Blumira enhances EDR and ITDR to speed up threat detection and containment. Blumira has announced the release of expanded endpoint detection and response (EDR) and identity threat detection and response (ITDR) capabilities in its platform. Security teams on Blumira Respond and Automate editions can now contain active threats by isolating compromised endpoints, stopping malicious processes, and locking out attackers across Microsoft 365 and Active Directory, without ever leaving the Blumira dashboard. "Ransomware and identity-based attacks including business email compromise are top-of-mind concerns keeping IT teams up at night right now," said Matt Warner, CEO of Blumira. "Response teams shouldn't have to jump between multiple dashboards during an active breach, or have to wonder what to do next. These endpoint and identity security improvements help us deliver on our promise of manageable, scalable security for busy teams and partners." Ransomware attacks continue to increase, rising by 34% since 2024, and are seen in 44% of breaches according to Verizon's DBIR 2025 report. For IT administrators and MSP technicians managing an active incident, the difference between a contained threat and a full-blown breach often comes down to incident response times and having the right toolkit. By bringing endpoint and identity response into a unified platform where threats are detected and investigated, Blumira cuts down the time between threat detection and mitigation. "We're stopping breaches in seconds instead of minutes or hours. I don't have to find a password, log in, get to the user, revoke MFA, and change their password. I can do all of that in one click," said Matt Timm, Network Operations Center Team Lead at TR Computer Sales. "Efficiency is key, especially in a security monitoring department. For us to have everything in one central location - the information, what's happening, the ways that we can fix it, and then the feedback of how it was fixed - is huge." Stop threats fast, wherever you find them. The benefits of Blumira ITDR and EDR include: * Improved response times: Users can respond directly from a new finding, so teams move from detection to containment with less time and less clicks * Enriched threat context: Response teams have the context of an investigation, whether it's related to a compromised M365 account to shutting down privilege abuse before it escalates * Faster containment with a clear response process: IT teams have fewer tools to manage under pressure, and have the insight they need to build team confidence and security expertise Extending security operations across your toolchain. Blumira is also announcing enhancements to its Public API, giving partners and power users new capabilities to assign findings, add comments, resolve incidents, and query evidence programmatically. For MSPs managing security across multiple client environments, these additions make it easier to connect Blumira to existing PSA platforms, RMM tools, and custom workflows, keeping security operations inside the tools teams already use every day. More about

Blumira launches SOC Auto-Focus AI and enhanced MSP Partner Program to accelerate security operations. Blumira SOC Auto-Focus provides security teams the ability to quickly respond, investigate and remediate findings. Blumira, the security operations platform for growing teams and partners, today announced the launch of SOC Auto-Focus, an AI-powered security investigation tool, alongside enhancements to its Managed Service Provider (MSP) partner program. SOC Auto-Focus is designed to help IT teams and MSPs work smarter, reduce alert fatigue and accelerate incident response through contextual intelligence and expert guidance. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251015680148/en/ Blumira SOC Auto-Focus provides security teams the ability to quickly respond, investigate and remediate findings. SOC Auto-Focus is a fundamental shift for how under-resourced IT administrators and security teams approach threat investigation. Rather than replacing human decision-making, the solution enhances analyst capabilities by providing instant context, clear prioritization and guided response workflows developed by Blumira's security experts. "The security industry has been promising AI solutions that replace human judgment, but that's not what teams actually need," said Matt Warner, CEO of Blumira. "SOC Auto-Focus delivers something more valuable: the context and expertise to make better decisions faster. It's about amplifying human intelligence, not replacing it, and helping teams build their security expertise with every finding they investigate." Unlike traditional AI security tools that require extensive training periods or provide generic analysis without environmental context, SOC Auto-Focus works immediately upon deployment. The solution draws upon the deep security expertise already built into Blumira's platform, ensuring recommendations are grounded in proven security practices rather than algorithmic guesswork. "Auto-Focus translates technical alerts into plain language summaries and points me directly to the impact," said Travis Short, SOC Analyst at NineStar Connect. "It bridges the knowledge gap instantly, saving me from spending time digging through logs or Googling for answers." Blumira SOC Auto-Focus provides security teams the ability to quickly respond, investigate and remediate findings with: * Instant context with plain-language summaries of security events, along with what those events usually mean * Clear prioritization with criticality levels, recommended response timeframes, and transparent confidence ratings * Guided response with step-by-step investigation and remediation actions crafted by security experts * In-the-moment education on risk patterns and best practices that builds team expertise with every finding With SOC Auto-Focus, organizations can measure their return on investment through reduced mean time to respond to security incidents, increased successful remediation rates, decreased repeat incidents, and improved confidence among IT team members. In addition to empowering security teams with SOC Auto-Focus, Blumira is also addressing the growing demand for scalable security solutions among its MSP partners with new partner features including advanced multi-tenant management capabilities, streamlined onboarding processes for MSP clients, and enhanced reporting tools that simplify compliance documentation across multiple customer environments. For more information on SOC Auto-Focus or the refreshed MSP Partner Program, visit www.blumira.com. About Blumira Blumira is a leading provider of security operations solutions designed to make enterprise-grade security accessible to organizations of all sizes. The company's mission is to eliminate the complexity and resource barriers that prevent effective security operations. With expert-built detection rules, 24/7 security operations support, and cutting-edge automation technology, Blumira empowers IT teams and managed service providers to detect, investigate, and respond to security threats with confidence. For more information, visit blumira.com. View source version on businesswire.com:https://www.businesswire.com/news/home/20251015680148/en/ Director of Voice and Security Content [email protected]