This will see their user behavior analytics capabilities integrated across their range of offerings
Israeli-American user behavior analytics-based threat solutions startup Fortscale announced today the addition of $7 million to their Series B funding, finally closing the round with a total of $11 million after receiving $4 million in November 2015.
Providing a range of security products for SMEs and enterprise, Fortscale has focused considerably on user behavior analytics as their way of weeding out malicious actors.
While some percentage of attacks are still carried out by brute force hacking, one of the primary threats facing companies today is that of attackers who possess legit credentials and can access their network. Either through spear phishing or another tactic, hackers find creative ways to take over a user’s login details, from which they can begin a lateral movement within a network to find the more valuable bits of data that they can steal.
An even scarier scenario for a company is when the threat comes not from an outside attacker but from one of their own. A disgruntled employee may opt to take a little something with them on their way out to their next job and can use their credentials to find what they are looking for.
So how do you prevent these kinds of attacks from having a significant impact on your business? Much like any other kind of threat prevention, you look for activity that falls outside the norm, based on user behavior.
Turning to on-site machine learning, Fortscale works to learn what kind of behavior makes sense for a user to be performing, picking out actions from specific users that demand added attention. This can be something like a user trying to access files that they normally do not have reason to open such as a segment outside of their purview or pay grade.
What has developed is a Hadoop-based platform with an algorithm that looks at factors such as which machines and apps are being used, what times they are being accessed, and other elements to find abnormalities in behavior.
Along with the news of the funding, Fortscale has released a new embedded user and entity behavior analytics engine product that they are calling Presidio. According to the company’s release, “Presidio adds risk-based anomalous behavior to systems that are usually rule-based and heuristic-based.”
Put another way, they are essentially adding the core value of their ability to crunch user threat activity to the rest of their product line, making them more effective. According to CEO Idan Tendler, this gives the added advantage of extra functionality for smaller teams that do not have a SOC, all without the need for more dashboards.
Once Presidio is enabled, Tendler believes that it will enrich their current offerings for end point (EDR, EPP, DLP), network (NAC), cloud (CASB), as well as identity and access management (IAM) products.
The company was co-founded in September 2012 by Tendler and COO Dr. Yona Hollander. With headquarters in the San Francisco Bay Area, Fortscale maintains an R&D facility in Tel Aviv.
Leading the funding were new investors Evolution Equity and Valor Capital. The company has previously received backing from CME Ventures and UST Group during the pre-B funding that Tendler tells Geektime was considered a strategic round. Investors from earlier rounds include Intel Capital and Blumberg Capital who took part in their Series A, as well as Shaul Shani’s Swarth that gave them their $2 million seed funding. All told following this round, Fortscale has succeeded in raising $23 million.