Once installed, the software runs seamlessly in the background while you do your regular work. It uses real-time information and machine learning to detect, contain, and respond to threats quickly to mitigate further damage.
Specifically, EDR uses several techniques, including:
- Signature-based engine to find and block known malware (akin to traditional anti-virus and anti-malware software).
- MalwareGuard machine learning using seeded threat intelligence.
- Behavior-based analytics engine to stop advanced threats.
- Real-time discovery of Indicators of Compromise (IOC) using frontline threat intelligence.
See our detailed EDR Service article (CalNet Authentication required) for more information.