Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> That only solves half the problem, it doesn't solve data theft

crowsdstrike is not a DLP solution. You can solve that problem (where necessary) by less intrusive means.



I agree edr is not a DLP solution, but edr is there to prevent* an attack getting to the point where staging the data exfil happens... In which case yes I would expect web/volumetric DLP kicks in as the next layer.

*Ok ok I know it's bypassable but one of the happy paths for an attack is to pivot to the machine that doesn't have edr and continue from there.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: