Broadcom Inc. has launched a new capability called Incident Prediction in its Symantec Endpoint Security platform. This feature utilizes artificial intelligence (AI) to predict and disrupt cyberattacks that employ legitimate software, known as living-off-the-land (LOTL) attacks. By automating the mitigation process, Incident Prediction allows security analysts to concentrate on other priorities while reducing the risk of disruption to business operations.

Incident Prediction is built on a foundation of over 500,000 real-world attack chains, providing insights into attacker behavior and enabling proactive security measures. It can automatically identify potential next steps that attackers might take and implement policies to block those actions, thereby protecting critical business data.

“The inspiration for Incident Prediction came from how GenAI can ‘predict’ the next word when generating text,” stated Eric Chien from the Symantec Threat Hunter Team at Broadcom. This capability is designed to free security professionals from manually sorting through alerts and developing strategies for mitigation.

Key functionalities of Incident Prediction include automating attacker disruption, alleviating the workload for security operations center (SOC) analysts, minimizing business impact during attacks, and reducing the overall attack surface. This feature is available at no additional cost to current customers of Symantec Endpoint Security Complete.

Broadcom continues its commitment to delivering enterprise-level security solutions, regardless of an organization’s maturity level. The new capability is set to be showcased at the upcoming RSA Conference 2025.