Rapid7, Inc. (NASDAQ: RPD), a prominent player in extended risk and threat detection, has unveiled an enhanced Managed Detection and Response (MDR) service with a focus on multi-layered endpoint prevention and forensics capabilities, all powered by its Insight Agent.
The Insight Agent, which already boasts potent features such as vulnerability scanning and robust threat detection, has been further fortified with next-generation antivirus (NGAV) and Velociraptor’s digital forensics and incident response (DFIR) capabilities. This integration aims to simplify and maximize the effectiveness of endpoint protection, ultimately reducing complexity and enhancing efficiency in core security use cases.
Jeremiah Dewey, Senior Vice President of Managed Services and Product Delivery at Rapid7, emphasized the importance of helping Security Operations Center (SOC) teams combat the expanding threat landscape. He noted that SOC teams often find themselves trapped in reactive processes, leading to burnout and recurring breaches due to inadequate remediation of previous incidents. The MDR service enhancements aim to address these challenges by streamlining endpoint security within the SOC, reducing both cost and complexity while bolstering security levels.
The incorporation of DFIR capabilities leverages the Velociraptor open-source community, enabling real-time threat detection and elimination. Velociraptor employs an expressive query language that simplifies the sharing of custom detections among security professionals, ultimately accelerating threat identification and response.
Rapid7's strategic expansion equips it to offer comprehensive threat lifecycle coverage, spanning exposure assessment, prevention, high-efficacy detection, containment, and remediation. The company remains dedicated to providing robust endpoint solutions to counteract one of the most pervasive threats organizations face today: ransomware. Rapid7 plans to further enhance its capabilities, drawing from its acquisition of Minerva Labs Ltd., to better identify and prevent advanced attacker behaviors and thwart malware before execution. ###