Prevention is still the main pillar of corporate cybersecurity, says the report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ from Kaspersky Lab. However, if an attack has already come through, detection and response are critical: immediate detection reduces the average cost of recovery more than twice — from $1.2m to $456K for enterprises.

 

In light of recent advanced attacks and epidemic outbreaks like WannaCry and ExPetr, organizations should now be asking themselves ‘what happens when I get hit?’. But with businesses finding it hard to even identify when a security breach has happened, that, according to the report, is an extremely difficult question to answer.

 

Complex attacks and growing uncertainty

 

Cybercriminals, their skillsets and weapons, vary dramatically – from less sophisticated crooks that bully the least protected companies by striking at mass, to advanced military-like groups of hackers that target ‘big prizes’ with multi-layered operations that may not even involve any malware.

 

And while it is relatively simple to escape a bully’s sloppy fists, when encountering a skillful attacker, you should be prepared to take a solid punch.

 

This year’s study reveals that targeted attacks have become one of the fastest growing threats in 2017, increasing in overall prevalence by 11% for large enterprises.

 

It is not only about the quantity of attacks: two-thirds of respondents (66%) in the study agreed that threats are becoming more complex and for 52% it’s becoming difficult to tell the difference between generic and complex attacks.

 

This is becoming a major problem for businesses: they’re starting to realize that a security breach will happen to them at some point (57% compared to 51% last year), but they are still unsure on the most effective strategy to respond to these threats (42%).

 

The scale of the problem is even more worrying as the study showed us that uncertainty is significantly higher (63%) among respondents who are IT security experts and are, therefore, more familiar with the issue.

 

The best incident response mix: technology, people and processes

 

Surprisingly, and despite the high level of uncertainty about their strategies, the majority of companies (77%) believe that they spend enough or even overspend on protection from targeted attacks.

 

This is perhaps due to how threat protection is perceived: threats are sometimes merely seen as a technical problem to be solved through buying and deploying more advanced cybersecurity solutions.

 

A more balanced approach to incident response, however, includes investing not only in the right technologies, but also in people with specific skillsets, and in the right processes.

 

Technology is one of the most important parts in this mix. As the study shows, there is a clear need for security solutions that go beyond prevention and provide a more complete package, also adding a detection and response functionality.

 

For example, 56% of businesses agree that they need better tools to detect and respond to advanced persistent threats (APTs) and targeted attacks.

 

This is especially true, given the fact that detection speed is crucial in reducing the financial impact of an attack. According to the research, in the last year just a quarter (25%) of companies discovered their most serious security incident within a day.

 

However, immediate detection significantly lowers the average cost of recovery – for example from $1.2m for enterprises that take more than a week to detect the threat, to $456K for those that can detect a threat straight away.

 

People are another crucial component. 53% of businesses agree that they need to employ more specialists with specific experience in IT security, namely in SOC management, incident response and threat hunting – a figure that jumps to 61% among enterprises.

 

This is not surprising, as a lack of internal experts increases a company’s exposure to targeted attacks by 15%, and also increases the average financial impact of an attack on enterprises – from $930K to $1.1M.

 

But all in all, to be able to effectively combat complex cyberthreats, organizations also need to think about incident response as a process, not a destination. This means that there’s a need for a comprehensive incident investigation framework, comprised of always-on monitoring, advanced detection and critical security event mitigation.

 

‘Now that companies are starting to realize that cybersecurity breaches are a real risk to their business continuity, it’s time to give incident response the attention it deserves. It can no longer be a small part of the IT security department’s responsibilities, and should instead involve strategic planning and investment at the highest level. For organizations, this doesn’t mean becoming risk-free but it will certainly help to become risk-ready and survive a serious breach when it happens”, says Alessio Aceti, Head of Enterprise Business Division at Kaspersky Lab.

 

To read the full report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ please visit our blog. The full report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ is available here.

 

Kaspersky Lab offers solutions that cover the various needs of enterprise companies related to endpoint protection, DDoS protection, cloud security, advanced threat defense and cybersecurity services. To learn more about our Next Generation enterprise portfolio, please visit our website.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 1 March 2018 2:38 PM | 538 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications.... See More
 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 2:38 PM | 538 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications...See More

 
Kaspersky Lab Appeals U.S. Department of Homeland Security Debarment
Techworld Date Posted: 19 December 2017 11:46 AM | 290 Views
Kaspersky Lab announced today that it is seeking an appeal in federal court of U.S. Department of Homeland Security’s (DHS) decision on Binding Operational Directive 17-01 banning the use of the company’s products in.... See More
 
Kaspersky Lab Appeals U.S. Department of Homeland Security Debarment
Techworld Date Posted: 11:46 AM | 290 Views
Kaspersky Lab announced today that it is seeking an appeal in federal court of U.S. Department of Homeland Security’s (DHS) decision on Binding Operational Directive 17-01 banning the use of the company’s products in...See More

 
D-Link Partners with PSITE to Elevate IT Education in PH
Techworld Date Posted: 24 March 2018 4:16 PM | 489 Views
Reflecting its support for quality IT education in the Philippines, leading global supplier of networking products D-Link International Pte. Ltd. has entered into a partnership with the Philippine Society of Information Technology Educators Foundation,.... See More
 
D-Link Partners with PSITE to Elevate IT Education in PH
Techworld Date Posted: 4:16 PM | 489 Views
Reflecting its support for quality IT education in the Philippines, leading global supplier of networking products D-Link International Pte. Ltd. has entered into a partnership with the Philippine Society of Information Technology Educators Foundation,...See More

 
Free Content Now Available for DRAGON BALL XENOVERSE 2
Techworld Date Posted: 23 January 2018 4:46 PM | 264 Views
BANDAI NAMCO Entertainment Asia is pleased to share details about DRAGON BALL XENOVERSE 2 as new playable characters from the Tournament of Power in Dragon Ball Super. See More
 
Free Content Now Available for DRAGON BALL XENOVERSE 2
Techworld Date Posted: 4:46 PM | 264 Views
BANDAI NAMCO Entertainment Asia is pleased to share details about DRAGON BALL XENOVERSE 2 as new playable characters from the Tournament of Power in Dragon Ball SuperSee More

 
Transcend’s Gives Advice in Selecting the Right Dashcam for Your Needs
Techworld Date Posted: 20 September 2017 11:06 AM | 275 Views
The dashcam, or dashboard camera, has become an essential vehicle accessory primarily because of solid evidence that it aids with self-protection. Transcend Information Inc., a leading manufacturer of storage and multimedia products, has come.... See More
 
Transcend’s Gives Advice in Selecting the Right Dashcam for Your Needs
Techworld Date Posted: 11:06 AM | 275 Views
The dashcam, or dashboard camera, has become an essential vehicle accessory primarily because of solid evidence that it aids with self-protection. Transcend Information Inc., a leading manufacturer of storage and multimedia products, has come...See More

 
Fortinet Recommended in NSS Labs Next-Generation Intrusion Prevention System (NGIPS) Test
Techworld Date Posted: 16 November 2017 10:31 AM | 504 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Next-Generation Intrusion Prevention System (NGIPS) group test report.. See More
 
Fortinet Recommended in NSS Labs Next-Generation Intrusion Prevention System (NGIPS) Test
Techworld Date Posted: 10:31 AM | 504 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Next-Generation Intrusion Prevention System (NGIPS) group test report.See More

 
PLDT Home Launches the All-New Fam Cam
Techworld Date Posted: 1 March 2019 4:44 PM | 146 Views
As more Filipinos continue to embrace a digitally-powered lifestyle, the country’s digital services leader recently unveiled an all-new Fam Cam with sleek and improved security coverage for the home. . See More
 
PLDT Home Launches the All-New Fam Cam
Techworld Date Posted: 4:44 PM | 146 Views
As more Filipinos continue to embrace a digitally-powered lifestyle, the country’s digital services leader recently unveiled an all-new Fam Cam with sleek and improved security coverage for the home. See More

 
SILVERSTONE TECHNOLOGY LAUNCHES 2018 PRODUCT LINE
Techworld Date Posted: 4 May 2018 3:22 PM | 547 Views
SilverStone Technology Co., Ltd. (SST), one of the biggest designers and manufacturers of computer parts and accessories in the world introduces their 2018 product line in the Philippines with a Launch Party for its.... See More
 
SILVERSTONE TECHNOLOGY LAUNCHES 2018 PRODUCT LINE
Techworld Date Posted: 3:22 PM | 547 Views
SilverStone Technology Co., Ltd. (SST), one of the biggest designers and manufacturers of computer parts and accessories in the world introduces their 2018 product line in the Philippines with a Launch Party for its...See More

 
Over One Third of All Phishing Attacks Target Financial Sector Customers in Second Quarter of 2018
Techworld Date Posted: 22 August 2018 1:42 PM | 357 Views
In the second quarter of 2018, Kaspersky Lab’s anti-phishing technologies prevented over 107 million attempts to visit phishing pages, of which 35.7% were related to financial services and targeting customers through fake banking or.... See More
 
Over One Third of All Phishing Attacks Target Financial Sector Customers in Second Quarter of 2018
Techworld Date Posted: 1:42 PM | 357 Views
In the second quarter of 2018, Kaspersky Lab’s anti-phishing technologies prevented over 107 million attempts to visit phishing pages, of which 35.7% were related to financial services and targeting customers through fake banking or...See More

 
Transcend Expands Personal Cloud Possibilities with StoreJet Cloud 110N/210N Series
Techworld Date Posted: 20 July 2018 11:05 AM | 404 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, today announced two new additions to its StoreJet Cloud family: the 1-bay SJC110N and 2-bay SJC210N.. See More
 
Transcend Expands Personal Cloud Possibilities with StoreJet Cloud 110N/210N Series
Techworld Date Posted: 11:05 AM | 404 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, today announced two new additions to its StoreJet Cloud family: the 1-bay SJC110N and 2-bay SJC210N.See More


Power by

Download Free AZ | Free Wordpress Themes