RSA® Web Threat Detection Adds Enhanced Visibility & Analytics; Takes on Mobile Fraud
- Leveraging Big Data analytics, RSA® Web Threat Detection is designed to enable both security and fraud teams to visualize and analyze millions of user web sessions to help identify cybercrime threats, business logic abuse, and fraudulent activities – all in real time.
- With mobile transactions growing more than 50% in the last year, visibility into native mobile application traffic provides an added layer of security to help thwart this fast-growing frontier of attacks.
- New analyst dashboard is engineered to enable organizations to isolate cyber criminal activity from legitimate online customers quickly.
- The latest release of RSA Web Threat Detection continues RSA's mission to deliver Intelligence Driven Security solutions to help organizations combat today's threats.
RSA, The Security Division of EMC, today announced the latest version of RSA Web Threat Detection designed to provide enterprises with end-to-end visibility into web sessions to help mitigate risks associated with consumer-facing websites including cybercrime activity and business logic abuse. RSA Web Threat Detection goes beyond the capabilities of traditional tools to help organizations identify a virtually limitless range of online threats in real time – from precursors of fraud to actual fraudulent activities. The latest version is built to offer enhanced real-time visibility into web session activities, new mobile traffic monitoring capabilities and additional detection measures across the entire online user lifecycle to help enterprises gain greater insight into the online threat environment to more accurately detect active threats. Adding web session intelligence to an organization's overall security operations provides a unified strategy for defense in a hyper-connected world.
Enhanced Visibility & Big Data Threat Correlation
RSA Web Threat Detection is engineered to add enhanced data visibility and analytics that helps enable both security and fraud teams to visualize and analyze millions of user web sessions to help identify cybercrime threats, business logic abuse, and fraudulent activities – all in real time. Streaming web session transactions and analytics help enable powerful integration into other Big Data initiatives for improved cross-channel analysis and deeper understanding of online threats targeting end users, the organization's brand or the enterprise itself. By correlating web intelligence into other security analytic platforms, organizations can identify, prioritize and mitigate threats with greater ease and clarity.
RSA Web Threat Detection adds real-time threat groups that leverage Big Data to link potentially threatening users and IP addresses based on similar abnormal behavior to enhance threat detection of transactions and/or users associated with known malicious online activity. Organizations can quickly perform searches to identify web sessions that are a part of a threat group that may require deeper investigation. Once an attack is identified, RSA Web Threat Detection is engineered to group and detect any similar attack types automatically. Moreover, enhanced insight into a profile's history, including current and former user or IP address behavior, allows organizations to spot anomalous activity on an individual basis quickly – allowing administrators to take appropriate action.
The Rise of Mobile Fraud
As the mobile channel continues to grow in popularity, it also becomes an attractive vehicle for fraudsters to exploit. According to statistics collected by RSA's Office of the CTO, in 2013 27% of all transactions originated from mobile devices – an increase of nearly 54% year-over-year. More alarming, nearly 32% of all fraudulent transactions recorded by RSA originated from mobile devices in the first half of 2014. As a result, RSA Web Threat Detection is engineered to add in new capabilities to provide visibility into mobile application traffic allowing organizations to create specific rules to help identify and mitigate mobile threats. By correlating user activity across mobile and traditional web channels in real-time, organizations can increase threat detection accuracy and keep pace with the growing demand, usage and enhanced risks this ever-growing channel presents.
Finding the Needle in the Haystack
A refined user interface improves the time to value and reduces overall incident investigation time. The new Analyst Summary Dashboard is designed to streamline investigations. Acting as a one-stop shop, the dashboard helps analysts to decide if deeper investigation may be needed.
With so much daily activity happening on websites and portals, it can be nearly impossible to separate criminal activity from that of legitimate customers. However, criminals do act differently and leave tell-tale signs behind in the web session. By bringing real-time Risk Indicators, Threat Scores and historical session data front and center in one view for analysts, the RSA Web Threat Detection dashboard is built to enable the rapid detection of threats in real time. Visualized web intelligence shines a spotlight on the “needle in the haystack,” even if an analyst isn't sure what “the needle” looks like.
RSA Web Threat Detection is designed to provide total visibility into a web or mobile session, translating click stream data into actionable intelligence that helps enable organizations to distinguish between legitimate and criminal behavior in real time, and help stop threats quickly before they escalate. Protecting over $200 billion in transactions annually, the real-time threat detection and forensic fraud analysis capabilities of the RSA Web Threat Detection solution is the cornerstone of cross-channel fraud-monitoring and security programs at many large global organizations. Adding web session intelligence and threat detection into an organization's security operations center helps allow for faster identification and correlation of threats across the entire enterprise.
Michael Versace, Global Research Director, IDC Financial Insights
“Many consumer-facing websites and mobile apps are targeted by cybercriminals as a first step to launch a broader attack on financial institutions and other high-value targets. To help mitigate these risks, organizations need to lock down these channels to shore up their overall cyber defenses. Having in-depth visibility into what’s occurring on their entire digital user lifecycle, including pre- and post-login activity, will help organizations protect both their customers and their brand from the impacts of cyber fraud.”
Grant Geyer, Vice President, RSA Security Analytics
“With the proliferation of threats focused on the web portal and mobile channels, organizations need end-to-end visibility into what is occurring to protect their customers and brand. RSA Web Threat Detection is engineered to provide this visibility by analyzing click stream data during web and mobile web sessions, translating it into actionable intelligence to help organizations distinguish between legitimate and disruptive use. By providing a complete look into online behavior before, during and after authentication, organizations can detect anomalies in order to effectively mitigate fraud, business logic abuse and other malicious activity in real-time while also strengthening their overall security operations.”
The latest version of RSA Web Threat Detection will be generally available in Q3 2014.
EMC Corporation is a global leader in enabling businesses and service providers to transform their operations and deliver IT as a service. Fundamental to this transformation is cloud computing. Through innovative products and services, EMC accelerates the journey to cloud computing, helping IT departments to store, manage, protect and analyze their most valuable asset — information — in a more agile, trusted and cost-efficient way. Additional information about EMC can be found at www.EMC.com.
RSA, The Security Division of EMC, is the premier provider of intelligence-driven security solutions. RSA helps the world's leading organizations solve their most complex and sensitive security challenges: managing organizational risk, safeguarding mobile access and collaboration, preventing online fraud, and defending against advanced threats.
Combining agile controls for identity assurance, fraud detection, and data protection, robust Security Analytics and industry-leading GRC capabilities, and expert consulting and advisory services, RSA brings visibility and trust to millions of user identities, the data they create, the transactions they perform, and the IT infrastructure they rely on. For more information, please visit www.EMC.com/RSA.
RSA and EMC are either registered trademarks or trademarks of EMC Corporation in the United States and/or other countries. All other products and/or services are trademarks of their respective companies.
This release contains “forward-looking statements” as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) adverse changes in general economic or market conditions; (ii) delays or reductions in information technology spending; (iii) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (iv) competitive factors, including but not limited to pricing pressures and new product introductions; (v) component and product quality and availability; (vi) fluctuations in VMware, Inc.’s operating results and risks associated with trading of VMware stock; (vii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (viii) risks associated with managing the growth of our business, including risks associated with acquisitions and investments and the challenges and costs of integration, restructuring and achieving anticipated synergies; (ix) the ability to attract and retain highly qualified employees; (x) insufficient, excess or obsolete inventory; (xi) fluctuating currency exchange rates; (xii) threats and other disruptions to our secure data centers or networks; (xiii) our ability to protect our proprietary technology; (xiv) war or acts of terrorism; and (xv) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC Corporation, the parent company of RSA, with the U.S. Securities and Exchange Commission. EMC and RSA disclaim any obligation to update any such forward-looking statements after the date of this release.