Data Leak
Brief
Data leak is when a malicious insider illicitly and deliberately transfers data outside of an organization.
To detect data leak threats, many organizations rely on data loss prevention (DLP) tools, but detection from these tools depends primarily on static rules. Correlation rules, unfortunately can be either too broadly or narrowly defined, and result in noisy alerts with low fidelity or the risk of missing instances of a data leak. Additionally, malicious insiders may know the organization’s security thresholds (for example how much outbound data transfer would trigger an alert), this can allow them to remain just under the threshold to avoid detection.
Exabeam helps security and insider threat teams outsmart threats from insiders leaking data with the support of automation and use case content across the full analyst workflow, from detection to response.
