On September 24, 2018, Alert Logic released a new customer data analysis report, the State of Threat Detection. This report was developed by our Threat Intelligence Products team, who analyzed more than 1 billion security anomalies, 7 million events, and over 250 thousand verified incidents across our 4,000+ customers' environments.
The report finds an evolution of the traditional killchain, with killchain attacks now gaining efficiency and speed by combining what was formerly the first five phases - "recon", "weaponization", "delivery", "exploitation", and "installation" - into a single action. The new killchain creates near-instantaneous attacks that make many established security practices ineffective.
The report also proposes that attackers have expanded their use of automation to launch attacks that are changing the way organizations have to assess risk. Because the attacks are highly automated and hit small-, medium-, and enterprise-sized organizations indiscriminately and at similar rates, industry and size may no longer be reliable predictors of threat risk.
Another finding of the report is that cryptojacking is now rampant. Web application attacks remain the most frequent, with SQL injection attempts compromising 43% of all attacks observed.
The report also provides best practices for remediation, cyber hygiene, improving visibility, and addressing staffing shortages to help organizations improve their security posture.
Take a look at the Critical Watch Report: State of Threat Detection 2018 and share your thoughts on the findings and how they'll help you position your business to be secure in the Comments section below.
Please sign in to leave a comment.