SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Story image
Forrester Research names Extrahop a notable NDR vendor
Fri, 3rd Mar 2023

ExtraHop, the provider of cloud-native network detection and response, has announced that it was named a notable vendor by Forrester Research in the Network Analysis and Visibility Landscape, Q1 2023.

Traditionally, organizations implicitly trusted the networks used to connect to company resources. But malicious actors could abuse that trust and move laterally within organizations undetected. This lateral movement is often a prelude to the exfiltration of high-value data and the execution of destructive attacks like ransomware. Therefore, zero trust (ZT) architecture assumes that networks are inherently untrusted and require visibility into and analysis of internal network traffic.

As more organizations adopt a ZT approach to cybersecurity, network detection and response can accelerate the process by enhancing visibility into all aspects of the network, including hybrid networks, cloud transactions, and device types. 

“Network analysis and visibility (NAV) solutions, sometimes called network detection and response or NDR solutions, are essential for creating a robust and effective zero trust architecture,” says Forrester in its report.

The report further identifies five core use cases for the network analysis and visibility market: hybrid cloud/multi-cloud threat detection; packet capture with retrospective analysis; MITRE ATT&CK framework mapping; EDR, XDR, and intrusion detection and prevention (IDP) telemetry data ingestion and correlation; and application dependency mapping.

Here, ExtraHop comes into the picture. Its ExtraHop Reveal(x) 360 platform can automate the discovery of every asset on the network and profile each managed, unmanaged, or rogue device to detect malicious activity before it’s too late.

ExtraHop has a long history of identifying network-detectable cyber attack behaviours. 

With its industry-leading expertise, ExtraHop was the first and only NDR provider to be listed as a contributor to the MITRE ATT&CK framework and the first to natively integrate ATT&CK into its product's interface to help organizations identify gaps in their threat detection capabilities. In addition, its retrospective threat intelligence, which applies new threat intelligence to suspicious network activity that happened in the past, also helps users identify broader attack campaigns.

“Network visibility has become an integral part of an organization’s cybersecurity strategy as attackers’ tactics, techniques, and procedures rapidly evolve,” says Jesse Rothstein, co-founder and CTO, ExtraHop. 

“We believe Forrester’s recognition of ExtraHop in the Network Analysis and Visibility Landscape further proves that the network is the go-to data source for detection and response, and reasserts our position as a trusted NDR partner.”

“ExtraHop is on a mission to help you take it back with security that can't be undermined, outsmarted, or compromised. Our dynamic cyber defence platform, Reveal(x) 360, helps organizations detect and respond to advanced threats, before they compromise your business. We apply cloud-scale AI to petabytes of traffic per day, performing line-rate decryption and behavioural analysis across all infrastructure, workloads, and data-in-flight. With complete visibility from ExtraHop, enterprises can detect malicious behaviour, hunt advanced threats, and forensically investigate any incident with confidence,” concludes Rothstein.