This Elastic Global Threat Report is a product of Elastic Security Labs, our threat research branch with expertise in investigating computer network intrusions, analyzing malicious software, developing mitigations for broad categories of threats, and conducting intelligence analysis. Elastic Security Labs is a group of passionate security professionals who research security topics to improve the Elastic Security product and share what we learn with the broader community.

As the threat landscape evolves, vendors are meeting the challenge by incorporating XDR products as part of their traditional SIEM solutions, in order to create a coordinated, holistic approach. Extended Detection and Response is an emerging integrated solution of protection, detection and response products for endpoints, networks and the cloud.

What XDR promises to do is encapsulate much of the fragmented workflow security teams are experiencing into a single, unified solution. This substantially helps teams to automate and accelerate their analysts' workflow of triage, investigation, escalation, and response - ultimately bringing these capabilities to more users, faster, in order to better protect organizations from cyber attack.