New capabilities build on existing detection, investigation and response integrations between ExtraHop Reveal(x) and CrowdStrike Falcon platforms, adding highly targeted, intelligence-enabled responses to the CrowdXDR Alliance
SEATTLE–(BUSINESS WIRE)–ExtraHop, the leader in cloud-native network intelligence, today announced an integration with CrowdStrike, the leader in endpoint, cloud workload, identity and data cloud-delivered protection From detected threat containment to investigation, security analysts are just a click away.The new Push Button Response integration expands the best-in-class Extended Detection and Response (XDR) partnership between the two companies, enabling users to isolate individual assets from detection directly in Reveal(x) and then seamlessly transfer Into the investigation workflow. With this capability, defenders can act quickly and accurately, speeding up response times and minimizing business impact.
The new native push-button response feature in ExtraHop Reveal(x) gives defenders the tools they need to dramatically accelerate containment while minimizing disruption to the organization.Unlike automated response products, push-button response enables security analysts to control how and when assets are quarantined based on high-fidelity detection and rich intelligence extending from the network to the endpoint.
“Over the past five years, the security pendulum has begun to shift more meaningfully to a detection and response model that assumes that even the best perimeter defenses will eventually be broken,” said Jesse Rothstein, ExtraHop co-founder and CTO. But many organizations are still reluctant to invest more in this approach due to the complexity of playbook-driven responses. With our new native button responses, we will continue to build on our partnership with CrowdStrike and our existing response integration capabilities, Enables defenders to quickly and accurately isolate infected devices without causing massive disruption to the organization.”
“This new capability enables faster remediation and faster response times, allowing teams to focus on critical assets and resources,” said Chris Kissel, research director for security and trust at IDC. “Focusing on streamlining the burden of overburdened SOC analysts work, adding real value to defenders.”
The button response integration builds on ExtraHop’s existing partnership with CrowdStrike, which provides integrations across the CrowdStrike Falcon platform, including Falcon X, Threat Graph, Falcon Insight (with live response integration), Humio, and Falcon XDR to provide The best – to nurture XDR for their mutual clients around the world.
“As new advanced and evolving threats challenge organizations every day, security teams must act with impeccable speed and accuracy to protect businesses from Disruption.” “Our close collaboration and broad integration with ExtraHop helps unify security telemetry across networks and endpoints, providing customers with enhanced detection and response capabilities to stop advanced threats faster. This new feature provided by the ExtraHop platform Capabilities help deepen our integration, enabling security teams to act quickly and accurately to more effectively detect, investigate and respond to threats in IT environments.”
ExtraHop is also a launch partner of the CrowdXDR Alliance, joining forces to establish a common XDR language for data sharing between security tools and processes to enrich detection and threat hunting capabilities.A recent joint webinar explained how to make XDR a reality.
Cyber attackers have an advantage.ExtraHop’s mission is to help you get it back with security that won’t be broken, outsmarted, or compromised.Reveal(x) 360, our dynamic cyber defense platform, helps organizations detect and respond to advanced threats before they compromise your business.We apply cloud-scale AI to petabytes of traffic per day, performing wire-speed decryption and behavioral analysis across all infrastructure, workloads, and data in transit.With ExtraHop’s comprehensive visibility, businesses can confidently detect malicious behavior, hunt down advanced threats, and conduct forensic investigations into any incident.ExtraHop has been recognized as a market leader in network detection and response by IDC, Gartner, Forbes, SC Media and many others.Visit www.extrahop.com for more information.