Adlumin Solves Your Toughest Problems Using Big Data Behavior Analytics
Legacy technology needed multiple people to determine when activity was anomalous, today, Adlumin can simply collect data, apply machine learning, provide you the answers in real-time, securing your network today
Improve Network Health / Identity Eco-system
While Adlumin finds intruders in your network, we do much more. We identify Stale Accounts, Accounts with Reversible Encryption, accounts with passwords that don't expire, privileged accounts that are mis-configured, IT Operations Failures, and NIST Cyber Framework violations.
Detect Intruders / Lateral Movement
Adlumin uses sophisticated world-class activities to detect when an intruder or malicious insider is moving to systems that have not been accessed by the account in question. This is done in real-time without the organization taking any additional action on the network at all.
Quicker Incident Response
With many platforms you need to wait weeks for the answers. Adlumin gives you the answers you need in real-time without waiting to import data into an appliance, then having to program queries. With Adlumn, the analytics and report features are already programmed ready to help.
User network privileges are difficult to understand with active directory. Adlumin Platform let's you visualize authority so you know who has authorization to touch your ePHI, PCI, or other sensitive data
Adlumin helps you clean up your identity eco-system by knowing what your users are doing on your network every day. Do you really know who has access to your organizations most sensitive data
Adlumin identifies all the areas in your network health/identity eco-system that make you vulnerable. We point out weak and reversible encryption which also violate Payment Card Industry (PCI DSS) standards.
ADLUMIN INDUSTRY CLIENTS
Our financial sector clients are concerned about complying with the detailed financial regulations for their specific institutions (eg. Credit Unions, Payment Card Industry (PCI) Merchants). They have sensitive PCI data that they hold across their hybrid, on-premise and cloud based networks. They are required to know and understand who has access to their data.
Use Case: Tyler, a security professional for a Tier 1 Financial Institution was fired the previous month. He was not happy about that. Following his firing, he wondered if they deleted his user account. He logged in remotely with his user account, then switched accounts to a service account he found on the same endpoint he logged into. He downloaded 150 GB of sensitive financial data, despite the digital loss prevention software installed, because the DLP only worked on user accounts, not service accounts.
Adlumin Solution: Adlumin tracks every user account on the network 24/7. Adlumin reviewed the two account patterns of behavior and detected that this user and service account never inserted a thumb drive before and Adlumin immediately sent an alert to the system administrator who quickly closed the user and service account.
Our health care clients are concerned about the sensitive data that they hold across their on-premise and cloud based networks. They need to understand and visualize what accounts are touching sensitive protected health information (ePHI) and whether that information is being downloaded.
Use Case: Jonathan, a front desk clerk in oncology, decides it would be a great idea to download all of the current patient files on to a thumb drive, take them home and work on getting uniform information into each file.
Adlumin Solution: Adlumin tracks every user account on the network 24/7. Adlumin records the names of each file that is copied to any thumb drive across your hybrid network. It tells you thumb drive maker (e.g. Lexar), how much space was available, and how much data was copied. Jonathan no longer copies information to his thumb drive.
Federal, state, and local governments need automated cybersecurity that also helps them comply with laws such as the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Payment Card Industry (PCI). The public sector needs a product that is easily deployed and doesn't require additional personnel to operate it.
Use Case: A federal organization required a next generation cybersecurity product that didn't need to be located on-premise, that could be easily installed, and didn't use the computing resources of its agency employees. Additionally, they wanted to have the ability to ask for additional features in the future.
Adlumin Solution: Adlumin provides a User & Entity Behavior Analytics (UEBA) machine learning platform that literally deploys in minutes using whatever methodology an organization uses to deploy software (e.g. GPO, SCCM, or Big Fix). The analytics platform rests in Amazon Web Services or the Government Secure Cloud, or on-premises depending upon the needs of the organization. Specialized development can easily be done and is easily updated via AWS or Secure Gov Cloud.
Some Adlumin business clients are simply upgrading their legacy cyber security products like Security Event and Information Management (SEIM) systems that they don't keep up to date with the latest threat rules. Adlumin provides our clients substantially more insight and cybersecurity protection than multiple legacy systems. Adlumin is perfect for very large businesses that need visibility and response actions and for very small systems that require automation without requiring additional staff to run the system.
Use Case: A medium size health facility with a SEIM, antivirus, and a data aggregator did not know what it's users were doing on its network. The CISO had no idea what servers or data stores it's users were accessing or whether they were downloading sensitive data onto USB drives. They were not keeping their SEIM up to date and it was not valuable to their security posture. Additionally, they were not monitoring their HIPAA logs as required by HIPAA Section 164.
Adlumin Solution: Adlumin now provides that organization 100% visibility into every account and every endpoint on its entire network. The organization has loaded multiple server profiles onto a single HIPAA report so it knows who logs, attempts to log, or fails to log onto every HIPAA server at multiple locations and can print off that report in seconds each quarter or month. The organization got rid of its SEIM and is very happy with its new cybersecurity information source; Adlumin.
What Adlumin Customers Are Saying
Information Security Manager (April 2017)
American Public Human Services Association (APHSA)
"We have had Adlumin on our network since June of 2016. We just went through a cyber security assessment with a national assessment team. Adlumin caught the assessor's red team in real-time and notified us of the attack while it was happening. Adlumin is awesome. We didn't have to configure anything, it just works."
Chief Information Security Officer
New York Regional Health Organization
"We contacted Adlumin because we thought their automated hunting 24/7 looked interesting. Unfortunately, we are a smaller organization, and I am not able to hire a larger security team to hunt on our network. Within 24 hours, Adlumin caught six brute force attacks against multiple network accounts. I would never have even known that this was happening without Adlumin."
Management Information Supervisor
Southwest Minnesota Health and Human Services
We have had Adlumin on our network for about 8 months. Within two hours of loading Adlumin on our network, we noticed an individual actively logging in that had been fired six months before. This immediately showed us the value of Adlumin. We also had issues with contractors logging in after hours, we used Adlumin to restrict their access to working hours in seconds.