Against the clock: detecting anomalies in an evolving threat landscape
Posted on September 10, 2019 by Noble
We often hear of the challenge of keeping up with an “evolving threat landscape” in our industry. But what does that look like for today’s businesses?
Thousands – if not more – of endpoints now contribute to corporate networks as a result of the growth of IoT. An organisation with 10,000 employees could translate to 30,000 individual devices, all contributing to the network traffic. And depending on the business, IoT devices can account for even millions of additional devices, creating an unprecedented magnitude of exposure. And this trend is only going to continue.
Gartner predicts there will be 20.4 billion connected devices by 2020, yet, worryingly, less than half of UK firms are able to detect IoT breaches. The fact that attackers spend an average of six months within a network clearly indicates that when it comes to enterprise anomaly detection, a change is needed.
The state of play
A new report from the Department for Digital, Culture, Media and Sport (DCMS) credited GDPR regulations with a drop in the number enterprises suffering from cyber-attacks and breaches, down from 43 percent in 2017 to 32 per cent in 2018. However, while this is a positive sign, it doesn’t mean that organisations can rest on their laurels. Cyber-criminals are becoming increasingly targeted in their approach, attacking fewer organisations but with greater return. Indeed the same report found that 48 percent of businesses who were breached identified at least one attack every month.
Furthermore, cyber-criminals are collaborating in marketplace environments, sharing tips, tricks and advice on how to launch damaging attacks on enterprises.
So, while threats are becoming increasingly dynamic, targeted and more sophisticated, cyber-security teams are under increasing pressure to do more with less. IT security budgets are falling, and analysts are being overstretched and overworked.
These factors are all compounded by a well-documented cyber-security skills gap. According to a report from (ISC)², organisations across the world are suffering a workforce “gap” of 2.9 million employees. 63 percent of organisations globally reported a cyber-security skills shortage, with more than half claiming this put them at “moderate” or “extreme” risk of attack.
Read the full article here, originally published by SC Magazine.