New intelligence platform aims to cut credential-based risks
Many cyber attacks are made using stolen or abused credentials. One of the ways to combat this is to collect activity data and use it to spot anomalous behavior patterns.
Leader in this field Exabeam is launching its new Security Intelligence Platform, designed to decrease the risk of cyber threats for organizations of any size. It addresses the need to collect more data than ever before, to make better connections across that data to detect threats, and to augment human analysts during incident response.
"Data breaches are now affecting national political and economic systems, and the technologies that have been used to detect and respond to these attacks are completely ineffective," says Nir Polak, CEO and founder of Exabeam. "A completely new approach to data protection is required, one that relies on modern analytics and automation, married to human expertise."
The platform's made up of five elements. Exabeam Log Manager provides unlimited security data collection, indexing, and search. Pricing is not based on data volume, so customers can collect and retain as much data as their needs require.
Advanced Analytics uses patented stateful sessions to detect credential-based threats, even when attackers switch devices or identities. Incident Responder provides automated playbook creation and execution, so that detected attacks are shut down quickly and completely. Threat Hunter enables analytics to proactively search for attackers on a network. Analysts can search for users that have any combination of activities or attributes that might be related to a specific type of attack.
Finally there are Cloud Connectors which enable customers to bring log data from popular cloud services such as Office 365, Amazon Web Services, Salesforce.com, Box, and others into the Exabeam Platform, where they can be automatically linked to on-premise behaviors.