Cisco is enhancing its Extended Detection and Response (XDR) solution by adding recovery to the response process. The announcement brings near real-time recovery for business operations after a ransomware attack.
By reducing the crucial time between the beginnings of a ransomware outbreak and capturing a snapshot of business-critical information to near-zero, Cisco XDR will ‘enable new levels of business continuity’.
"The exponential growth of ransomware and cyber extortion has made a platform approach crucial to effectively counter adversaries. Our objective is to build a resilient and open cyber security platform that can withstand ransomware assaults and recover with minimal impact, ensuring uninterrupted business operations," said Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration at Cisco. "As a global infrastructure provider that built the network, Cisco is redefining what a security product should deliver. Our innovations with automated ransomware recovery are a significant step towards achieving truly unified detection and response data, turning security insights into action."
With the new capabilities in Cisco XDR, security operations center (SOC) teams will be able to automatically detect, snapshot, and restore the business-critical data at the very first signs of a ransomware attack, often before it moves laterally through the network to reach high-value assets.