Broadcom launches Incident Prediction to enhance Symantec Endpoint Security

Broadcom has introduced Incident Prediction, a feature within its Symantec Endpoint Security that utilizes Artificial Intelligence (AI) to anticipate and counter living-off-the-land attacks. This capability enables organizations to automate the mitigation of attacks, allowing security teams to concentrate on other critical areas while diminishing potential impacts on business operations.

Incident Prediction is based on extensive data from over 500,000 attack chains analyzed by the Symantec Threat Hunter Team and is designed to enhance the dynamic nature of cyber defense. The feature aims to predict attackers' next actions and implement preemptive measures, effectively thwarting cybercriminals before they can achieve their objectives.

According to Eric Chien from the Symantec Threat Hunter Team, this approach is inspired by the predictive capabilities of Generative AI (GenAI), which can forecast subsequent words in a text. He emphasizes that Incident Prediction allows for automated identification of likely attacker behaviors, greatly streamlining the response process and freeing security analysts from manual alert triaging.

The implementation of Incident Prediction serves to enhance the overall resilience of enterprises against cyber threats, particularly as the use of legitimate software by attackers becomes more prevalent. It aims to offer more controlled and less disruptive responses to incidents, thereby protecting business continuity.

Jason Rolleston, a key executive at Broadcom, highlights the feature’s intent to provide enterprise-grade security for organizations of any size, emphasizing the importance of empowering security teams to respond more efficiently to evolving threats.

Incident Prediction is currently available without extra costs for existing Symantec Endpoint Security Complete customers, integrating seamlessly into the existing platform.