other networks connected to a company’s network.
Also see: Top Zero Trust Networking Solutions
What is XDR?
Extended detection and response, or XDR, is a collection of cybersecurity tools that detect, prevent, investigate, respond to, contain, and help recover from cyber incidents. The term was coined by the Palo Alto Networks co-founder and CTO Nir Zuk in 2018 at a company event and has since become an industry buzzword.
XDR provides end-to-end visibility into potential threats to networks, clouds, and applications with continuous monitoring on all…
