CyberArk, a provider of enterprise security solutions that help companies secure and manage privileged accounts, announced a new solution this week that was designed to detect malicious privileged account behavior and stop attacks in-progress.
Dubbed CyberArk Privileged Threat Analytics, the solution provides targeted and actionable threat analytics on critical attack vectors by identifying malicious privileged user behavior, the company said.
Privileged accounts are increasingly being targeted in both internal and external advanced enterprise attacks, however, organizations are not implementing best practices around these accounts, according to a survey from CyberArk earlier this year.
CyberArk Privileged Threat Analytics is the latest innovation in the company’s flagship privileged account security solution, and provides benefits which Include:
• Identifies in-progress external attacks and malicious behavior of authorized insiders;
• Detects a range of anomalies in the behavior patterns of individual privileged users in real-time, such as a user who suddenly accesses credentials at an unusual time of day.
• Improves effectiveness of SIEM systems and incident response teams by reducing false positives;
• Stops an in-progress attack earlier in the kill chain, ensuring a less costly and time consuming remediation process;
• Learns user behavior and adjusts risk assessments based on the authorized privileged user activity patterns.
“Privileged user behavior profiling can be a critical weapon in combating both external and internal threats by discovering abnormal behavior early,” said Charles Kolodgy, Research Vice President for IDC’s Security Products service. “The key to CyberArk’s inventive solution is to analyze the right data – that being the activities of privileged user accounts – providing high value, actionable intelligence on a critical attack vector.”
“Organizations must assume attackers have already penetrated the perimeter and once inside, will almost always attempt to take control of privileged accounts to advance their attack,” said Roy Adar, vice president of product management, CyberArk. “Customers are asking for controls on privileged accounts, coupled with the ability to detect suspicious activity to protect their organizations from evolving threats.”
CyberArk Privileged Threat Analytics is scheduled to be available in December 2013.
