Changelog
Back to All
improved

Enhanced Event Details Panel: Visualized Risk & Anomaly Scores, Richer Metadata, and Impossible Travel Alerts

December 19th, 2024

🚀 Improvements Alert 🚀

We’ve made significant updates to the Event Details Panel in Event Explorer to make threat detection more actionable, intuitive, and easy to verify. Verosint is the Identity Threat Detection and Response (ITDR) solution that helps you detect, investigate, and respond to threats confidently.

What’s Improved?

1️⃣ Risk & Anomaly Score Donut Charts

  • Added visually intuitive donut charts for Risk Score and Anomaly Score in the Event Details Panel.
  • Enables faster assessment of an account’s threat level.
Risk & Anomaly Score donut charts in the Events Detail Panel

Risk & Anomaly Score donut charts in the Events Detail Panel

💡PRO TIP: Hovering over slices of the Anomaly Score donut chart reveal the factors that contributed to the Anomaly Score. In the example above, the Country from which the IP was seen on this event contributed 13% to the Anomaly Score = 80.

2️⃣ Expanded Metadata and Context

  • Added several new data fields so you have richer context for investigations.
  • Displaying more metadata, now organized by first-class attributes (e.g., IP Address, Device, etc.).
  • Provides richer context for each event, helping you quickly determine if further investigation is needed.
Added more data to the Event Details Panel for richer context

Added more data to the Event Details Panel for richer context

3️⃣ Impossible Travel Alert

  • Added a dedicated alert in the Event Details Panel for Impossible Travel incidents.
  • Displays key details in a clear and visually intuitive format for quicker verification.
Impossible Travel alert specifies the last known and current location of a user, and the impossible speed they would have to travel between the two locations

Impossible Travel alert specifies the last known and current location of a user, and the impossible speed they would have to travel between the two locations

Why Does This Matter?

  • Actionable Threat Detection: Visual enhancements like the Risk and Anomaly Score charts, combined with detailed metadata, help you verify threats faster and with more confidence.
  • Better Context = Better Decisions: By organizing metadata into intuitive categories, we enable quicker identification of suspicious activities and anomalies.
  • Simplified Validation: Impossible Travel alerts now provide clearer evidence of potential account misuse, allowing you to take decisive action sooner.
  • Seamless Workflow: These updates to our Event Details Panel ensure context is just a click away. The Event Details Panel can be accessed from the ATO threat card or the Event Explorer.

These updates are all about empowering you to make threat detection and response both smarter and more effective. Let us know what you think or if you have any questions—we’d love your feedback! 😊 ›