Quest Software has announced the availability of On Demand Audit (ODA) anomaly detection to protect against ransomware by detecting anomalous activity in hybrid Active Directory and Microsoft 365 environments. As ransomware remains a prominent threat to organizations, ODA anomaly detection acts as an added layer of protection by detecting significant surges in activity that could be indicative of an attack or compromise so organizations can stop attackers before they get into their environments.
ODA combines monitoring of critical indicators of compromise (IOCs) to detect and thwart intrusions with advanced analytics to detect anomalous increases in user activity that can be indicative of an attack in progress. By automatically analyzing large volumes of events to proactively notify users of irregular or inconsistent activity that require investigation, organizations don't have to wait for intruders to make themselves known before acting. This early detection feature allows attackers to be stopped before significant damage occurs. ODA anomaly detection presents anomalies in context to illustrate true threats and speed investigations, eliminating the need to spend days chasing false positives, saving time and resources.
“Ransomware isn’t going away. Attack volume is increasing, and attacks are becoming more impactful,” said Michael Tweddle, President and General Manager, Quest Microsoft Platform Management business. “On Demand Audit anomaly detection enables organizations to fight back and eliminate intruders before attacks can escalate. Having a backup in place is no longer enough; organizations need the kind of protection that puts a spotlight on potentially anomalous behavior before it becomes an all-out attack.”