September 22, 2020 - Security startup Kognos, the latest vendor to tout extended detection and response (XDR), came out of the gate running today with its artificial intelligence (AI)-based XDR platform and interoperability with VMware Carbon Black.
Kognos XDR Platform
Kognos today launched the Autonomous XDR Investigator, which uses AI to automatically detect, investigate, and respond to attacks. The platform fuses events from companies’ existing EDR, NDR, SIEM, and other telemetry sources and puts them into relationship graphs that tell a unified story about an attack, Nair said.
“If you look at logs, and network metadata, and endpoint metadata, everything you are collecting, most organizations are collecting hundreds of terabytes or even petabytes of data,” he said. “And putting the onus of getting leads from some of these alerts and having to manually investigate and figure out what is happening is what is causing some of these breaches to continue to happen.”