Cybersecurity Conversations – Bypassing of EDR

This video is part of our Cybersecurity Conversations video series, where we cover different topics related to the world of cybersecurity.

90% of companies with over 2,000 employees in Canada are equipped with endpoint detection and response (EDR)¹, making it a central tool in the security set up of Canadian organizations. However, an underlying trend has been observed: the bypassing of EDR.

In this video, Bill Robert, Cybersecurity Solutions Specialist, and Clement Cruchet, Technical Team Lead, cover the different methods attackers use for bypassing an EDR and what actions companies must take to enhance their security posture.

Learn more on the topic:

• Black hat - Dirty Vanity: A New Approach to Code Injection & EDR Bypass
• FalconForce - EDR Internals From a Defenders Perspective
• Security Research Labs - EDR Evasion Primer for Red Teamers
• DEFCON30 - Adversary Village - Python VS Modern Defenses

For more information, reach out to cybersecurity@bell.ca.

Source:

1. Bell