Advanced Machine Learning Models Use Behavior Profiling to Detect Misuse of Credentials by Compromised or Malicious Business Partners
SUNNYVALE, CA--(Marketwired - Aug 25, 2016) - Niara, a recognized leader in user and entity behavior analytics (UEBA), today announced PartnerWatch™, the first application of UEBA machine learning to detect attacks targeting high value applications and databases entering the enterprise through partner portals or virtual private networks (VPN). By making partners full-fledged entities in Niara's platform, security teams can maintain automated, focused oversight of third-party access to and use of high value assets.
Many high-profile attacks over the last several years have been triggered by the misuse of business partner credentials. According to the 2016 Verizon Data Breach Investigations Report, 97 percent of breaches featuring stolen credentials leveraged legitimate partner access. With enterprise business processes increasingly incorporating partner access to sensitive IT resources, even the best-defended organization cannot identify who is behind partner credentials and their ultimate intentions. Login credentials are often shared among partner employees, making it difficult, if not impossible, to spot behavioral anomalies that are indicative of slowly gestating attacks.
Niara's PartnerWatch combines new technologies in data gathering, machine learning, asset classification and forensic support to deliver the same risk scoring and behavioral profiles for partners that the security team receive for employees or internal host systems. This includes:
"By using innovative machine learning on a big data platform, user and entity behavior analytics has proven to be a very powerful framework to increase an organization's security visibility into attacks that have evaded real-time defenses," said Sriram Ramachandran, CEO and co-founder of Niara. "With PartnerWatch, Niara continues to extend its application of UEBA to now include the previously unseen risk profile of business partners. Whether it is a supplier that has been compromised, or a trusted partner gone rogue, Niara's behavioral models will alert the security team to an attack so they can block access or take other steps for remediation and response."
Niara's PartnerWatch is available immediately as part of the Niara behavioral analytics platform. Find out why Niara was named a Cool Vendor in the 2016 Cool Vendors in UEBA, Fraud Detection and User Authentication1 report by Gartner.
Additional Resources:
1 Gartner "Cool Vendors in UEBA, Fraud Detection and User Authentication, 2016" by Andrew Walls, Brian Reed, Avivah Litan, Sandy Shen and Craig Lawson, May 2, 2016
About Niara
Niara's behavioral analytics platform automates the detection of attacks and risky behaviors inside an organization and dramatically reduces the time and skill needed to investigate and respond to security events. The solution applies machine learning algorithms to data from the network and security infrastructure to detect compromised users, entities, and negligent or malicious insiders, reduce the time for incident investigation and response, and speed threat hunting efforts by focusing security teams on the threats that matter. Headquartered in Sunnyvale, Calif., the company is backed by NEA, Index Ventures and Venrock. For more information, visit www.niara.com.
Contact Information:
Media Contact:
Ashley Womack
LEWIS for Niara
415-432-2443