Victims of Russian state-sponsored hacking have just 19 minutes to react before the initial intrusion moves on to wider access, theft, and destruction, a startling report from cyber security firm CrowdStrike reported.
In comparison, the second-fastest groups were North Koreans, who needed an average of two hours to jump from the first compromised computer to the second; Chinese groups needed an average of four hours, Defense One reported.
"Breakout time" refers to the amount of time it takes the attacker to jump between network nodes once on the network, and also "shows how much time defenders have on average to detect an initial intrusion, investigate it and eject the attacker from the network, before sensitive data can be stolen or destroyed," CrowdStrike analysts wrote in a 2018 post.
More
DelMarVa's Premier Source for News, Opinion, Analysis, and Human Interest Contact Publisher Joe Albero at alberobutzo@wmconnect.com or 410-430-5349
1 comment:
By defenders . . . I assume the author refers to commercial Anti-Virus Software?
I also assume the commercial Anti-Virus Software, for which I pay annually, is capable of detecting the initial intrusion and quarantine the virus within seconds. I hope so.
Post a Comment