Threat detection and response vendor Vectra AI has announced the release of the Vectra AI Platform \u2013 a new extended detection and response (XDR) offering that uses attack signal intelligence. The platform enables organizations to integrate Vectra AI\u2019s public cloud, identity, SaaS, and network signal data with existing endpoint detection and response (EDR) to help SOC teams keep pace with attacks, the firm said.\n\nIt uses native and third-party attack signals across hybrid cloud domains including AWS, Microsoft Azure, Google Cloud Platform, Microsoft 365, networks of all types, and endpoints leveraging the customer\u2019s EDR tool of choice, according to Vectra AI. It also harnesses AI to analyze attacker behavior and automatically triage, correlate, and prioritize security incidents, the firm added.\n\nXDR a growing cybersecurity market trend\n\nXDR is very much a burgeoning trend in the current cybersecurity market, driven by organizations\u2019 need for more advanced methods for detecting and responding to evolving attack threats. Threat detection and response has become more complex and challenging as enterprises shift more applications, workloads, and data to hybrid and multi-cloud environments, increasing the attack surface significantly.\n\n\u201cRegardless of how XDR is defined, security professionals are interested in using XDR to help them address several threat detection and response challenges,\u201d said Jon Oltsik, distinguished analyst and Enterprise Strategy Group (ESG) fellow. \u201cXDR seems like an attractive option since current tools struggle to detect and investigate advanced threats, require specialized skills, and aren\u2019t effective at correlating alerts.\u201d\n\nSolution uses AI to map attacks, prioritize accounts and entities\n\nThe integrated signal the Vectra AI Platform uses enables security teams to cover more than 90% of MITRE ATT&CK techniques with patented and proven MITRE D3FEND countermeasures, map attacker progression\/lateral movement across data center and cloud environments, and build\/mature threat hunting programs\/conduct deep forensic investigations, Vectra AI said in a press release.\n\nFurthermore, the platform\u2019s attack signal intelligence harnesses patented AI to:\n\nRespond UX Analyst Experience accelerates attack investigation\n\nVectra\u2019s new product also features attack investigation capabilities to help security teams accelerate investigation and response workflows. These are appropriate for use by both experienced and junior analysts, according to the firm. The capabilities include:\n\nThe platform also offers flexible response actions (native and orchestrated) that leverage over 40 ecosystem integrations, according to Vectra AI. This allows teams to manually or automatically lock down an account or isolate an endpoint, trigger security orchestration and automation (SOAR) playbooks and workflows, and streamline ticketing, communication, and escalation for incident response processes.\n\nThere are managed detection and response (MDR) elements, too, the firm said. Analyst reinforcements provide shared roles and responsibilities for monitoring, detection, investigation, hunting, and response, shared analytics on attacker behavior and emerging attacker tradecraft, tactics, techniques, and procedures, and shared transparency around SLAs, metrics, and reporting.\n\n\u201cIn summary, CISOs want XDR tools that can improve security efficacy, especially regarding advanced threat detection. Additionally, they want XDR to streamline security operations and bolster staff productivity,\u201d said Oltsik.