Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

5/18/2021
02:25 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

BlackBerry Builds Out Extended Detection and Response (XDR) Capabilities with New Cybersecurity Innovations

Company launches next-gen BlackBerry(R) Optics 3.0 and BlackBerry(R) Gateway for ZTNA.

WATERLOO, ONTARIO – May 17, 2021 – BlackBerry Limited (NYSE: BB; TSX: BB) today announced BlackBerry® Optics 3.0, its next-generation cloud-based endpoint detection and response (EDR) solution and BlackBerry® Gateway, the company’s first AI-empowered Zero Trust Network Access (ZTNA) product. Rooted in a prevention-first and AI-driven approach, BlackBerry’s new endpoint and network security capabilities will help differentiate BlackBerry’s extended detection and response (XDR) strategy.

According to Forrester, “XDR unifies EDR with other security and business tooling. EDR gives granular visibility and provides precise response actions for endpoints. However, it lacks visibility and response actions for other parts of the business, like non-endpoint related network telemetry, email behaviors, and cloud environments, leaving security analytics to pick up the slack. XDR provides needed visibility and control to other parts of the business through integrations that combine EDR data with other types of telemetry.”

The new cloud-native architecture and Advanced Query capability that underpins Optics 3.0 is integral to BlackBerry’s XDR strategy. With Optics 3.0, Edge AI threat detection and automated response capabilities execute directly on the endpoint device so an incident can be mitigated in near real-time. The resulting telemetry, alert, and forensic data gets stored in the cloud data lake along with non-endpoint related telemetry data. Security professionals can then query and analyze the multiple source of telemetry data to gain greater visibility and context into an organization’s security environment.  

BlackBerry Gateway marks the company’s entry into ZTNA for both SaaS and on-premises applications. Built with a “Prevent First and Protect First” approach, Gateway’s Zero Trust architecture helps organizations reduce network access risk by assuming every user, endpoint, and network is potentially hostile until identity is authenticated. As the company builds out its XDR architecture, Gateway would provide ZTNA telemetry data that would be added to the cloud data lake.

“We are delighted to see our vision for an extended detection and response architecture take shape,” said Billy Ho, EVP of Product Engineering, BlackBerry. “Traditional endpoint security alone is not enough to tackle the sophisticated threat landscape. Our end-to-end approach to cybersecurity is deeply rooted in Cylance AI and ML to provide enhanced visibility and protection against current and future cyberthreats. As part of our XDR roadmap, we will continue to add new products and additional sources of security telemetry, such as user behavior, identity, network, data, application, and cloud to the Optics 3.0 cloud data lake. This will enable data correlation, automated workflows, automated threat hunting, to enable more efficient and effective detection and response.”

BlackBerry Gateway, when integrated with the BlackBerry® Protect advanced AI-powered endpoint security product, provides a comprehensive defense against threats targeting devices, networks, and user identity. BlackBerry Protect leverages AI to prevent known, unknown, and zero-day threats, while BlackBerry Gateway ensures business networks are only accessed by trusted and healthy devices. 

BlackBerry Optics 3.0 will be available in Q2’21 and BlackBerry Gateway is available in May 2021.  Learn more about BlackBerry Optics and BlackBerry Gateway.

About BlackBerry

BlackBerry (NYSE: BB; TSX: BB) provides intelligent security software and services to enterprises and governments around the world. The company secures more than 500M endpoints including 175M cars on the road today.  Based in Waterloo, Ontario, the company leverages AI and machine learning to deliver innovative solutions in the areas of cybersecurity, safety and data privacy solutions, and is a leader in the areas of endpoint security management, encryption, and embedded systems.  BlackBerry’s vision is clear - to secure a connected future you can trust.  

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Commentary
What the FedEx Logo Taught Me About Cybersecurity
Matt Shea, Head of Federal @ MixMode,  6/4/2021
Edge-DRsplash-10-edge-articles
A View From Inside a Deception
Sara Peters, Senior Editor at Dark Reading,  6/2/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23394
PUBLISHED: 2021-06-13
The package studio-42/elfinder before 2.1.58 are vulnerable to Remote Code Execution (RCE) via execution of PHP code in a .phar file. NOTE: This only applies if the server parses .phar files as PHP.
CVE-2021-34682
PUBLISHED: 2021-06-12
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
CVE-2021-31811
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-31812
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-32552
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.