This solution was created in response to the growing popularity of the remote desktop attack method among cybercriminals. A popular method is to impersonate an organization during a phone call (vishing). Clients are attacked by cyber criminals through manipulation and exploitation of the ignorance. They are often unaware that through sharing their desktop, they enable criminals to gain access to confidential data, banking or other services, and thus account takeover (ATO).

Remote Desktop Detection allows to reveal unauthorized hijacking of the device and determine the security of the session. It has two anomaly detection mechanisms, active and passive, which work together to ensure high efficiency of remote desktop event detection.

Active detection is a mechanism that diagnose device configuration. It enables to detect remote desktop detection. It recognizes many commonly used desktop sharing applications and thus allows you to determine which application has been used.

Passive detection consists of behavioral analysis through an intelligent algorithm developed using artificial intelligence and then optimized to detectdeviations from typical user behavior instantly. This mechanism allows you to diagnose the takeover of the device.

PREBYTES supports the process of protecting the service and the user through regular tests. As part of the detection improvement process, simulated attacks are carried out using available real devices.