Rapid threat containment: Barracuda Managed XDR adds Automated Threat Response for Microsoft and Google

Barracuda Managed XDR just got sharper. We’re excited to unveil the launch of Barracuda Managed XDR’s Automated Threat Response for two major platforms: Microsoft Defender for Endpoint and Google Workspace.

This powerful expansion marks a significant milestone in our mission to help organizations of all sizes and managed service providers (MSPs) detect and contain threats in real time—automatically, without waiting for human intervention.

Why Automated Threat Response matters more than ever

Ransomware, phishing and account takeovers are no longer isolated incidents—they’ve become daily realities for organizations worldwide. Barracuda SOC Case Files  consistently demonstrate how quickly a compromised endpoint, cloud account or network device—such as a firewall—can escalate into a full-scale breach.

In one recent case, a manufacturing company was struck by Akira ransomware in the early hours of the morning. The attacker gained access through a dormant third-party account left active on an open VPN channel. Once inside, they executed ransomware on an unprotected server and attempted to remotely encrypt additional endpoints. While the company did not have our fully managed XDR solution, Barracuda Managed XDR, it did have one of our XDR solutions protecting their endpoints.  Fortunately, Automated Threat Response was enabled and automatically isolated the impacted endpoints—leading to threat elimination, restoration and recovery.

This is the power of Automated Threat Response. With Barracuda Managed XDR, threats can be contained in real time automatically rather than manually. For example, when Automated Threat Response is enabled, attempts to connect to command-and-control (C2) servers are blocked at the firewall in real time, infected endpoints are isolated and compromised cloud accounts are disabled. In all those cases and more, Automated Threat Response stops the threat in its tracks. It’s a proactive defense that eliminates the delay of manual intervention and gives IT teams the breathing room they need to respond effectively.

Automated Threat Response for Microsoft Defender for Endpoint

Barracuda integrates seamlessly with organizations and partners, meeting them where they are. For teams already using Microsoft Defender for Endpoint, Barracuda’s XDR solution now offers effortless integration, enhancing your existing endpoint security with advanced monitoring capabilities.

What’s new—and what we’re excited to share—is the addition of Automated Threat Response as a new layer of protection for Microsoft Defender for Endpoint users. When a high-risk threat is detected on a Defender-protected device, our solution can be configured to:

• Isolate the impacted host(s) from the network
• Send a high-severity alert
• Follow up the alert immediately with a phone call from Barracuda’s Security Operations Center (SOC)
• Quickly restore connectivity once the threat is cleared

This automated response helps contain and mitigate threats fast and effectively.

Automated Threat Response for Google Workspace

For organizations using Google Workspace and its suite of SaaS products—Gmail, Drive, Meet, Chat — Barracuda XDR Cloud Security now monitors the entire tenant. If a cloud account is compromised, our XDR solution can be configured to:

• Log out the user
• Disable the account
• Alert the SOC and customer IT team

This is a game-changer for Google-first organizations that previously lacked automated response options. It’s also a clear signal to Google Workspace customers: Barracuda has your back.

A unified vision for faster, smarter security

These extended capabilities build on Barracuda’s existing Automated Threat Response integrations with Microsoft 365, Azure, SentinelOne, and other platforms. Together, they form a unified strategy:

• Speed up detection
• Contain threats instantly without human intervention
• Reduce time to respond (TTR)
• Protect across endpoint, cloud and network layers

Barracuda’s roadmap includes Automated Threat Response coming soon for many additional platforms as we are continuously working to ensure broad coverage for hybrid environments.

What’s next?

If you're an MSP or an organization protecting your endpoints with Microsoft Defender for Endpoint or using Google Workspace business SaaS applications, now is the time to reconnect with Barracuda and learn how we can partner to protect your organization with either our monitored or fully managed XDR solution.

Ultimately, these new Automated Threat Response capabilities offer customers:

• Stronger protection without changing your existing tools at no additional cost
• Automated containment that buys time for IT teams
• Assurance that only the Barracuda SOC and its five teams of cybersecurity experts can provide

See how your business can benefit from Barracuda Managed XDR and Automated Threat Response. You can schedule a demo or use the online configuration tool to build your managed cybersecurity plan.