LightCyber Increases Precision of Behavioral Attack Detection

SOURCE: LightCyber

LOS ALTOS, Calif., and RAMAT GAN, Israel – November 2, 2016 – LightCyber, a leading provider of Behavioral Attack Detection solutions, today announced a new release of its Magna™ platform that increases the precision and speed of detecting an in-progress attack from a malicious insider or external targeted bad actor. The Magna 3.5 release adds enhanced visibility of user credential use and more granular VPN intelligence so attackers can be detected even more efficiently and accurately.

“Detecting and thwarting an active attack requires highly precise detection of the attacker’s operational activities,” said Jason Matlof, executive vice president, LightCyber. “The historic problem endemic to security has been the inability to parse out the most relevant attacker signals, which has resulted in overwhelming flood of mostly useless security alerts. This new release adds even more targeted attack detection capabilities related to user credential theft and abuse.”

Enhanced User and Entity Behavior Analytics (UEBA)

The enhanced user behavior detection enables fine-tuned identification of two types of attack behaviors: a new user conducting unusual activities or an existing user acting in an unexpected way. Attackers may steal access to new or existing user accounts and use them to orchestrate an attack. Magna evaluates these behaviors with multiple dimensions, including peer activity, history, time, type of activity, and more, to achieve a high level of accuracy and eliminate false-positive alerts. These new detection capabilities are based exclusively on user credential use and complements other existing host- and user-based anomaly detection capabilities. These new detection features are especially useful to enhance Magna’s lateral movement detection capabilities as attackers gradually expand their realm of control and get closer to assets.

Granular User Visibility Through VPNs

While Magna has had VPN visibility, a new feature enables associating a specific user IP address with a remote assess user connecting to the network through a VPN concentrator. Through VPN logs, Magna will de-multiplex the observed network traffic into individual sessions for traffic pattern analysis, which is inherently more robust than just using information in the VPN logs themselves as implemented by competitive UEBA solutions.

Detecting Active Attackers Quickly and Accurately

The LightCyber Magna platform gains its visibility from full network capture that can see the network activities of all users and IP-connected devices. This vantage is augmented by an agentless, on-demand capability to interrogate user computers and link specific processes with specific network activity. Using on-premise machine learning, Magna continuously profiles all users and devices and then can detect anomalies that are indicative of an attack. The combination of network, user and device enables an accurate “triangulation” of an active attacker, and these new detection elements further enhances that detection accuracy.

Price and Availability

Magna version 3.5 is available now. Pricing starts at $21,000 for a Magna Detector appliance.

About LightCyber

LightCyber is a leading provider of Behavioral Attack Detection solutions that provide accurate and efficient security visibility into attacks that have slipped through the cracks of traditional security controls. The LightCyber Magna™ platform is the first security product to integrate user, network and endpoint context to provide security visibility into a range of attack activity. Founded in 2012 and led by world-class cyber security experts, the company’s products have been successfully deployed by top-tier customers around the world in industries including the financial, legal, telecom, government, media and technology sectors.  For more information, please visit http://www.lightcyber.com or follow us on Twitter, LinkedIn and Facebook.