Published April 2019
Sponsored by Nyotron, Rapid7, SonicWall and Trend Micro
Executive Summary
Security professionals, business decision-makers, boards of directors, regulators and others are increasingly concerned about cybersecurity issues and the potential for major business disruptions like data breaches, various types of security incursions, and other problems.
And they’re right to be concerned: estimates of the costs of cybercrime vary from a low of roughly $600 billion to several trillion dollars annually. Ransomware can shut down an organization’s operations for an extended period and cost millions of dollars to remediate – and these threats are becoming more sophisticated and more evasive. Nearly eight in 10 successful attacks in 2017 involved fileless malware, which can evade prevention defenses like antivirus.
Moreover, despite the enormous sums spent on security solutions each year, the problems are not getting better or are actually getting worse for many organizations.
Conventional security solutions are useful and provide some level of protection. The variety of antivirus solutions, firewalls, secure web gateways, security incident and event management (SIEM) solutions, anti-ransomware solutions, cloud security tools and other systems provide protection against many threats. However, Osterman Research surveys, as well as those of many other analyst firms, find that the current level of protection is simply not adequate in many cases due to improving evasion tactics, end users who work outside of perimeter defenses (e.g., from airports, coffee shops or at home), infected USBs, fileless attacks, etc.
To address these deficiencies, a rapidly growing number of organizations are deploying endpoint detection and response (EDR) solutions as a supplement to their existing security defenses.
