Abnormal Security announced it has joined the Microsoft Intelligent Security Association (MISA). Abnormal was nominated for membership based on how its platform uses Microsoft Azure Active Directory APIs (SIGNIN, ALERT, USER, GROUP, DIRECTORYOBJECT, RISKDETECTION, DOMAIN) to model and understand known good behavior, and thereby precisely detect and remediate socially-engineered, business email compromise (BEC) attacks, including account takeover.
MISA is comprised of independent software vendors and managed security service providers that have integrated their solutions to help customers better defend themselves against cyber threats. The Abnormal AI threat detection engine integrates with the Azure Active Directory APIs listed above and then models the identity of both employees and external senders to create relationship graphs and analyze email content to detect BEC attacks.
Since these socially-engineered and high-value attacks are hyper-targeted and text-based, identity modeling via Azure Active Directory APIs enables Abnormal to detect compromised employee or vendor email accounts. Secure Email Gateways (SEGs) that rely on typical threat intelligence signals may miss these types of attacks.
“Business email compromise is the most expensive enterprise security threat facing enterprises today, with more than $2.1B in financial losses due to BEC last year alone,” said Evan Reiser, CEO, Abnormal Security. “Thanks to the rich array of signals we receive from Microsoft Azure Active Directory APIs, we’ve consistently and successfully detected and prevented BEC attacks for our customers. Microsoft shares our vision of driving meaningful impact for businesses around the world. As a Microsoft partner in the MISA ecosystem, Azure Active Directory integration is critical to Abnormal’s ability to prevent BEC and the very real threat these novel, sophisticated attacks present.”
In November 2020, Abnormal closed a $50 million Series B funding round, bringing its total capital raised to date to $75M. In March, the company was recognized as one of Fast Company’s “World’s Most Innovative Companies for 2021,” named a finalist for the RSA Conference 2021 Innovation Sandbox Contest and announced the appointment of Mike Britton as Chief Information Security Officer. Abnormal is currently available in the Microsoft Azure Marketplace.
“The Microsoft Intelligent Security Association has grown into a vibrant ecosystem comprised of the most reliable and trusted security software vendors across the globe,” said Maria Thomson, Microsoft Intelligent Security Association Lead. “Our members, like Abnormal, share Microsoft’s commitment to collaboration within the cybersecurity community to improve our customers’ ability to predict, detect and respond to security threats faster.”
from Help Net Security https://ift.tt/3mz5TGg
0 comments:
Post a Comment