Easy and effective endpoint detection & response

The broader context of targeted attacks becomes instantly visible on a timeline with all impacted hosts, relevant events and recommended actions.

The solution uses real-time behavioral, reputational and big data analysis with machine learning to automatically place detections into a broader context, including risk levels, affected host importance and the prevailing threat landscape.

Read more from our Broad Context Detection™ whitepaper.

Some detections require deeper threat analysis and guidance by specialized cyber security experts. For these tough cases, the solution has a unique built-in "Elevate to F-Secure" service. It offers professional incident analysis of methods and technologies, network routes, traffic origins, and timelines of Broad Context Detection™ to provide expert advice and further response guidance whenever under attack.  

Automated response actions can be used to reduce the impact of targeted cyber attacks by containing them around the clock whenever risk levels are high enough. Based on predefined schedules, this automation is designed specifically to support teams only available during business hours, also taking the criticality of detections into account.

Stopping breaches as early as possible is paramount, and with Host isolation, this can be achieved. When a breach is detected the host affected can be automatically or manually isolated from the network, stopping the attacker from using the host.

Meanwhile, the host can be investigated by IT Security specialists for evidence about the breach. Even if the host is otherwise isolated, it can still be centrally managed from the Management portal.