XDR a necessity, despite confusion

ExtraHop has released findings from a new report that examines extended detection and response (XDR) adoption in enterprises.

The global study highlights the successes, barriers, challenges, and hesitations organizations are experiencing when deploying or considering an XDR strategy. Despite uncertainty, the research suggests nearly a third of participants believe an XDR strategy goes beyond endpoint detection, with over half believing they don’t have the resources for proper implementation.

According to the report, 78% of respondents believe wider adoption of XDR strategies and solutions is critical to mitigating risk and improving resiliency. Further demonstrating this, the majority (72%) have already deployed an XDR strategy at their organization and another 20% are planning to implement one in the next 12 months.

However, as XDR’s popularity has skyrocketed, confusion about what it is, who benefits from it, and how organizations can successfully implement it is growing.

Key findings from the report include:

Across the board, research indicates general confusion on XDR’s value proposition.

This latest research indicates general confusion about what XDR is and why organizations need it. When asked to define XDR, only 47% of IT leaders could identify the true definition: a strategy for deepening threat visibility and accelerating threat detection and response by correlating endpoint data with higher fidelity network telemetry and other data sources.

IT leaders agree that XDR goes beyond the endpoint.

When discussing the different building blocks in their XDR tech stacks, there were a wide variety of answers. However, nearly a third of IT decision makers with XDR saw network detection and response (NDR) (32%) and security information and event management (SIEM) (31%) as top components to their strategy.

XDR is incorrectly perceived as a resource-heavy solution.

According to the research, 24% of respondents believe that using XDR would require an organization to overhaul or replace components of its current network security strategy and solutions. Another 56% believe they don’t have enough staff or in-house expertise to oversee implementation.

“As the buzz around XDR skyrocketed in 2022, single-vendor solutions muddied the waters when it came to explaining what it is and how it works,” said Jeff Costlow, CISO at ExtraHop. “XDR is not a single solution – it’s a strategy that allows security teams to choose the best products for their organization without the fear of vendor lock-in. The key to XDR success lies in strong, purpose-built integrations that take the tools in your tech stack today to offer complete end-to-end visibility that will help stop sophisticated attacks in their tracks.”

The industry’s 'most comprehensive' as-a-Service and multicloud portfolio helps companies better manage their data and applications wherever they live.
Hornetsecurity’s 365 Permission Manager delivers effortless permissions management for Microsoft 365.
ThreatQ Platform and ThreatQ Investigations allow Thales to pioneer market-leading personalised threat intelligence services.
Turkey’s leading integrated telecommunication operator, Türk Telekom, has deployed A10 Thunder TPS® from A10 Networks to deliver DDoS protection services for its business customers. The service is protecting critical infrastructure from DDoS attacks, enhancing service access reliability for subscribers using on-premises DDoS protection solution from A10 Networks.
Modern cloud solutions are supporting delivery of these use cases, while also helping financial organisations improve regulatory compliance, reduce costs, drive business outcomes, and cut down on technical debt.
Barracuda Networks research finds 24% of organisations studied had at least one email account compromised through account takeover.
ForgeRock has launched a new partner programme that now provides a comprehensive set of benefits that will drive growth and help ForgeRock partners deliver remarkable customer experiences. To lead the new programme, ForgeRock has hired Chris Westfall as Vice President of Global Partner Strategy, Programmes and Operations, who brings expertise from over 20 years of partner ecosystem leadership across the software industry.
Palo Alto Networks has published a study revealing that 50% of UK CEOs at large organisations (500+ employees) agree that cybersecurity is a bigger risk to their organisation than economic uncertainty. Furthermore, 51% of CEOs agreed that as cyber risks increase rapidly their ability to insure their organisation against a successful attack keeps them awake at night.