Cyberhaven Launches Data Detection and Response Tool to Stop Insider Threats

Check out the Low-Code/No-Code Summit on-demand sessions to learn how to successfully innovate and achieve efficiencies by enhancing and scaling citizen developers. Watch now.


The worst threats often come from within. Employees who click on phishing emails, select weak passwords, or even sell credentials to third parties can trigger a data breach that costs millions. The problem is that there aren’t many solutions available to prevent negligent and malicious insiders from leaking information.

That’s why today, Cyberhaven announced the launch of the Insider Threat Platform, which it claims is the industry’s first data detection and response (DDR) platform that can prevent data breaches in real time. The solution has the ability to detect data misuse and theft, and can automatically intercept an attacker extracting data.

For enterprises, this approach offers the ability to reduce the possibility of malicious and negligent insiders leaking information themselves or giving other threat actors access to the environment. In short, it provides better protection for intellectual property and other high-value data, the company says.

The reality of insider threats

The release comes as insider risk is becoming a bigger threat to business data. In fact, insider threats are so common that nearly one in ten employees (9.4%) extract data over a six-month period.

Event

smart security summit

Learn about the critical role of AI and ML in cybersecurity and industry-specific case studies on December 8. Sign up for your free pass today.

Register now

More broadly, customer data is the most common type of sensitive data taken (accounting for 44.6% of incidents), followed by source code (13.8%).

At the same time, employee access to critical data becomes a critical risk when they change jobs.

“Over the last several years, we have witnessed an increase in employees changing jobs and, in many cases, bringing their former employer’s intellectual property with them when they join a competitor,” said Howard Ting, CEO of Cyberhaven. . “Businesses in all industries are increasingly having to deal with employees and contractors working on behalf of foreign adversaries stealing product designs and user data.”

In many cases, these insider threats are not caused by malicious activity, but by users with privileged credentials making honest mistakes.

“I think we all share something using a collaboration tool or email and when you type the recipient’s name, it auto-completes to the wrong person and you quickly hit send,” Ting said.

Cyberhaven’s answer to this problem is to use its data lineage and graphing engine to extract information about user behavior and correlate it with information about what data is classified as sensitive. It’s an approach that can automatically detect and stop insider risks, as well as alert security teams.

Data-Centric Security and DLP Solutions

Cyberhaven’s new solution sits loosely within the data-centric security market, which researchers valued at $3.39 billion in 2020 and estimate will reach $17.12 billion by 2028.

One of Cyberhaven’s main competitors is Forcepoint, which offers a data loss prevention (DLP) solution designed to prevent data exfiltration with real-time auditing of user behavior, behavior analytics, and unified policy enforcement.

Another contender is Symantec, with its own DLP solution that can identify data in on-premises and cloud environments to protect it from exposure in real time.

However, Ting argues that the key differentiator between Cyberhaven’s platform and its competitors is its preventative capabilities.

“One of the things we hear from customers over and over again is that they don’t just want to be alerted to insider threats, they want to stop them, and that’s what our product does,” Ting said. “Before now, security products analyzed data and behavior in isolation, and by analyzing them together, we were able to detect much more accurately when there was an insider threat.”

VentureBeat’s mission is to be a digital public square for technical decision makers to gain insights into transformative business technology and transact. Discover our informative sessions.

Leave a Comment