Symantec said it now offers Advanced Threat Protection (ATP) customers a new threat detection technology used by its own research teams to uncover some of the most notable cyber-attacks in history, according Telecompaper. The Symantec Targeted Attack Analytics (TAA) technology enables ATP customers to leverage advanced machine learning to automate the discovery of targeted attacks.
TAA is the result of an internal joint-effort between Symantec’s Attack Investigation Team and a team of Symantec’s top security data scientists on the leading edge of machine learning research. Unlike traditional products, TAA takes the process, knowledge and capabilities of security experts and turns it into artificial intelligence, providing companies with elite “virtual analysts,” to allow security experts to devote their limited time and resources to the most critical attacks, instead of spending time sifting through false positives.
The technology underlying Symantec TAA is the same toolset the company used to uncover Dragonfly 2.0, a major attack that targeted dozens of energy companies in an effort to gain access to operational networks. Since its internal inception, Symantec TAA detected security incidents at more than 1,400 organisations. As reported in Symantec's Internet Security Threat Report (ISTR), Volume 23, the number of targeted attack groups is on the rise with Symantec now tracking 140 organised groups.
TAA is now available as part of Symantec’s Integrated Cyber Defense Platform for Symantec Advanced Threat Protection (ATP) customers.