The document discusses user and entity behavior analytics (UEBA), which analyzes user and system behavior to detect threats and anomalies. UEBA goes beyond traditional security information and event management (SIEM) tools by using machine learning instead of rule-based detection. UEBA vendors study behaviors at the user, application, device and server levels to create profiles and detect deviations that could indicate insider threats, data exfiltration or compromised accounts. The UEBA market is growing as organizations increasingly need to detect complex, unknown threats like insider threats. UEBA has limitations but can be a valuable part of a security analytics platform when integrated with other tools.