AhnLab launched ‘AhnLab EDR 2.0’, which further upgraded the usability and threat visibility of ‘AhnLab EDR’, a next-generation endpoint threat detection and response solution. With this upgrade, services and functions that actively reflect customer requirements have been added.
‘AhnLab EDR 2.0’ ▲Provides an ‘MDR service’ that helps AhnLab security experts operate and utilize EDR ▲Advanced detection function by installing an ‘EDR-specific engine’ that has advanced its own behavior-based analysis engine ▲AhnLab EDR, a dedicated console ‘Analyzer (AhnLab EDR Analyzer)’ provides customized information and detailed analysis ▲ Linkage and linkage with AhnLab’s security solutions such as V3, MDS, AhnLab TIP, and ‘user-defined rules’ and ‘automatic response’ that enable optimized response to customer environment This strengthened threat event visibility and solution utilization.
In particular, AhnLab reflects the opinions of many customers who are having difficulty operating EDR due to a lack of professional manpower within the organization, and provides ‘MDR (Managed Detection & Response) service’ as standard to help operate and utilize EDR. Customers who use ‘AhnLab EDR 2.0’ can use services such as real-time monitoring by AhnLab security experts, analysis and response to high-value threats, analysis reports, and monthly statistical reports.
Customers who want more professional services can use ‘EDR Premium’, which includes premium MDR services. By using this service, you can receive in-depth services such as broader log analysis and creation of customized detection rules that reflect the organizational environment and security issues.
In addition, ‘AhnLab EDR 2.0’ introduces an EDR-specific engine that is an advanced version of its own behavior-based engine and provides multifaceted analysis results focusing on suspicious behavior on various information generated from endpoints. Security managers can systematically detect and analyze based on detailed information for each system, file, and process provided by ‘AhnLab EDR 2.0’. AhnLab EDR 2.0’s sophisticated detection rules and scope setting function for collection logs have also reduced excessive alerts.
By using the dedicated console ‘AhnLab EDR Analyzer’, you can quickly and easily identify various information and attack flows, such as threat inflow paths, main actions, and relationships. Based on the MITER ATT&CK framework, it helps security managers intuitively understand threat information.
‘AhnLab EDR 2.0’ also supports linkage and integration with AhnLab’s various endpoint solutions. Customers using V3 can use V3’s malware diagnosis information for detection and analysis, and by linking with the intelligent threat response solution ‘AhnLab MDS’, sandbox-based dynamic analysis can be used. When linking to the next-generation threat intelligence platform ‘AhnLab TIP’, the latest malicious IoC (indicator of compromise) information and security advisories can be used for detection and analysis on the dedicated console. In addition, it also provides various user-defined rules such as behavior-based rules and automatic response setting functions.
Lee Sang-guk, managing director of AhnLab’s marketing headquarters, said, “AhnLab has identified customers’ practical concerns and difficulties, such as how to use EDR and lack of professional operating personnel, and launched this upgraded version based on this.” “We will support you to further strengthen your organization’s security by making full use of EDR’s inherent functions of threat monitoring, threat information collection, and response.”
Source: Pangyo Techno Valley Official Newsroom
→ Go to ‘Asian Innovation Hub Pangyo Techno Valley 2022’ news