security community has been certainly obsessed with creating a new acronym every day instead of focusing on techniques and enhancing what is already there. basically we do not even try to enhance any thing, we just need to understand definitions and satisfy what has already been stated.

XDR is one of those things now particularly during pandemic evolved and ready to sell as a whole new technology. but wait a minute, attributes distinguished in XDR by its new set of vendors have been all the time part of definition of any other *DR out there.

I think there are 1500+ vendors of *DR right now active in the market. is there any other market out there with this level of competition? now, most of them do not even comply with what they state in their website: MDR is this, EDR is that, XDR is better, my *DR is even better…I am not sure how they even able to advertise after SolarWinds breach and not just that, all problems that security community is facing and none of these *DRs are able to address.

the idea of XDR is fantastic, nothing wrong about it at all, it has to be the XDR defines, but al those attributes must be present in any MDR as well. in other words, what is differentiating XDR and MDR is just a matter of being a newer acronym, otherwise MDR should have fulfilled all being stated in XDR if we had a bright understanding of concept and fulfilled requirements.

one thing very interesting is that, if you asked any of these vendors, 5 years ago, they would tell you their *DR is perfect and can certainly protect your from all sort of cyber threat if you were about to writing the check. now, today they tell you SIEM is outdated, we have evolved…sorry but that is an scam. SIEM is conceptually very well and nothing wrong with it, and “evolve” here means: oh we just realized how to implement the same nuts and bolts which we have had forever…but there is evidence that they still do not know how to use nuts and bolts with a simple plier and they insist to sell you their own version of Proto® 1258 Piece Master Technician Maintenance Set (I love that set though) without knowing that you do not even have room to open it up in your garage 🙂

By Kaveh Mofidi

I find simple solutions for huge and complicated problems. I believe information security and computers in general are fun to deal with, but our problems are way bigger than securing information. The real deal is to find solution for unlimited clean energy, drinkable water, mitigate root cause of hunger, war, and injustice...We need to keep our planet livable, that is our real problem on the Earth! Contact me with any question or comment: kaveh@securetarget.net

Leave a comment