The Cybersecurity Readiness podcast: Detecting Malicious Insider Threats by Monitoring User Journeys

Financial Services

Banking and Insurance

Insider Threats

Detect inside users taking advantage of credentials in corporate enterprise applications to perform malicious operations

Careless employees misusing internal business assets
Internal fraud / embezzlement in custom-built applications
An insider agent stealing information on behalf of outsiders
Disgruntled employee altering data or acting maliciously
3rd party anomalies through APIs

Impersonation

Find imposters on customer portals, bypassing MFA with stolen credentials, and attackers targeting application admins

Abuse and Misuse

Intentional embezzlement by an employee
An employee pretending to be a customer to steal funds
Teller embezzlement via cash payments
Human error
Segregation of duties in legacy systems
Superusers enabling unintended fraud by sharing credentials

THE VAULT

Think of a bank with many rooms, including a vault room with precious articles, cash, gold, jewelry, documents, etc… The bank has a main entrance, and the vault also has its own door, which people go through to deposit or withdraw their precious goods.

People walk through the front door, entering and leaving the bank. They may walk in and out of the vault and perform various activities in that room itself.

Just monitoring the vault’s door and actions doesn’t provide enough information for accurate detection of misuse and theft in the vault, as most of the people involved are performing legitimate actions there.

Analyzing the path people take from the moment they enter through the front door of the bank, as they pass throughout the hallways and rooms - to, in and from the vault - enables us to learn which journeys are normal and expected. These normal journeys provide RevealSecurity’s base for application detection.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Others