User and Entity Behavior Analytics
The User and Entity Behavior Analytics Module (UEBAM) is a collection of AI Engine rules designed to detect unusual or malicious user activity that is occurring within your organization.
The UEBA Module contains licensed content that is available only to customers with a valid subscription.
Module Revisions
The following table summarizes the changes that have been made since the last release (3.1) of the User and Entity Behavior Module.
AIE Rule ID | AIE Rule Name |
---|---|
New | |
1598 | Exabeam and File (NGFW) Detection |
1599 | Exabeam and Location Watch List |
1600 | Exabeam and Recent User Location |
1601 | Exabeam and Sensitive Data (NGFW) Detection |
1602 | Exabeam and User Recently Added to a Privileged Group |
1603 | Exabeam and User related Security Classification Event:Impacted User |
1604 | Exabeam and User related Security Classification Event:Origin User |
1605 | Exabeam Multiple O365 Downloads |
1606 | Exabeam Multiple O365 Files Del:1st |
1607 | Exabeam Multiple O365 Files Del:2nd |
1608 | Exabeam New Host & User Pass Change |
1609 | Exabeam Threat Event |
1610 | Exabeam Threat Event and Identity Lists |
1611 | Exabeam User Score & Pass Modified |
1612 | Exabeam Multiple User Threat Events |
UEBA Module Contents