PRESS RELEASE
Black Hat USA 2024 – LAS VEGAS, August 6, 2024 – Vectra AI, Inc., the leading provider of AI-powered XDR (Extended Detection and Response), today announced the expansion of its Vectra AI Platformwhich now equips Security Operations Center (SOC) teams with an active posture to proactively discover and locate where their hybrid environment is exposed to attackers. With this expansion, the patented Attack Signal Intelligence™ now provides a holistic view with analytics to detect, deter, identify and stop hybrid attackers.
To keep pace with attackers, SOC teams must know where the organization is exposed to hybrid attacker infiltration, spread, and lateral movement across the hybrid environment. Failure to keep track of a dynamic, ever-changing hybrid attack surface allows attackers to continue their campaigns unseen and unhindered.
“At Vectra AI, we are constantly innovating to keep pace with the evolving attack landscape and stay ahead of the attackers,” said Hitesh Sheth, Founder and CEO of Vectra AI. “As a leader in AI-driven XDR, we believe that SOC teams must have visibility into their active posture to understand their vulnerability to attackers. From there, they must be equipped with the right intelligence to actively hunt for and identify active attacks across their networks, identities, clouds, and GenAI tools. The Vectra AI platform is built on a methodology that integrates security research, data science/machine learning engineering, and user experience, and is focused on one mission: to leverage AI to deliver accurate attack signals quickly and at scale.”
With Vectra AI Attack Signal Intelligence’s proactive defense, SOC teams get a comprehensive view of their network, identity, cloud, and GenAI active posture. Active posture across the entire hybrid environment gives SOC teams a real-time view of changes in the attack surface they are tasked with defending. Other tools that rely on static information cannot. Equipped with Attack Signal Intelligence’s active posture component, SOC teams proactively discover security vulnerabilities related to what users and machines are actually doing. This is accomplished by monitoring more than 20 different AI-powered data streams and hundreds of different attributes that enable teams to stop a future threat. It finds gaps that other tools miss, such as:
● Identity hygiene issues such as account logins without two-factor authentication, use of outdated login protocols, weak location-based access controls, and overly permissive access to tools such as the Microsoft Graph backend API or PowerShell. In a week, 99% of organizations have more than one user accessing Azure AD via Powershell or a scripting engine, which can be hijacked and abused by attackers.
● Network status with visibility into network risks such as external RDP access, IPMI usage, weak or unencrypted data transfers, and SMB1 usage. More than a third of organizations still have SMBv1 enabled, leaving them vulnerable to ransomware and other attacker vulnerabilities.
● Clarity on Copilot for M365 usage across the organization allows teams to understand adoption and usage, enabling improved governance of data access controls and permissions, including potential misuse by attackers. Vectra AI finds that over 40% of organizations have begun adopting Copilot for M365 in their environment.
“Vectra AI’s XDR platform with Attack Signal Intelligence gives the SOC a complete view of their hybrid environment – not only to determine if their network, identity or cloud has already been compromised, but also if something is operating in a way that could lead to a future compromise,” said Jeff Reed, Chief Product Officer of Vectra AI. “Customers already using the Vectra AI platform can now effectively discover, deter, detect and disrupt hybrid attackers, proactively addressing the entire lifecycle of a potential breach, and using these capabilities for free.”
This latest extension of the Vectra AI platform follows Vectra AI’s June 2024 Announcement: Introducing features to detect attacker misuse of GenAI tools such as Microsoft Copilot for M365.
Learn more about how Vectra AI is setting the new standard for advanced detection and response (XDR) by visiting our Blog and continue to follow LinkedIn And X.
About Vectra AI, Inc.
Vectra AI, Inc. is a leader in AI-driven advanced detection and response (XDR). The Vectra AI platform delivers integrated signals across public cloud, SaaS, identity, and data center networks on a single platform. Vectra AI’s patented Attack Signal Intelligence enables security teams to quickly detect, prioritize, investigate, and stop the most advanced hybrid cyberattacks. With 35 patents in AI-driven detection and the most vendor references in MITRE D3FEND, organizations worldwide rely on the Vectra AI platform and MDR services to keep pace with the speed and scale of hybrid attackers. For more information, visit www.vectra.ai.
