From helpnetsecurity.com
thatDot released Novelty Detector, a real-time graph AI for cybersecurity anomaly detection on categorical data built on their open source streaming graph, Quine.
Only Novelty Detector’s patent-pending technique uses categorical data to score streaming data in real time to detect malicious behavior much sooner in the kill chain and with fewer false positives and lower analyst effort.
Traditional anomaly detection ignores categorical data, instead relying strictly on numerical data and statistical analysis, which breaks down in the face of high data dimensionality and produces massive volumes of false positives and alert fatigue for SOC analysts. Malicious activity remains undetected or is detected too late in the kill chain to prevent exposure and damage.