Logpoint UEBA is designed to identify privileged accounts and uses machine learning to do the rest. Logpoint’s UEBA continuously monitors privileged accounts to track and score activity time, authentication, access, application usage, and data movement. Logpoint UEBA then assigns a risk score to any account that deviates from the baseline, and if it continues to act anomalously, the risk score increases. In the meantime, Logpoint UEBA analytics visualizes the account’s activity and alerts the security teams.
Example – Trend of failed authentication attempts