Re: Yes, there are concepts for that...
that requires setting up full auditing on the database servers, which usually are dealing with a good load already; having it log every single query and transaction puts a fairly good dent in performance, not to mention that you will then need to put all that extra data somewhere, run an analysis against that data set to look for those patterns, eliminate false positives (admins checking things, poorly designed applications inflicting brute force and ignorance queries on the engine, etc.) and then look at the 'interesting' ones closer.
that can be a significant amount of overhead for what may essentially be nothing.
I'm not saying that it's not possible, I'm saying that it's expensive.
Biting the hand that feeds IT
