Microsoft has announced the launch of Advanced Threat Analytics (ATA), an on-premise security tool that identifies potential cyber threats in a system or network.
ATA acts by automatically analysing, learning and identifying normal and abnormal behaviour of users, devices and resources, according to Microsoft.
The platform, set for general release in August, identifies known malicious attacks and security problem and presents the information in a social media-like timeline. ATA also has mobile support, email alerts and behavioural analytics.
The tool is based on technology from Israeli enterprise security firm Aorato, which was acquired by Microsoft in November 2014.
“Without a strong defence system in place, the identities and bank accounts of individuals can be hacked, businesses stand to lose customers, and companies can lose control of trade secrets,” warned Microsoft.
Brad Anderson, vice president of the enterprise client and mobility team at Microsoft, said firms needed to be given clearer, more insightful information on security threats, claiming existing security platforms are cumbersome.
“They create way too many false positives, they take years to fine tune, and the reports they generate are nearly impossible to read and understand quickly,” he said.
Idan Plotnik, former CEO of Aorato who is now working at Microsoft, added that years of investigating cyber attacks had uncovered major problems with traditional security defences.
“You cannot detect pass-the-ticket or forged PAC attacks with just log files or only analysing real-time events. That is why many security monitoring and management solutions fail to show you the real picture and provide false alarms,” he said.
“We’ve taken a different approach with Microsoft ATA. Our secret sauce is our combination of network Deep Packet Inspection, information about the entities from Active Directory and analysis of specific events.”
Meanwhile, Microsoft is rolling out Azure Rights Management support for the iPad and iPhone versions of Office.
This provides encrypted messaging in Office 365 and rights management protections for data when being shared across platforms.
“While you can view the rights-protected documents with this release, the capability to create, edit and publish rights-protected documents will be released at a later date,” said Microsoft.
This follows the release of Advanced Threat Protection (ATP) from Microsoft earlier this year. ATP provides up-to-the-minute threat protection for Exchange Online, offering increased defence against spam and malware.