UEBA 🟢 Protection
User and Entity Behavior Analytics (UEBA) is an advanced category of cybersecurity solutions that uses artificial intelligence and machine learning to detect anomalous and potentially malicious behavior by users and entities within a computer network.
In simple terms, the UEBA does not simply look for signatures of known attacks (as traditional antivirus software does) or check predefined rules (as firewalls do). The UEBA learns what is 'normal' for each user and each entity (machines, applications, servers, etc.) and alerts you as soon as any behaviour deviates from this norm.