Cyber security
Undoubtedly the most important element of informatics
GRINIT is a certified GOLD partner of leading data security solutions ACRONIS.
Our award-winning security technologies are based on the integration of machine learning and AI – artificial intelligence.
Security Centre
EDR default, XDR and MDR optional
Endpoint Detection and Response
EDR is offered by default and at no extra cost to all our clients as a complement to our convetional solutions and antivirus protection mechanisms.
EDR is the next generation solution to counter complex threats.
It includes the following features:
- Endpoint monitoring monitors endpoints, collects data about the protected system, analyses it for suspicious behaviour, detects potential threats and sends alerts to your security team.
- Anomaly detection (and AI) involves machine learning to facilitate threat intelligence through anomaly detection and artificial intelligence.
The systems analyse huge amounts of data, plot malicious patterns and trends, and pinpoint potential intrusion attempts and other vulnerability issues in the network. - Active endpoint protection can automatically react to a threat when detected – deleting malware, preventing instant attacks or isolating the entire system from a vulnerable endpoint to prevent the spread of malware.
- Threat investigation and threat hunting is key to incident response and to determining the root cause and extent of infection in a protected system.
EDR conducts log collection and data analysis to provide security teams with a comprehensive report. - Endpoint log management points usually generate log files, but the log data will not be useful if left unexplored.
EDR can perform automated log management to ensure that critical log data is available to the responsible data analysis system and the responsible teams.
Extended Detection and Response
Traditional EDR is often seen as a limited cybersecurity solution that focuses on a single aspect of a company’s network.
XDR, on the other hand, includes detection and response capabilities for endpoints, cloud services (single platform) and networks.
A comprehensive cybersecurity strategy benefits significantly from XDR, especially in complex, hybrid operating environments.
Businesses often require XDR as part of a complementary offering
Managed Detection and Response
EDR and XDR are applicable throughout an organisation’s network. However, both approaches generate huge amounts of data that require careful analysis. Even highly trained cybersecurity experts would have to invest a lot of time and effort to review all telemetry data. To avoid a cumbersome and laborious procedure, companies can turn to the MDR.
MDR is not a stand-alone technology, but a managed service that integrates the benefits of EDR and XDR into a convenient solution.
MDR can help investigate data mining and threat hunting, analyse network input and workflows, reduce alert fatigue, improve threat-focused event analysis, and more.
MDR eliminates the need to hire external cyber security experts. Given that the solution has been created by an experienced third-party provider, it can easily commission a triage of alerts to separate false positives from real threats.
MDR offers a comprehensive approach to traditional detection and response functions. It can also accelerate multi-domain threat analysis and benefit from DNS firewalls, cloud monitoring, network sensors and more to protect your company’s IT infrastructure.
FACTS 2023 & TRENDS 2024
Why normal antivirus protection is not enough
GRINIT offers advanced EDR tools to all its clients by default, in addition to the metal-national solutions and antivirus mechanisms.
For a complete private security centre, XDR and MDR solutions are also available as additional services.
- Singapore, Spain and Brazil were the most targeted countries for malware attacks in Q4 2023.
- In Q4 2023, Acronis blocked almost 28 million URLs at the endpoint, a 36% decrease compared to Q4 2022.
- 33.4% of all emails received were spam and 1.5% contained malware or fake links.
- Each malware sample "lives in the wild" for an average of 2.1 days before disappearing.
- In Q4 2023, there were 1 353 publicly reported cases of ransomware. LockBit, Play and ALPHV were among the biggest culprits. In addition, the Cyber Toufan ransomware group was very active in December, with 91 victims.
- Ransomware continues to be a major threat to large and medium-sized enterprises, including government, healthcare and other mission-critical organisations. Recently, ransomware attackers have been exploiting vulnerable drivers to gain a foothold in systems and disable security tools.
- Data thieves are the second most common threat and, together with the traditional use of stolen credentials, are responsible for the majority of data breaches.
- ChatGPT and similar generative AI systems are already being used to carry out cyber-attacks, create malicious content and automate attacks.
- The number of email attacks detected in 2023 increased by 222% compared to the second half of 2022.
Questions? We are at your disposal.
Call +386 40 777 107 to speak to a sales engineer.