In today’s world, businesses can expect cybersecurity attacks every hour of every day. Kaseya Inc., an IT services platform, is safeguarding its customers with products such as Datto Endpoint Detection and Response, or Datto EDR.
The company is now prepared for constant ransomware attacks against its users, according to Mike Puglia (pictured), general manager of security products.
“It’s a big problem, and we’ve seen it escalate,” he said. “It seems like a bigger problem every single year. And it is not that we are less secure, but we end up facing newer threats. Cybercrime is just like physical crime. If it is relatively easy to conduct and it’s easy to be successful and there’s a low probability of getting caught and facing consequences, that equation means it will continue. What we try to do is help our partners and customers to make it more difficult for someone to succeed in a cyberattack.”
Puglia spoke with theCUBE Research’s Christophe Bertrand, during an exclusive interview on theCUBE, SiliconANGLE Media’s livestreaming studio. They discussed why antivirus methods of protection are now insufficient and the importance of consistent cybersecurity. (* Disclosure below.)
Mitigating cyberattacks with Datto EDR
Kaseya services smaller and medium-sized companies that may not have access to the resources of a Fortune 100 business. The company offers both Datto AV (Antivirus) and Datto EDR as part of its IT Complete platform, combining the strengths of each to catch attackers as early as possible.
“A lot of the tools that were built for the enterprise really assume you have people who have a Ph.D. in cybersecurity,” Puglia said. “The reality is the cost and complexity and ability to support that is not something that is feasible for most MSPs or SMBs. You want to still have the same capabilities, but you need to look at what are the most important things in an attack chain that I can catch without having to have an extensive history in cybersecurity. So, we spend a large amount of our time working on correlation and making meaningful alarms and giving you the ability to have the system take action for you.”
Puglia compares cybersecurity precautions to the seatbelts and airbags in a car, which can mitigate the effect of a crash. EDR is particularly important for limiting the scale of the attack and shortening a company’s recovery period.
“The goal of EDR is to try to get all of those points, opportunities to detect that something is happening that is abnormal, and then respond, be able to neutralize, contain and isolate that machine or those machines from the organization so the attack can’t spread,” Puglia explained. “Essentially, the main goal is once something has gotten in, detect it quickly and have a fender bender and not a total loss of the car.”
Here’s the complete video interview with Mike Puglia:
(* Disclosure: Kaseya Inc. sponsored this segment of theCUBE. Neither Kaseya nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)