The latest industry survey from Deep Instinct is reporting Incident Response to Cyberattacks Take Over Two Working Days, According to Latest Industry Survey. The second edition of Deep Instinct’s bi-annual Voice of SecOps Report shows that fully 83% of cybersecurity professionals were dissatisfied with current EPP and EDR solutions. Report excerpts:
The average global response to a cyberattack was found to be 20.9 hours—more than two “working” days. … survey respondents were uncertain whether it is possible to prevent the constant waves of attacks from cybercriminals. In addition, security operations professionals cite threats from within as a persistent issue; 86 percent do not have confidence that their fellow employees will not click on malicious links, easily allowing threats into an environment and initiating an attack or breach.
- Concerns about addressing cyberattacks:
- The lack of threat prevention specific to never-before-seen malware (44%) is a top concern.
- Hidden persistence, whereby threat actors discreetly maintain long-term access to systems despite disruptions such as restarts or changed credentials, is the most feared tactic used by attackers to launch large-scale attacks (40%).
- Lack of qualified SecOps staff (35%) causes challenges for incident response, especially amongst those working in healthcare (52%) and the public sector (55%).
- Complete endpoint security coverage remains elusive:
- Nearly all of those surveyed (99%) believe they don’t have every endpoint in their company secured by at least one agent.
- One-third (32%) of respondents claim that every endpoint has the same level of protection, with a majority of 60% claiming they are unable to consistently block threats across endpoints.
An expert with Cyvatar offers insight.