SC Media reports that cyberattacks only took four hours and 29 minutes on average between initial access and data compromise — shorter than the threshold of identifying and remediating intrusions — with lateral movement following network infiltration achieved in only about 48 minutes on average.Accelerated cyber intrusions were not accompanied by the use of new techniques or zero-day vulnerabilities, but continued to involve phishing and social engineering schemes against high-profile targets, according to an analysis from ReliaQuest."They cast a wide net, indiscriminately targeting organizations with minimal effort and often causing significant damage," said ReliaQuest. "The year's high count of disclosed vulnerabilities provided cybercriminals with entry points, while software suppliers remained a top target as a way to infiltrate organizational networks."These findings emphasize the inadequacy of manual threat response efforts, noted Michael McPherson, senior vice president of technical operations at ReliaQuest. "We have to take advantage of automation and AI to stay ahead," McPherson added.
You can skip this ad in 5 seconds