We are starting to look into some of the more powerful endpoint protection products. Carbon Black, CrowdStrike, Endgame, etc. Do any of you have any experience with these products? Recommendations, lessons learned etc?
I have a customer that swears by Cylance.
https://www.cylance.com/en_us/home.html
It is an AI based system, and has no pattern files, and needs no "signature" updates (since it has none).
They did extensive trials with lots of products, and Cylance came out by far the best at stopping bad things.
Cylance was hacked, try Carbon Black and CrowdStrike
Any links about that hack?
This is rather late update to this thread, but I have been installing Trend Micro Worry Free Business Services XDR for my clients.
It has Endpoint Detection and Response, Hosted Email Security and Cloud storage security. I have witnessed it block ransomware.
I deploy the client app via Systems Manager, so roll out to a new organization is easy.