LightCyber™ behavioral analytics from Palo Alto Networks® empowers you to stop active attackers and malware operating inside your network. LightCyber prevents data breaches by learning the expected behavior of users and devices and then detecting behavioral anomalies indicative of attack. After LightCyber detects a network attack, it interrogates the attack source to determine which endpoint process initiated the attack and then analyzes that process in the cloud to identify malware, allowing your security analysts to swiftly confirm and shut down threats.
LightCyber cuts through the noise of security alerts to find the threats that matter. It builds a comprehensive model of user and device behavior with over 1,000 learned behavior dimensions to find anomalous activity. When alerts are fired, LightCyber provides detailed investigative information related to the alerted behavior, including the source process, user credentials, domain and other information to help security teams detect and remediate threats.
LightCyber prevents cyberattacks from compromised users and devices across the attack lifecycle. Designed by cyberwarfare experts, LightCyber detects network-based attacker behaviors that attackers cannot conceal and links them to the endpoint process, whether malicious or benign, that was used in an attack.
LightCyber prevents the following threats:
To add valuable insight to network alerts, LightCyber Pathfinder can analyze Windows® and Linux systems to determine which executables generated suspicious traffic. Once identified, the LightCyber Cloud Expert System can detonate suspicious files in a virtual sandbox and examine them using virus scanning engines to determine if they are malicious. With LightCyber Pathfinder, security teams can verify attacks and find malware on endpoints without needing to install bulky endpoint agents.
Machine learning empowers organizations to prevent internal network attacks, including attacks that do not involve known exploits or malware. By performing unsupervised machine learning with the right inputs and detection algorithms, LightCyber can detect the anomalies and behavioral changes indicative of an attack. LightCyber combines powerful network-based machine learning technology with agentless endpoint inspection and cloud intelligence to automatically detect and eliminate critical risks in the network.
Detecting attacks is great; stopping them is even better. By integrating with Palo Alto Networks next-generation firewalls, security analysts can isolate compromised devices from the network with one click. Alternatively, administrators can disable user accounts in Active Directory® or terminate malicious endpoint processes from the LightCyber console. For automated remediation, LightCyber integrates with leading IT process automation systems. Eliminating network threats quickly has never been easier.
LightCyber from Palo Alto Networks mitigates targeted attacks, malware, insider threats and risky behavior while avoiding burdensome manual configuration or requiring hefty logging and storage demands. With LightCyber, organizations can detect and stop attackers early, before data is compromised.
LightCyber Behavioral Analytics
LightCyber closes the gap in breach detection by detecting attack behaviors and enabling security analysts to rapidly – or automatically – mitigate attacks. Download the datasheet to view LightCyber’s benefits and technical specifications.
View now >