Data Protection

CyberArk Launches Solution to Spot Attacks in Progress

CyberArk, a provider of enterprise security solutions that help companies secure and manage privileged accounts, announced a new solution this week that was designed to detect malicious privileged account behavior and stop attacks in-progress.

Mike Lennon

November 19, 2013

Dubbed CyberArk Privileged Threat Analytics, the solution provides targeted and actionable threat analytics on critical attack vectors by identifying malicious privileged user behavior, the company said.

Privileged accounts are increasingly being targeted in both internal and external advanced enterprise attacks, however, organizations are not implementing best practices around these accounts, according to a survey from CyberArk earlier this year.

CyberArk Privileged Threat Analytics is the latest innovation in the company’s flagship privileged account security solution, and provides benefits which Include:

• Identifies in-progress external attacks and malicious behavior of authorized insiders;

• Detects a range of anomalies in the behavior patterns of individual privileged users in real-time, such as a user who suddenly accesses credentials at an unusual time of day.

• Improves effectiveness of SIEM systems and incident response teams by reducing false positives;

Advertisement. Scroll to continue reading.

• Stops an in-progress attack earlier in the kill chain, ensuring a less costly and time consuming remediation process;

• Learns user behavior and adjusts risk assessments based on the authorized privileged user activity patterns.

“Privileged user behavior profiling can be a critical weapon in combating both external and internal threats by discovering abnormal behavior early,” said Charles Kolodgy, Research Vice President for IDC’s Security Products service. “The key to CyberArk’s inventive solution is to analyze the right data – that being the activities of privileged user accounts – providing high value, actionable intelligence on a critical attack vector.”

“Organizations must assume attackers have already penetrated the perimeter and once inside, will almost always attempt to take control of privileged accounts to advance their attack,” said Roy Adar, vice president of product management, CyberArk. “Customers are asking for controls on privileged accounts, coupled with the ability to detect suspicious activity to protect their organizations from evolving threats.”

CyberArk Privileged Threat Analytics is scheduled to be available in December 2013.

Written By Mike Lennon

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Latest News

Click to comment

Virtual Event: Threat Detection and Incident Response Summit

Wednesday, May 24, 2023

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Virtual Event: CISO Forum Virtual Summit

June 13-14, 2023

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Regardless of the use case your security organization is focused on, you’ll likely waste time and resources and make poor decisions if you don’t start with understanding your threat landscape. (Marc Solomon)

Today’s Cyber Defense Challenges: Complexity and a False Sense of Security

Industry standard frameworks and guidelines often lead organizations to believe that deploying more security solutions will result in greater protection against threats. (Torsten George)

Cutting Through the Noise: What is Zero Trust Security?

With proactive steps to move toward Zero Trust, technology leaders can leverage an old, yet new, idea that must become the security norm. (Marie Hattar)

Triple Threat: Insecure Economy, Cybercrime Recruitment and Insider Threats

A wave of layoffs, coupled with increased recruitment efforts by cybercriminals, could create the perfect conditions for insider threats to flourish (Derek Manky)

This New Era of Security Requires Secure Networking, Vendor Consolidation, and Focus on OT

The convergence of networking and security, the consolidation of technology vendors, and a focus on OT security are essential underpinnings of any organization's success. (John Maddison)

Application Security

Source Code Security Firm Cycode Launches With $4.6 Million in Funding

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Eduard KovacsSeptember 24, 2019

Quantum computing and the cryptopocalypse

Data Protection

Cyber Insights 2023 | Quantum Computing and the Coming Cryptopocalypse

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.

Kevin TownsendFebruary 2, 2023

Artificial Intelligence

AI Helps Crack NIST-Recommended Post-Quantum Encryption Algorithm

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Kevin TownsendFebruary 21, 2023

Zero Trust and Identity and Access Management

Identity & Access

Cyber Insights 2023 | Zero Trust and Identity and Access Management

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Kevin TownsendFebruary 6, 2023

Identity & Access

Password Dependency: How to Break the Cycle

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Torsten GeorgeJanuary 25, 2023

Compliance

Cyber Insights 2023 | Regulations

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Kevin TownsendFebruary 2, 2023

Cybersecurity Funding

Data Protection and Privacy Firm Titaniam Raises $6 Million in Seed Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Kevin TownsendFebruary 10, 2022

Application Security

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Ryan NaraineDecember 12, 2022

SECURITYWEEK NETWORK:

ICS:

SecurityWeek

Data Protection

CyberArk Launches Solution to Spot Attacks in Progress

More from Mike Lennon

Latest News

Virtual Event: Threat Detection and Incident Response Summit

Virtual Event: CISO Forum Virtual Summit

Expert Insights

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Today’s Cyber Defense Challenges: Complexity and a False Sense of Security

Cutting Through the Noise: What is Zero Trust Security?

Triple Threat: Insecure Economy, Cybercrime Recruitment and Insider Threats

This New Era of Security Requires Secure Networking, Vendor Consolidation, and Focus on OT

Related Content

Application Security

Source Code Security Firm Cycode Launches With $4.6 Million in Funding

Data Protection

Cyber Insights 2023 | Quantum Computing and the Coming Cryptopocalypse

Artificial Intelligence

AI Helps Crack NIST-Recommended Post-Quantum Encryption Algorithm

Identity & Access

Cyber Insights 2023 | Zero Trust and Identity and Access Management

Identity & Access

Password Dependency: How to Break the Cycle

Compliance

Cyber Insights 2023 | Regulations

Cybersecurity Funding

Data Protection and Privacy Firm Titaniam Raises $6 Million in Seed Funding

Application Security

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

SECURITYWEEK NETWORK:

ICS:

More from Mike Lennon

Latest News

Trending

Daily Briefing Newsletter

Virtual Event: Threat Detection and Incident Response Summit

Virtual Event: CISO Forum Virtual Summit

Expert Insights

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Today’s Cyber Defense Challenges: Complexity and a False Sense of Security

Cutting Through the Noise: What is Zero Trust Security?

Triple Threat: Insecure Economy, Cybercrime Recruitment and Insider Threats

This New Era of Security Requires Secure Networking, Vendor Consolidation, and Focus on OT

Related Content

Application Security

Source Code Security Firm Cycode Launches With $4.6 Million in Funding

Data Protection

Cyber Insights 2023 | Quantum Computing and the Coming Cryptopocalypse

Artificial Intelligence

AI Helps Crack NIST-Recommended Post-Quantum Encryption Algorithm

Identity & Access

Cyber Insights 2023 | Zero Trust and Identity and Access Management

Identity & Access

Password Dependency: How to Break the Cycle

Compliance

Cyber Insights 2023 | Regulations

Cybersecurity Funding

Data Protection and Privacy Firm Titaniam Raises $6 Million in Seed Funding

Application Security

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw