LightCyber Expands Behavioral Attack Detection with Richer User Behavior Capabilities

CIOReview Team | Wednesday, 24 February 2016, 06:46 IST

LightCyber, a leading provider of Behavioral Attack Detection solutions, recently announced the general availability of a new release of its Magna platform for detecting attack behaviors within an enterprise network with significantly expanded User-oriented attack detection capabilities. The new User-based detection features complement the existing Network and Endpoint Device capabilities, resulting in the broadest behavioral anomaly detection platform in the industry with the highest alert accuracy and operational efficiency for security analysts. Magna’s broadened attack detection capabilities are consistent with a new security mandate recommended by Gartner, Inc. in its September 22, 2015, Market Guide: User and Entity Behavioral Analytics report. (G00276088).

Gartner recently published the market guide, which specifically recommends this integrated analytical approach. “Favor UEBA vendors who profile multiple entities including users and their peer groups, and devices, and who use machine learning to detect anomalies. These features enable more accurate detection of malicious or abusive users,” wrote Avivah Litan, Gartner Vice President and Distinguished Analyst, in the report.

“Most enterprise IT security analysts are relatively blind to external attackers that have already compromised their networks as well as to internal users that perform risky or premeditated attack behaviors, since traditional security infrastructure has focused almost exclusively on the prevention and blocking of known malware,” said Jason Matlof, executive vice president, LightCyber. “Today, companies must expect that some bad actors will successfully circumvent traditional security controls, and therefore should start investing time and resources in finding those active attackers. LightCyber Magna now provides automated attack detection using the explicit linkage of anomalous events across User, Network and Endpoint data so security operators have all the information they need to swiftly and efficiently stop attackers before damage is done.”

With this expanded analytical detection capability, the LightCyber Magna Behavioral Attack Detection platform now provides even broader security visibility use cases, including detection of malware, risky behaviors of internal users, insider attacks and targeted external attacks that could lead to data breaches and other kinds of damage.

“Finding a targeted attacker or rogue employee that otherwise has not yet been identified by existing security controls is an enormous challenge,” said Marshall Wolf, senior director of IT at Gigamon. “LightCyber Magna provides customers with unprecedented visibility into attacks that other security infrastructures do not see by leveraging unique behavioral profiling capabilities. Magna is enormously useful in focusing our security operations activities through automated summary information about anomalous network activities, the associated user accounts and the endpoint processes involved.”