Release Date: 05th Sep 2024


Features

Compromise Monitor

Compromise Monitor utilizes curated Threat Intelligence gathered from NTT Security Holdings Global threat intelligence team. 

Information is specific to identified data leaks and compromises against the Samurai XDR registered email addresses only.

Sources include: dark web, deep web and open-source communities.

You can find this handy new feature in our Tools menu.


Users monitored are restricted to Tenant/ Account Invitees and Owners



Figure1: Overview

Figure 2: Details



Franchise or Partner Management


The development of the Franchise capability in Samurai XDR offers a set of features that support the operating models for MSP and MSSP.


What is a “franchise” in business terms?

Operationally; the definition of a franchise is a single organization that owns and administers a number of client tenants. 

Each client tenant has their own independent XDR assets; telemetry and response integrations etc. configured. 

Each client can only see their own tenant and its assets. Users at the franchise are responsible for their client tenants, and can see and manage each of their clients' XDR assets.


The partner (Franchisee) can perform the following:


Can create (provision) new client tenants.
Can access each client tenant seamlessly
Client (or customers) tenant users can see any operation performed by a franchise user as the franchise (audit trail).
The franchise users can access platform support (single client access to all client screens)
A franchise user can create an investigation on-behalf of one its clients (e.g. franchise is providing a managed service).
A client can also create their own investigation. The franchise user has the ability to see this client-initiated investigation

Ultimately, the franchise user can act on behalf of the client within the client-tenant and perform all actions that a standard client can - typical with any managed service from MSP, MSSP to MDR.


If you would like to know more about becoming a partner and accessing our recently released Partner / Franchise multi tenant interface, please reach out to us by filling our "Reseller and MSP Partner Program" enquiry form: CLICK HERE


Figure 3: Franchise / Partner overview of Samurai XDR


Integrations

Trend Micro Apex One


We now support telemetry from Trend Micro product Apex One. 

Setup is a breeze. In just a few steps you will have full visibility into your EDR solution. What you get:


Full Alert Visibility

Be alerted when your endpoints have detected suspicious, unauthorized or malicious activity.

We provide full details into the alert, including severity and the evidence / telemetry that triggered the alert.


Response

Not only will you be able to see these alerts in your Alerts Management dashboard, you can also respond. As with all our supported EDR's, we all you to select the endpoint and perform an isolation - all from the comfort of our Samurai XDR web interface. When you are done with your investigation, you can also deisolate the same endpoint.

Follow our simple configuration guide to get started!


Fixes / Improvements

  • Fix the browser caching of the UI files. This fix will improve the user experience.


Knowledge Base