Resolving security incidents in an enterprise environment (7 min)
Slovak company Istrosek has unveiled its own MDR platform, Istros Griffon, which targets primarily ransomware threats. It was created in response to expensive or unsuitable tools and to experience from incidents where attackers manage to circumvent standard EDR solutions. Griffon combines prevention, detection, response, and recovery with an emphasis on speed and reliability. According to the Istrosek team, roughly 80 % of handled cases are still linked to ransomware, even though one often hears that its era is ending. Attackers infiltrate infrastructures via external networks, subcontractors, or a simple VPN login, and they are often detected only by active MDR monitoring "five minutes to midnight." Existing tools tend to be slow to react to new types of encryption and TTPs, and while updates make their way through the development of large vendors, victims remain vulnerable. This is why the team decided to build its own platform aimed at rapid identification and immediate response.Why Istros Griffon was created