April 23, 2024 at 09:16AM
Global organizations are detecting cyberattacks more quickly, with average detection time reaching an all-time low of ten days, down from 16 days last year. However, there are still regional variations and a significant reliance on external sources to detect intrusions. Mandiant emphasizes the need for continued vigilance and improved threat detection capabilities.
From the meeting notes, the key takeaways are:
– The average time taken by global organizations to detect cyberattacks has dropped to its lowest-ever level of ten days.
– Different regions showed varying results, with JAPAC dropping its average dwell time to nine days, which is below the current global median, but EMEA reported a worse year-on-year dwell time of 22 days.
– Mandiant’s report highlighted an increase in ransomware cases, but it also mentioned that ransomware incidents are being detected faster than previously.
– Internal intrusion detections by organizations themselves haven’t improved significantly over the years, highlighting the ongoing challenge for defenders in keeping up with sophisticated attackers.
– The combined report from Mandiant and Google’s Threat Analysis Group revealed a significant increase in the number of exploited zero-days by offensive actors, which is expected to pose challenges for defenders in the coming year.
These takeaways provide a snapshot of the current cybersecurity landscape and the ongoing challenges and improvements in detecting and responding to cyber threats.