Apparently EMC’s security division was so excited about the next RSA Silver Tail dot release it couldn’t wait a few weeks until its annual event, RSA Conference 2014. Either that or there is so much more exciting news to be announced at the end of February that it wanted to get any distractions out of the way before the security industry gathers in San Francisco. In addition to some new bells and whistles, including insight into third-party functionality embedded in Websites, the latest version, which will go GA on the 18th, also comes with a new name, RSA Web Threat Detection (v4.6).
What happens after a Web session passes off a user to a third-party site, i.e. online bill payment, has always been a blind spot for fraud and security teams, said Amy Blackshaw, Senior Product Marketing Manager, RSA. Almost half (46%) of all bills are paid online via a biller, bank or credit union Website, most of which are hosted outside of the financial institution’s Website. This blind spot has been the elephant in the room for RSA’s customers, she said.
It is in fact a huge problem according to a report to be released at the RSA conference by Lookingglass Cyber Solutions. The survey of Global Financials and their third party suppliers found that 100% of the third parties showed signs of compromise or indicators of threat, including botnets, ransomware, malicious actions, malware as well as variants like Zeus and Conficker for which known fixes have been available for years
“Without visibility into that third party traffic, the site is vulnerable to an attack or malware launched by cyber criminals from that embedded application,” said Blackshaw. The new release provides visibility into any third party embedded application, which will drive faster and more accurate detection, and consequently mitigation, of attacks that may be occurring in a compromised web session, she said.
The last major Silver Tail update, 4.0, was released in June 2013 and represented the culmination of 18 months of efforts on two fronts, analytics and user experience. That’s not bad when you consider that EMC bought Silver Tail Systems, a provider of Web session intelligence and behavioral analytics for fraud and cybercrime detection, just under 8 months earlier.
At the time of the acquisition, Enterprise Management Associates said it signals the growing validation of data-driven security tactics, as enterprises – and the vendors that serve them – recognize that effective analytics are the key to understanding the evidence of threats that too often escape detection. Just after it unveiled Red Tail 4.0, RSA was named a leader in the Gartner 2013 Magic Quadrant for Web Fraud Detection.
In his blog about the new release Jason Sloderbeck, Director, Product Management, said the name may be new, but the focus remains the same. “RSA Web Threat Detection leverages Big Data to enable both security and fraud teams to visualize and analyze millions of user web sessions to identify security threats, business logic abuse, and fraudulent activities – all in real time.”
In addition to the third-party visibility, the new release also features enhanced threat detection through additional scores and event types tuned to provide new analytics to the system’s streaming analytics. There are also more refined rule writing capabilities to enable a more strategic and efficient response to different types and levels of online threats, as well as flexible and advanced transaction search to find suspicious patterns more quickly.
Given the daunting results of third-party financial sites, it should come as no surprise that almost all of RSA’s existing customers, around 95%, “have already raised their hand to the third-party visibility,” said Blackshaw. “From a competitive standpoint, our innovation within third-party viability is unmatched.”