Zooming in on UEBA: answering the ‘what’ and the ‘how’


What is UEBA? User and entity behaviour analytics (UEBA) is a relatively new category of cybersecurity tools that utilise machine learning (ML) algorithms to detect abnormalities in the behaviour of the users and entities that belong to an enterprise network. UEBA monitors and continuously learns from the behaviour of various user accounts and devices in the network, and establishes a baseline behavioural profile for each using statistical and probability models. Following this, any action performed by a user or entity is compared with the baseline to determine if it’s normal or anomalous. Whenever an anomaly is identified, the risk score

The post Zooming in on UEBA: answering the ‘what’ and the ‘how’ appeared first on teiss.



Source link