Vectra AI expands platform to boost SOC teams against hybrid attacks

Vectra AI has announced the latest expansion of its extended detection and response (XDR) platform, aimed at providing security operations centre (SOC) teams with an active posture to identify vulnerabilities in their hybrid environments.

The new capabilities are designed to detect and manage cyber threats, particularly in light of the accelerating adoption of generative artificial intelligence (Gen AI) tools.

The company’s expanded platform, now equipped with its patented Attack Signal Intelligence, seeks to offer a comprehensive view of ongoing and potential cyber-attacks across networks, identities, clouds, and Gen AI tools. This holistic approach enables SOC teams to discover, deter, detect, and disrupt hybrid attackers more effectively.

According to Sharat Nautiyal, Director of Security Engineering for Vectra AI in Asia Pacific and Japan, "AI in cybersecurity is the future and businesses that don’t look at AI as a critically important component of their defence against automated attacks will be vulnerable. Particularly, as adoption rates of Gen AI productivity tools like Copilot for M365 continue to accelerate."

A recent report by PWC indicates that 60% of Asia Pacific businesses believe that Gen AI could lead to significant cyber attacks within the next year. This prediction underscores the urgency for companies to adopt advanced security measures. Vectra AI aims to counter these threats by using AI to combat AI-driven attacks.

Hitesh Sheth, the founder and CEO of Vectra AI, emphasised the need for innovation to keep up with the evolving cyber landscape. “At Vectra AI we are constantly innovating to keep up with the evolving attack landscape and stay one step ahead of attackers. As the leader in AI-driven XDR, we believe that SOC teams must have a view of their active posture to understand their exposure to attackers,” said Sheth.

With the expanded Attack Signal Intelligence, SOC teams are provided with a real-time view of how their attack surface is evolving. This includes monitoring more than 20 different AI-enhanced data streams and hundreds of attributes to discover security gaps that other tools might miss. For instance, issues such as account logins without two-factor authentication and weak location-based access controls can potentially be identified and addressed.

Jeff Reed, Chief Product Officer of Vectra AI, highlighted the importance of understanding operational exposures that may lead to future compromises. “Vectra AI’s XDR platform with Attack Signal Intelligence equips the SOC with a complete view of their hybrid environment - not just to determine if their network, identity, or cloud has already been compromised - but if something is operating in a way that may lead to a future compromise," said Reed.

The platform also identifies identity hygiene issues, such as users accessing Azure AD through scripting engines, posing potential security risks. Additionally, network posture visibility allows SOC teams to detect risks such as external RDP access and non-encrypted data transfers, which are often exploited by ransomware attacks.

This expansion follows Vectra AI’s earlier announcement in May, which introduced capabilities to detect misuse of Gen AI tools like Microsoft Copilot for M365. The company continues to innovate its XDR platform to provide SOC teams with the tools needed to stay ahead of an ever-changing cyber threat landscape.

Sharat Nautiyal further added, "Advanced AI delivered in an integrated attack signal could stop today’s most challenging hybrid cyberattacks. It also helps take the ambiguity out of security analysts’ day and enable them to focus on what matters."