SYDNEY, April 3 — Carbon Black (NASDAQ: CBLK), a leader in cloud-delivered, next-generation endpoint security, today announced the release of its latest Global Incident Response Threat Report, aggregating key findings from IR partner investigations during the past 90 days.
Carbon Black’s 100+ IR partners conducted more than 500 response engagements in 2018 and continue to use Carbon Black solutions in more than one engagement per day, on average. The insights from the GIRTR chronicle Carbon Black partners’ experiences during these critical engagements.
Key findings include:
● Half of today’s surveyed attacks leverage ‘island hopping’, the report noted, meaning attackers are not only after a network, but supply chains as well
● More than half of survey respondents (56%) encountered instances of counter-incident response in the past 90 days
● 70% of all attacks now involve attempts at lateral movement, according to the survey results, as attackers take advantage of new vulnerabilities and native operating system tools to move around a network
● Nearly a third (31%) of targeted victims now experience destructive attacks, the survey noted — an alarming byproduct of attackers gaining better and more prolonged access to targets' environments.
"Attackers are fighting back. They appear to have no desire to leave the environment. And they don’t just want to rob an organisation and those along its supply chain. In the parlance of the dark web, attackers these days appear to want to ‘own’ the entire system,” said Tom Kellermann, Carbon Black’s Chief Cybersecurity Officer.
According to the survey results, the financial and healthcare industries remain most vulnerable to destructive attacks, but the threat to manufacturing companies has grown significantly. In the past 90 days, nearly 70% of all respondents saw attacks on the financial industry, followed by healthcare (61%) and manufacturing (59%, up from 41% in the previous report).
The latest GIRTR aggregates qualitative and quantitative input from 40+ Carbon Black IR partners and includes detailed case studies from BTB Security, DarkMatter and Optiv. The report’s goal is to offer actionable intelligence for business and technology leaders, fueled by analysis of the newest threats, and expert insights on how to stop them. This is Carbon Black’s third Global IR report since introducing it in July 2018.
The full report from Carbon Black is here: https://www.carbonblack.com/global-incident-response-threat-report/april-2019/
About Carbon Black
Carbon Black (NASDAQ: CBLK) is a leader in endpoint security dedicated to keeping the world safe from cyberattacks. The company’s big data and analytics platform, the CB Predictive Security Cloud (PSC), consolidates endpoint security and IT operations into an extensible cloud platform that prevents advanced threats, provides actionable insight and enables businesses of all sizes to simplify operations. By analysing billions of security events per day across the globe, Carbon Black has key insights into attackers’ behavior patterns, enabling customers to detect, respond to and stop emerging attacks. Contact
Ryan Murphy, Carbon Black Senior PR Manager 917-693-2788 email@example.com
Increasing mandates around the security of personal data have made encryption for every business. Australian businesses are leading the world in the use of encryption to protect backups, payment-related data, and laptops – and yet they still have a long way to go before encryption is both ubiquitous and manageable.
If your last access-control update was even a few years ago, you’re probably more exposed to fraud and exploitation than you’d like to be.
It’s not hard to understand why bot management is critical to maintaining business availability and customer satisfaction – but do you know how to properly deal with bots?
Increasing use of encryption has created new challenges for enterprise security managers. Ever more-sophisticated encryption such as Perfect Forward Secrecy (PFS) protects data and may even boost your Google ranking – but it also provides a haven for malicious code that may use encryption to bypass enterprise security controls.
Why nation-state attacks are everyone’s problem