OpenText unveils new AI tool to counter insider threats

OpenText has announced the release of 'OpenText Core Threat Detection and Response', a new AI-powered tool to combat insider threats.

Insider threats have become an increasing concern for UK businesses, with a recent Cybersecurity Breaches Survey indicating that both large and medium-sized organisations in the UK are increasingly conducting cybersecurity risk assessments to mitigate these risks. Data shows that 72% of large businesses and 63% of medium-sized businesses have taken such measures in the past year.

According to OpenText, insider-related incidents are growing in number and financial burden, with many organisations experiencing increased costs due to them. Challenges such as limited budgets and a shortage of skilled cybersecurity professionals make it difficult for businesses to detect subtle threat patterns.

OpenText's new solution leverages AI technology to enhance organisations' ability to detect insider threats. It is part of the broader OpenText Cybersecurity Cloud initiative, which aims to protect against threats inside and outside an organisation. OpenText states that their solution can potentially boost Red Team threat detection rates to over 80%.

The solution will be available on Microsoft Azure and will integrate with existing Microsoft security tools, such as Microsoft Defender for Endpoint, Microsoft Entra ID, and Microsoft Security Copilot. This integration aims to enable organisations to respond to attacks swiftly and effectively. Additionally, the solution features a threat integration studio, allowing customers to incorporate telemetry data from various sources into the system.

The importance of tackling insider threats is emphasised by figures from the 2023 Cost of Insider Risks Global Report, which highlights the significant financial impact of insider-related incidents, averaging USD $16.2 million per organisation annually. Cybersecurity talent shortages exacerbate these risks, leaving many organisations vulnerable.

Muhi Majzoub, OpenText's Executive Vice President of Security Products, stated, "Enterprises need a way to continuously adapt threat analysis to the unique behaviours of their organisation without further straining security teams. OpenText Cybersecurity Cloud represents a significant leap forward in advanced threat detection and investigation, offering a solution that is easy to use, implement, and maintain. Our composable open XDR architecture ensures that the solution can easily work with existing security tools customers may have for identity management, data loss prevention, or endpoint protection."

"We are also integrating our threat detection solutions with OpenText Content Management through easy integration kits to provide customers insights across applications, endpoints, and networks. This is part of our broader strategy to deliver holistic security solutions that protect the entire attack surface."

OpenText Core Threat Detection and Response offers various features including enhanced detection capabilities and accuracy using AI algorithms, rapid anomaly detection, adaptive learning models, and simplified deployment procedures. These are designed to reduce the time and cost associated with identifying and addressing threats.

The new solution is currently available in a limited release to select customers. According to OpenText, the broader release will allow organisations to prevent costly security incidents further and leverage existing security investments.