chat
expand_more

Enhanced Explainability of Account Takeovers

To detect account takeovers, Abnormal Security’s machine learning algorithms utilize many factors related to location, devices, and applications. However, until now, much of that information was not exposed to users. In an effort to be as customer-centric as possible...
Author abnormal security
Abnormal Security
March 20, 2021

To detect account takeovers, Abnormal Security’s machine learning algorithms utilize many factors related to location, devices, and applications. However, until now, much of that information was not exposed to users. In an effort to be as customer-centric as possible, we're changing that starting today.

We have made significant improvements to the explainability of account takeover cases. Within the product, we added more information to the sign-in cards, including ISP and device trust type. We also highlight why sign-ins are suspicious to provide further information to those reviewing potential account compromises. In the example below, the IP address was very rare for the user and the company, and it is also a proxy, which attackers frequently use to hide their identities.

Additionally, we are surfacing our deep knowledge of sign-in characteristics. For example, analysts can now see the common states from which the user signs in, and what operating systems they typically use. This information can be extremely helpful in terms of judging a case.

Abnormal Security excels in its accuracy in detecting account takeover attacks. Just as importantly, we are on the cutting edge of machine learning explainability so that users can understand why we think an account takeover has occurred.

To learn more about our account takeover functionality, request a demo today.

Enhanced Explainability of Account Takeovers

See Abnormal in Action

Get a Demo

Get the Latest Email Security Insights

Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.

Get AI Protection for Your Human Interactions

Protect your organization from socially-engineered email attacks that target human behavior.
Request a Demo
Request a Demo

Related Posts

B MKT628 Cyber Savvy Social Images
CISO Insights
Cyber Savvy: Protecting Vital Signs with Nicholas Schopperth, CISO at Dayton Children’s Hospital
Discover key insights from seasoned cybersecurity professional Nicholas Schopperth, CISO at Dayton Children’s Hospital.
Read More
B Podcast Blog
Company & CultureThought Leadership
Introducing SOC Unlocked: Tales from the Cybersecurity Frontline, an Abnormal Security Original Podcast
Discover 'SOC Unlocked,' Abnormal Security's new podcast featuring host Mick Leach and cybersecurity expert guests like Jeremy Ventura, Dave Kennedy, and Mick Douglas.
Read More
B 07 22 24 MKT624 Images for Paris Olympics Blog
Data & Trends
French Companies Face Olympic-Sized Cyber Threats
Threat actors are targeting French businesses ahead of the Paris 2024 Olympics. Learn how they're capitalizing on the event and how to protect your organization.
Read More
B Cross Platform ATO
Account TakeoverThreat Intel
Cross-Platform Account Takeover: 4 Real-World Scenarios
Cross-platform account takeover is an attack where one compromised account is used to access other accounts. Learn about four real-world examples: compromised email passwords, hijacked GitHub accounts, stolen AWS credentials, and leaked Slack logins.
Read More
B Why MFA Alone Will No Longer Suffice
Account Takeover
Why MFA Alone Will No Longer Suffice
Explore why account takeover attacks pose a major threat to enterprises and why multi-factor authentication (MFA) alone isn't enough to prevent them.
Read More
B NLP
Engineering
How Abnormal Security Leverages NLP to Thwart Cyberattacks
Learn how Abnormal uses natural language processing or NLP to protect organizations from phishing, account takeovers, and more.
Read More