惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Microsoft Azure Blog
Microsoft Azure Blog
量子位
小众软件
小众软件
C
Cybersecurity and Infrastructure Security Agency CISA
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
T
Tenable Blog
V
Vulnerabilities – Threatpost
Know Your Adversary
Know Your Adversary
T
Threat Research - Cisco Blogs
Latest news
Latest news
Spread Privacy
Spread Privacy
C
Cyber Attacks, Cyber Crime and Cyber Security
NISL@THU
NISL@THU
T
Tor Project blog
Hacker News: Ask HN
Hacker News: Ask HN
V2EX - 技术
V2EX - 技术
T
The Exploit Database - CXSecurity.com
博客园 - 三生石上(FineUI控件)
K
Kaspersky official blog
Cyberwarzone
Cyberwarzone
博客园 - 叶小钗
博客园 - 聂微东
Last Week in AI
Last Week in AI
爱范儿
爱范儿
腾讯CDC
博客园 - Franky
美团技术团队
J
Java Code Geeks
O
OpenAI News
L
Lohrmann on Cybersecurity
Simon Willison's Weblog
Simon Willison's Weblog
有赞技术团队
有赞技术团队
T
Threatpost
G
GRAHAM CLULEY
Hugging Face - Blog
Hugging Face - Blog
博客园 - 【当耐特】
宝玉的分享
宝玉的分享
I
Intezer
N
News and Events Feed by Topic
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
T
The Blog of Author Tim Ferriss
S
Security @ Cisco Blogs
Forbes - Security
Forbes - Security
N
News | PayPal Newsroom
Stack Overflow Blog
Stack Overflow Blog
Scott Helme
Scott Helme
H
Hacker News: Front Page
Cloudbric
Cloudbric

SECURITY.COM

Spirals: New Stealthy Ransomware Deployed Against Asian IT Company Daxin Returns: Stealthy Malware Resurfaces in Taiwan Alongside a New Backdoor The Detection Gap: MITRE ATT&CK T1140 and T1105 Humble Brag: Symantec® Data Center Security Achieves Common Criteria Certification GodDamn Ransomware: Latest Beast Rebrand Uses Malicious Driver to Disable Defenses Tips to Harden Your Air Gapped Environments The Visibility Challenge Nobody Asked For AV-TEST Gives Symantec® Endpoint Security Complete a Perfect Score The BYOVD Epidemic: How Attackers Are Weaponizing Trusted Windows Drivers to Kill Security 🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer Your DLP Incident Backlog Owes You Closure Backdoor.Mistic: New Backdoor May be Linked to Ransomware Access Broker 5 Reasons Symantec® CBX Delivers Total Endpoint Visibility 8 XDR Questions From the Show Floor Another Year, Another Win: SE Labs® Recognizes Symantec® Endpoint Security Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden Locking Down the Server 🎙️SECURITY.COM The Podcast: The Death of SIEM Threats Rise on a Tide of Global Unrest When Nation-States Stop Caring About Size Espionage Campaign Targeted Stock Exchange Executive for Five Months Data Security Is Having A Moment 5 Ways XDR Helps SOCs Act Faster 🎙️SECURITY.COM The Podcast: The Evolution of Cybersecurity PR with W2 Communications The Maximalism Trap: When More Becomes Too Much Symantec DLP Cloud and DPSM are the Power Couple Security Strategists Need Symantec DLP Cloud and DSPM are the Power Couple Security Strategists Need The Future of the Partnership: AI, Automation, and Ecosystems Fast16: Pre-Stuxnet Sabotage Tool Was Built to Subvert Nuclear Weapons Simulations 🎙️SECURITY.COM The Podcast: Iran’s Cyber Warfare Playbook: What Defenders Need to Know Right Now 5 Ways To Keep AI in Check Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign Doing More with Less: How Government Agencies are Rethinking Cybersecurity Navigating Compliance and Insurance as a Competitive Edge Is SIEM Trying to Do Too Much? Every Defender Deserves Frontier AI The New Partner-Vendor Relationship DLP Made Easier on the Teams Running It The EU Digital Wallet: Why Waiting is Not an Option Trigona Affiliates Deploy Custom Exfiltration Tool to Streamline Data Theft Stopping Data Leaks at the Speed of AI Harvester: APT Group Expands Toolset With New GoGra Linux Backdoor How AI Increases the Load on Security Teams Web Traffic Visibility is the New Non-Negotiable The Agentic AI Tsunami is Here: Is Your Legacy IAM Sinking or Swimming? Technical Enablement vs. Marketing Noise Enterprise-Grade Security for All in 2026 Architecting for Margin Beyond the Initial Sale 🎙️SECURITY.COM The Podcast: A Brief History of Data Loss Prevention Symantec CBX Through the Paparazzi Lens The U.S. Navy’s Playbook for Cost-Controlled, Reliable Cybersecurity The Modern Threat Landscape and The Partner’s New Burden Symantec CBX Rocked RSAC 2026 Conference For Financial Services, a Wake-Up Call for Reclaiming IAM Control The Next Identity Shift Built for This Moment (and All Those to Come)
Cyber Legends: Behind the Scenes of CBX
2026-03-25 · via SECURITY.COM
  • Drowning in signals and disconnected stacks, many security teams are overwhelmed with noise they’re not equipped to handle fast enough for the current threat landscape.
  • Symantec CBX unites the best capabilities from Symantec and Carbon Black for one AI-driven, enterprise-grade XDR platform that even a junior analyst can put into action. 
  • Built for resource-constrained teams and overburdened SOCs, CBX simplifies security, reduces costs, cuts alert fatigue, and gives organizations the long-awaited advantage against sophisticated AI-powered attacks.   

These days, every SOC is drowning in signals.

Endpoints. Cloud workloads. Network telemetry. Threat intelligence feeds. Every system generates numerous amounts of data—and buried inside that mountain of information are early indicators of the next breach.

The biggest challenge, especially for smaller, under-resourced teams, is turning these signals into informed decisions before attackers make their move. With increasingly sophisticated, AI-powered threats knocking at every organization’s door, the window for response shrinks.

That’s why Symantec and Carbon Black designed

Symantec CBX

, a unified extended detection and response (XDR) platform that correlates telemetry across multiple control points to deliver unparalleled prevention, detection, and response.

In this episode of Cyber Legends, we talk with Arjun Narang, one of the many experts behind this

brazen new XDR platform

, to understand how CBX became the answer so many have been waiting for and what makes it perfect for this new era of cybersecurity. 

What inspired CBX? How did we get here?

In the rush to jump on the XDR bandwagon, vendors overlooked a major need in the market: Smaller organizations lacking the resources of large enterprises, which thanks to AI and dark web ransomware kits, are facing the same threats that the big guys face. In their efforts to secure their endpoints, networks, and data, these less-resourced organizations just relied on vendors to provide APIs to bring together telemetry data into a single view. But that approach only served to club together unrelated data, leaving gaps in visibility that could make environments less safe.

We saw that opportunity and then looked at what we could offer: Carbon Black’s EDR and threat hunting capabilities, combined with Symantec’s endpoint protection, network security defenses, and core data protection. Building a unified solution that brings all these capabilities together would provide: 

  • Native data correlation so security teams can deliver quantifiable outcomes that satisfy management and compliance officers;
  • Dynamic prevention that leverages all your environmental security signals with AI-powered capabilities so your environment can adapt to constantly changing threats; and
  • Intuitive investigation so analysts can see and understand the full scope of an attack.  

So we took those capabilities and integrated them into a single platform that delivers complete visibility into all telemetry data, and then correlates that data into AI-driven insights that enable security analysts at all levels, not just senior experts, to speed up remediation and get operations back to square one as quickly as possible.

We saw that opportunity and then looked at what we could offer: Carbon Black’s EDR and threat hunting capabilities, combined with Symantec’s endpoint protection, network security defenses, and core data protection. 

What makes CBX stand apart? 

We have the distinct advantage of building on the long and celebrated histories of our two cybersecurity brands: Symantec and Carbon Black. (Symantec was founded in 1982 to focus on AI and natural language processing, and Carbon Black began as Bit9 in 2002, eventually pioneering EDR.) Combining these well-respected brands puts us in a unique position compared to any other vendor in the market. There aren’t many companies that have held mature endpoint, network, and data security solutions under the same portfolio for multiple years. Symantec has been in that position for several years now—with the foundations of CBX already underway to bring all those solutions into one management stack. The addition of Carbon Black into this portfolio gave us the final piece of the puzzle: a robust EDR telemetry engine to correlate signals across multiple vectors.

Historically, robust XDR was built for large, well-resourced organizations that have the staff, budget, and expertise to configure and maintain complex stacks—often with customized integrations. The vast majority of organizations don’t have those resources, so everyone except the top of the market has to rely on a proliferation of tools that integrate via vendor APIs, which can leave gaps in telemetry data and visibility. 

That all changes with CBX. Not only does CBX gather data covering three major domains, but it also natively correlates that data into meaningful insights that give security teams clear, helpful direction on attacks that are underway—and how to shut them down. In addition to surfacing crucial alerts for limited teams to focus on, CBX also accelerates threat hunting, investigations, and remediations.

Featuring capabilities entirely unique to us, this new platform incorporates key features of Symantec and Broadcom innovations, including : 

  • Incident Prediction. Predict an attackers' most likely next four to five moves, blocking any opportunity for lateral movement before they can switch tactics.
  • Adaptive Protection. Stop living off the land (LOTL) attacks by automatically blocking unusual behaviors of legitimate software and OS utilities. 
  • Threat Tracer. Give your teams an interactive, visual view of the attack chain, so even junior analysts can see how an attack evolved and what was targeted.

I have to add: While we definitely have industry-leading solutions, we also have the experts behind them. Together, these strengths enable us to build an XDR product with true correlation across different telemetry types, tied into strong prevention capabilities, and built across multiple vectors.

I have to add: While we definitely have industry-leading solutions, we also have the experts behind them. 

What pain points did the team have in mind when building CBX?

Plenty. Alert fatigue, analyst burnout, gaps in telemetry and visibility, a lack of data protections… I mean, data security is often simply ignored by smaller organizations. Then there’s tool sprawl, administrative complexity, strict new compliance measures every year, the general inability to understand the true blast radius of an attack, an incapacity to detect and shut down aberrant use of legitimate tools and software that can lead to LOTL attacks, difficulty correlating telemetry data across endpoints, networks, and data…it’s a long list. And CBX addresses every single one of them.

What elements of CBX are you most excited for people to see?

Frankly, I’m excited to show the market that Symantec and Carbon Black are not “legacy” brands. We are innovators—the first vendor to build the XDR solution that the market has been asking all of us to build for years now. Think less “legacy” and more “legendary.”

Beyond that, there’s our AI integrations. See, we have unique capabilities that are powered by AI, but these don’t just leverage AI for AI’s sake. They’re purposefully designed to help humans at the helm. These capabilities were previously only available in other point solutions from Symantec and Carbon Black, and now we’re introducing them within CBX. I’m talking about Incident Prediction, Adaptive Protection, and Threat Tracer, all groundbreaking capabilities I described earlier. 

We’re also introducing CBX with key Incident Summaries capabilities to surface plain-language write-ups of threat and attack investigations that even junior analysts can use to respond quickly and decisively. These AI-powered defenses have already demonstrated what a big impact they have on everyday operations, and now they’re all available under one single console.

Think less “legacy” and more “legendary.”

How does it feel to have been a key part of the development of the first Symantec + Carbon Black solution?

It feels terrific, because this is the realization of what we first set out to do when Broadcom brought Carbon Black together with Symantec. We’re delivering on the vision of XDR that was set out years ago. 

Symantec CBX also delivers on the promise of “enterprise-grade security for all.” We’re bringing together legendary industry-leading security products across endpoint, network, and data security to provide a true “better together” solution. And anyone who has done something similar before knows what a remarkable, exciting achievement that is.

CBX wasn’t built in a day 

Legendary defenses aren’t rushed. They’re forged over decades—through research, innovation, collaboration, and the constant trial by fire of a tumultuous threat landscape. 

When organizations and resource-strapped security teams spoke of the challenges they faced every day, Symantec and Carbon Black heard the call and combined their industry-defining solutions into one powerful enterprise-grade security platform. 

The conversation about enterprise-grade security for all doesn’t end here. CBX Fest, a five-part webinar series unpacks each facet of Symantec CBX—starting with the first installment, Introducing the Unified Security Platform You’ve Been Waiting For. Register and see how CBX simplifies security and returns the advantage back to your teams. 

Cyber Legends: Behind the Scenes of CBX

Dan Mellinger

Dan Mellinger

Head of Communications, Enterprise Security Group