{"id":152216,"date":"2022-01-20T12:30:59","date_gmt":"2022-01-20T20:30:59","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=152216"},"modified":"2022-01-21T12:57:59","modified_gmt":"2022-01-21T20:57:59","slug":"active-prevention-in-av-comparative-epr","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2022\/01\/active-prevention-in-av-comparative-epr\/","title":{"rendered":"Cortex XDR Scores 100% Overall Active Prevention in AV-Comparative EPR"},"content":{"rendered":"<p><strong><img loading=\"lazy\" decoding=\"async\"  class=\"wp-image-152389 alignright lozad\"  data-src=\"https:\/\/www.paloaltonetworks.com\/blog\/wp-content\/uploads\/2022\/01\/word-image-48.png\" width=\"157\" height=\"235\" \/><\/strong><\/p>\n<p>Palo Alto Networks has been recognized once again by one of the most well-known and respected independent, third-party cybersecurity evaluation organizations, AV-Comparatives. <a href=\"https:\/\/www.paloaltonetworks.com\/cortex\/cortex-xdr\">Cortex XDR<\/a> was identified as a \u201cStrategic Leader\u201d in the 2nd annual <a href=\"https:\/\/start.paloaltonetworks.com\/cortex-epr-av-comparatives-report-2022\">Endpoint Prevention and Response (EPR) evaluation<\/a>.<\/p>\n<p>With an overall active prevention score of 100%, Cortex XDR has received unbeaten scores <a href=\"https:\/\/www.paloaltonetworks.com\/blog\/2020\/12\/cortex-av-comparatives-epr-evaluation\/\">two years in a row<\/a> while maintaining one of the lowest Total Cost of Ownership scores, despite being one of the only vendors to provide extended threat detection and response for endpoint, network, cloud, identity and additional data sources.<\/p>\n<figure id=\"attachment_152402\" aria-describedby=\"caption-attachment-152402\" style=\"width: 695px\" class=\"wp-caption alignnone\"><div style=\"max-width:100%\" data-width=\"695\"><span class=\"ar-custom\" style=\"padding-bottom:104.03%;\"><img loading=\"lazy\" decoding=\"async\"  class=\"wp-image-152402 lozad\"  data-src=\"https:\/\/www.paloaltonetworks.com\/blog\/wp-content\/uploads\/2022\/01\/word-image-49.png\" alt=\"EPR Cyber Risk Quadrant showing cyber risk visionaries, strategic leaders, strong challengers\" width=\"695\" height=\"723\" \/><\/span><\/div><figcaption id=\"caption-attachment-152402\" class=\"wp-caption-text\">Figure 1. Endpoint Prevention and Response (EPR) - ECRQ Enterprise CyberRisk QuadrantTM<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<figure id=\"attachment_152415\" aria-describedby=\"caption-attachment-152415\" style=\"width: 715px\" class=\"wp-caption alignnone\"><div style=\"max-width:100%\" data-width=\"715\"><span class=\"ar-custom\" style=\"padding-bottom:42.52%;\"><img loading=\"lazy\" decoding=\"async\"  class=\"wp-image-152415 lozad\"  data-src=\"https:\/\/www.paloaltonetworks.com\/blog\/wp-content\/uploads\/2022\/01\/word-image-50.png\" alt=\"Chart showing 5-year product cost, active response, passive response, combined prevention\/response capabilities, and 5-year TCO.\" width=\"715\" height=\"304\" \/><\/span><\/div><figcaption id=\"caption-attachment-152415\" class=\"wp-caption-text\">Figure 2. Cortex XDR, 99.5% Combined Prevention &amp; Response with very low TCO.<\/figcaption><\/figure>\n<p>AV-Comparatives\u2019 Endpoint Prevention and Response evaluation is relatively new. In just its second year, it continues to be a welcomed change to traditional tests by focusing on real-world scenarios, blending the critical importance of prevention with detection and response. With the rise of EDR in the endpoint security market, much has been made about detection and response. However, outright prevention is the best line of defense, and Cortex XDR continually outperforms the competition in the area of active prevention. In the 2021 EPR evaluation, Cortex XDR achieved a perfect 50 out of 50 for Overall Active Prevention.<\/p>\n<figure id=\"attachment_152428\" aria-describedby=\"caption-attachment-152428\" style=\"width: 707px\" class=\"wp-caption alignnone\"><div style=\"max-width:100%\" data-width=\"707\"><span class=\"ar-custom\" style=\"padding-bottom:44.13%;\"><img loading=\"lazy\" decoding=\"async\"  class=\"wp-image-152428 lozad\"  data-src=\"https:\/\/www.paloaltonetworks.com\/blog\/wp-content\/uploads\/2022\/01\/word-image-51.png\" alt=\"List of companies on their active prevention score, showing Palo Alto Networks Cortex XDR.\" width=\"707\" height=\"312\" \/><\/span><\/div><figcaption id=\"caption-attachment-152428\" class=\"wp-caption-text\">Figure 3. Cortex XDR achieves a perfect 50 of 50 Active Prevention score.<\/figcaption><\/figure>\n<p>In this evaluation all attacks had three separate phases:<\/p>\n<ul>\n<li>Phase 1 \u2013 Compromise and Foothold<\/li>\n<li>Phase 2 \u2013 Internal Propagation<\/li>\n<li>Phase 3 \u2013 Asset Breach<\/li>\n<\/ul>\n<p>\u201cActive response\u201d scores were awarded at each phase if the solution in question \u201ctook automated action to block the threat.\u201d If the solution did not block the attack but provided an actionable detection alert, a \u201cpassive response\u201d score was awarded.<\/p>\n<p>Palo Alto Networks Cortex XDR was awarded an overall \u201cActive Response\u201d score of 50 out of 50, and no attack made it beyond phase 2 into the Asset Breach phase. As noted in the report by AV-Comparatives, \u201cPalo Alto Networks performed exceptionally well at blocking the attack scenarios before the attacker was able to get a foothold inside the environment.\u201d<\/p>\n<p>When dealing with cyber threats, time is critical as adversaries quickly take advantage of any successful execution to establish persistence in an environment. The EPR evaluation provides valuable insights into a solution\u2019s ability to reduce the time to prevent an attack, and reduce the time for a SOC analyst to respond. All of the prevention and detection actions and alerts delivered by Cortex XDR in the evaluation were provided without any observed delay. This dramatically reduces the time needed to prevent and respond to threats. <span style=\"font-weight: 400;\">The report also noted that Cortex XDR provided, \u201c<\/span><a href=\"https:\/\/start.paloaltonetworks.com\/Essential-Guide-MITRE-R3\"><span style=\"font-weight: 400;\">good mapping to MITRE\u2019s TTP<\/span><\/a><span style=\"font-weight: 400;\">, which provides low-level SOC analysts the data needed to investigate further and escalate when necessary.\u201d<\/span><\/p>\n<p>We appreciate the approach AV-Comparatives is taking with the Endpoint Prevention and Response evaluation and are thankful for the opportunity to showcase the effectiveness demonstrated by Cortex XDR.<\/p>\n<p>Download the <a href=\"https:\/\/start.paloaltonetworks.com\/cortex-epr-av-comparatives-report-2022\">AV-Comparatives EPR Comparative test results<\/a> to see how we stack up against the competition. Read the detailed report on <a href=\"https:\/\/www.paloaltonetworks.com\/content\/dam\/pan\/en_US\/assets\/pdf\/reports\/epr-2021.pdf\">Palo Alto Networks Cortex XDR results<\/a> for the evaluation.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>With an active prevention score of 100%, Cortex XDR received unbeaten scores two years in a row, maintaining one of the lowest Total Cost of Ownership scores.<\/p>\n","protected":false},"author":645,"featured_media":152217,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[308,6717],"tags":[2952,6737],"coauthors":[6788],"class_list":["post-152216","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-announcement","category-products-and-services","tag-av-comparatives","tag-cortex-xdr","sec_ops_category-news-and-events","sec_ops_category-product-features"],"jetpack_featured_media_url":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-content\/uploads\/2022\/01\/Posing-at-Work-1.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/152216","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/users\/645"}],"replies":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/comments?post=152216"}],"version-history":[{"count":6,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/152216\/revisions"}],"predecessor-version":[{"id":152463,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/152216\/revisions\/152463"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media\/152217"}],"wp:attachment":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media?parent=152216"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/categories?post=152216"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/tags?post=152216"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/coauthors?post=152216"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}