EMC Unveils Latest Version of RSA Web Threat Detection with End-to-End Visibility

By CIOReview | Monday, August 4, 2014

FREMONT, CA: RSA, The Security Division of EMC, has announced the latest version of RSA Web Threat Detection designed to provide enterprises with end-to-end visibility into web sessions to help mitigate risks associated with consumer-facing websites including cybercrime activity and business logic abuse.

The latest version is built to offer enhanced real-time visibility into web session activities, new mobile traffic monitoring capabilities and additional detection measures across the entire online user lifecycle to help enterprises gain greater insight into the online threat environment to more accurately detect active threats. Adding web session intelligence to an organization's overall security operations provides a unified strategy for defense in a hyper-connected world.

Enhanced visibility and big data threat correlation

RSA Web Threat Detection is engineered to add enhanced data visibility and analytics that helps enable both security and fraud teams to visualize and analyze millions of user web sessions to help identify cybercrime threats, business logic abuse, and fraudulent activities – all in real time. By correlating web intelligence into other security analytic platforms, organizations can identify, prioritize and mitigate threats with greater ease and clarity.

RSA Web Threat Detection adds real-time threat groups that leverage Big Data to link potentially threatening users and IP addresses based on similar abnormal behavior to enhance threat detection of transactions and/or users associated with known malicious online activity. Moreover, enhanced insight into a profile's history, including current and former user or IP address behavior, allows organizations to spot anomalous activity on an individual basis quickly – allowing administrators to take appropriate action.

The rise of mobile fraud

As the mobile channel continues to grow in popularity, it also becomes an attractive vehicle for fraudsters to exploit. As a result, RSA Web Threat Detection is engineered to add in new capabilities to provide visibility into mobile application traffic allowing organizations to create specific rules to help identify and mitigate mobile threats. By correlating user activity across mobile and traditional web channels in real-time, organizations can increase threat detection accuracy and keep pace with the growing demand, usage and enhanced risks this ever-growing channel presents.

Finding the needle in the haystack

A refined user interface improves the time to value and reduces overall incident investigation time. The new Analyst Summary Dashboard is designed to streamline investigations. Acting as a one-stop shop, the dashboard helps analysts to decide if deeper investigation may be needed.

With so much daily activity happening on websites and portals, it can be nearly impossible to separate criminal activity from that of legitimate customers. However, criminals do act differently and leave tell-tale signs behind in the web session. By bringing real-time Risk Indicators, Threat Scores and historical session data front and center in one view for analysts, the RSA Web Threat Detection dashboard is built to enable the rapid detection of threats in real time. Visualized web intelligence shines a spotlight on the “needle in the haystack,” even if an analyst isn't sure what “the needle” looks like.