Microsoft Advanced Threat Analytics to Ship in August
On-premise Active Directory customers will soon be able to thwart data breaches and other data security mishaps due to stolen user credentials.Microsoft Advanced Threat Analytics, currently in beta, will ship next month, the company announced today. Deployed on-premises, the product is based on Microsoft's acquisition of Active Directory security specialist Aorato and its technology. Linking with Active Directory, and combining machine learning, user behavioral analytics and a catalog of known threats, Advanced Threat Analytics alerts administrators to attacks and data breaches in real time. And the software evolves alongside the threat landscape. Advanced Threat Analytics allows organizations "to adapt to the changing nature of cyber-security threats with a technology that is continuously learning," Brad Anderson, corporate vice president of Microsoft Cloud and Enterprise, said in a July 22 announcement. The technology reduces false positives, raising "red flags only when needed," he added. Catching malware before it strikes undoubtedly helps organizations keep a lid on their sensitive data, but it's not the only threat worth keeping an eye on. Misappropriated user credentials are often the cause of headline-grabbing breaches. "In fact, compromised identity is the #1 cause of the breaches we hear about from organizations all over the world," stated Anderson. The problem is compounded by employees bringing their mobile devices to work and complex security monitoring and reporting solutions, he argued.
In a nod to the consumerization of IT, Advanced Threat Analytics' user interface is a departure from traditional security logging software. Administrators can examine "the most important security factors using a simplified attack timeline," noted Anderson.