Skip to main content

Overview

The following Overview layout applies to hybrid Partners with at least one Customer with an advanced service model, such as Bitdefender MDR Plus, Bitdefender MXDR Plus, MDR Premium, or MDR Enterprise.

Overview-1_mdr_1480801_en.png

The following Overview layout applies to:

  • Non-MSP Partners with at least one Customer with an advanced service model, such as: Bitdefender MDR Plus, Bitdefender MXDR Plus, MDR Premium, or MDR Enterprise

  • Customers on an annual advanced MDR plan

Overview-2_mdr_1480801_en.png

  1. Total EDR licenses: The total count of MDR-licensed endpoints across all managed Customers with a yearly license

    For hybrid Partners, Total GravityZone Seats is also displayed: The aggregate reserved endpoint count across managed Customers on a monthly subscription. Customers with no reserved seats are included using their current month’s endpoint usage.

  2. Monitored endpoints: The total number of endpoints actively monitored by MDR

    Note

    Endpoints are considered monitored if they have sent telemetry to the MDR service at least once during the current month.

    For hybrid Partners, this information is displayed separately for Customers with a yearly license and Customers with a monthly subscription.

  3. Active incidents: The number of incidents that may derive from alerts in overly vulnerable environments

  4. Open verification requests: The number of verification requests that are currently open within all managed companies

  5. Open recommendations: The number of recommendations that are currently open within all managed companies

  6. Welcome to MDR portal: Welcoming section that lets you navigate to the MDR release notes and the What’s New page to review recent changes in the MDR and GravityZone consoles

  7. Activity summary: Widget providing an overview of security activity and service status for the time interval selected in the dashboard

    The following information may be displayed:

    • Service status: Indicates whether MDR is actively monitoring your environment or the onboarding process has not yet been completed.

    • Incidents number: The number of incidents identified during the selected time range

    • Alerts triaged: The number of incidents that were received from GravityZone and, after being triaged by the SOC, were deemed not to need further investigation

    • Investigations: The number of investigations initiated by the MDR team

    • Threat hunts: The number of threat hunting activities performed

    • Recommendations: The number of recommendations issued by MDR

    • Response actions: The number of response actions taken by the SOC in the selected environment

    Trend indicators next to each activity illustrate how event volume has changed over the selected time frame.

  8. Recent activity: The five most recent activities within all managed companies. The following information is included:

    • Activity type: It can be Investigation, Recommendation, or Threat hunt.

    • Date and time of detection

    • Activity description

  9. Recent documents: The latest documents from all managed companies. For each document, the upload date and time, document type, and description are displayed.

    Tip

    Selecting an entry opens the document on a separate page.

  10. Top investigation categories: The categories with the highest number of investigations across all managed companies, including the category name and the corresponding investigation count

    Tip

    Clicking any of the listed items opens the Investigations page.

  11. Top impacted users: Users with the highest number of related alerts

  12. Top endpoints by alerts: Endpoints with the highest number of related alerts. The following information is included:

    • Operating system icon

    • Hostname

    • Number of alerts

In this section: