3 min
Malware
Malware and Advanced Threat Protection: A User-Host-Process Model
In today's big data and data science age, you need to think outside the box when
it comes to malware and advanced threat protection
[https://www.rapid7.com/fundamentals/what-is-advanced-threat-protection-atp/].
For the Analytic Response team at our 24/7 SOC in Alexandria, VA, we use three
levels of user behavior analytics to identify and respond to threats. The model
is defined as User-Host-Process, or UHP. Using this model and its supporting
datasets allows our team to quickly neutralize and pr