The whys and hows of machine learning for cyber security: does it live up to the hype?

Machine learning helps organisations with the problems they face when detecting and investigating compromised users Traditional security solutions have relied on rules, signatures and blacklists to prevent security attacks. These solutions are effective at finding the ‘known bad’ but are increasingly ineffective in helping organisations detect the ‘unknown bad,’ which include most modern, advanced attacks. These types of attacks are now the norm as hackers are more sophisticated and users are more mobile, increasing the enterprise attack surface. But machine learning allows security analysts to use math and algorithms to detect attacks and risky behaviors that have bypassed traditional detection systems without relying on rules, signatures or blacklists. Additionally, machine learning is well suited to take advantage of the large volumes of data produced by cybersecurity systems, enabling companies to…


Link to Full Article: The whys and hows of machine learning for cyber security: does it live up to the hype?