Vectra AI, Inc., the leader in AI-driven XDR (extended detection and response), is unveiling a recent expansion to its Vectra AI Platform, the integrated signal solution for XDR. This update focuses on affording security operations center (SOC) teams with the necessary tools to proactively address threats and deter behaviors within increasingly dynamic hybrid environments.
Key to this platform expansion is the idea of confronting AI-based threats with the only tool capable of accommodating its complexity—AI. As attacks grow more and more sophisticated in nature, Vectra AI recognizes the need for SOC teams to be able to uncover and defend against these threats within their equally complex hybrid environments, according to the company.
“To address today’s threat landscape effectively, SOC teams must stay informed about potential vulnerabilities within their organization's hybrid environment, including where attackers might infiltrate, progress, and move laterally. Without vigilant monitoring of this ongoing dynamic threat framework, attackers can exploit gaps that go undetected in minutes,” explained Jeff Reed, chief product officer at Vectra AI.
Culminating as enhancements to Attack Signal Intelligence, Vectra AI’s platform now equips SOC teams with a holistic view of their network, identity, cloud, and GenAI active posture, further offering analytics that help them discover, detect, and disrupt hybrid attackers. Active posture—which rivals traditional, static posture management tools—acts as a real-time view of the ways the attack surface is actively changing, from every operation to every interaction, according to the company.
“With the enhancement of the Vectra AI Platform, this enables SOC teams to not only identify current compromises in their network, identity, or cloud but also detect and deter behaviors that could cause future threats,” said Reed. “With a clear understanding of how and where attackers have compromised an organization and how and where they move across the hybrid environment, customers know how and where to proactively improve their posture.”
By monitoring over 20 different AI-enhanced data streams and hundreds of different attributes, Attack Signal Intelligence finds crucial gaps in security posture, including:
- Identity hygiene issues, including account logins without two-factor authentication, use of legacy sign-in protocols, weak location-based access controls, and overly permissive access to tools like the backend Microsoft Graph API or PowerShell
- Network posture with visibility into network risks, such as external RDP access, IPMI usage, weak or non-encrypted data transfers, and SMB1 usage
- Clarity on Copilot for M365 usage, offering transparency on how enterprise teams adopt and use the technology, enhancing data access controls and permissions governance
“[Attack Signal Intelligence’s] proactive defense enables SOC teams to monitor active changes across the hybrid environment—[delivering] insights that static tools cannot,” noted Reed. “With the ability to discover security gaps based on user and machine behavior, and by leveraging over twenty AI-enhanced data streams and hundreds of different attributes, teams can efficiently reveal and mitigate potential threats before they escalate, keeping your organization protected against ever-evolving threats.”
To learn more about Vectra AI’s latest platform update, please visit https://www.vectra.ai/.