Help Center/ Managed Threat Detection/ FAQs/ About the Product/ What Threats Can MTD Detect?
Updated on 2022-09-26 GMT+08:00

What Threats Can MTD Detect?

MTD collects logs from IAM, VPC, DNS, CTS, and OBS and uses an AI engine, threat intelligence, and detection policies to continuously detect potential threats, malicious activities, and unauthorized behaviors, such as brute-force cracking, penetration attacks, and mining attacks. You can view alarms on a graphical dashboard.

MTD uses an elastic profile model, unsupervised model, and supervised model to detect abnormal behaviors in seven high-risk scenarios, including risky passwords, credential leakage, token exploitation, abnormal delegation, remote logins, unknown threats, and brute-force cracking. Therefore, MTD can detect distributed brute-force attacks even if they occur with low frequency. MTD can effectively detect the Linux.Ngioweb botnet, SystemdMiner Trojans, WatchBog Trojans, and Bad Rabbit ransomware.