What is user and entity behavior analytics?

User and entity behavior analytics, or UEBA, uses machine learning and statistical analysis to establish baseline patterns of normal behavior for users and devices, then detects deviations that may indicate security threats. It can identify compromised accounts by detecting unusual login times, locations, or data access patterns; insider threats by detecting unusual data downloads or access to unrelated systems; and lateral movement by detecting accounts accessing systems they have never used before.