XDR (Extended Detection and Response)
Extended Detection and Response (XDR) is a holistic approach to cybersecurity that streamlines security data ingestion, by correlating data across multiple security layers – email, endpoint, server, cloud and networks.
XDR provides greater context for detected threats, by offering a much larger range of visibility than previous technologies. This allows for faster detection of threats and improved investigation and response times by security teams.
XDR is next-level EDR (Endpoint Detection and Response) - EDR is restricted because it can only detect and respond to threats inside managed endpoints. XDR collects deep activity data, feeding the information into a large data lake for analysis, threat hunting, and security investigation across multiple layers.