Research finds rates of reconnaissance, lateral movement, and exfiltration detections increased by over 265 per cent
Today at InfoSecurity Europe, Vectra Networks, the leader in automating the hunt for in-progress cyber attacks, announced the results of its Post-Intrusion Report, outlining key cybersecurity trends from Q1 2017. The research is based on data from a sample set of nearly 200 opt-in Vectra enterprise customers, looking at the prevalence of command-and-control (C&C), reconnaissance, lateral movement, and exfiltration attacker behaviours across thirteen industries.
Vectra discovered healthcare to be the most frequently targeted industry, with 164 threats detected per 1,000 host devices, followed by education and media, which had 145 and 123 detections per 1,000 host devices, respectively. By comparison, the food and beverage industry came in as the least targeted industry with just 17 detections per 1,000 hosts.
Additional findings include:
The data in the Post-Intrusion Report is based on anonymised metadata from Vectra customers who have opted to share detection metrics. Over 90 days, Vectra monitored 2,145,708 hosts. On these hosts, Vectra detected 1,805,188 different network behaviours that were condensed to 140,341 detections. These detections were then triaged down to 62,119 hosts, with 10,710 hosts prioritised as high or critical business risk.
If you are interested in learning more about Vectra’s findings, you can download the full Post-Intrusion Report here, or talk in person with a Vectra cybersecurity expert at Stand E225 at Infosecurity Europe in London or Booth 809 at the Gartner Security & Risk Management Summit in National Harbor, Md.
Vectra Networks is the leader in automating the hunt for in-progress cyber attacks. Using artificial intelligence, Vectra correlates threats against hosts that are under attack and provides unique context about what attackers are doing so organisations can quickly prevent or mitigate loss. Vectra prioritises attacks that pose the greatest business risk, enabling organisations to make rapid decisions on where to focus time and resources. In 2016, Vectra was named “Most Innovative Emerging Company” in the Dark Reading Best of Black Hat Awards. InformationWeek also named Vectra one of the Top 125 companies to watch in 2016. Vectra investors include Khosla Ventures, Accel Partners, IA Ventures, AME Cloud Ventures and DAG Ventures. The company is headquartered in San Jose, Calif. and has European regional headquarters in Zurich, Switzerland.
Vectra, the Vectra Networks logo and Security that thinks are registered trademarks and the Vectra Threat Labs and the Threat Certainty Index are trademarks of Vectra Networks. Other brand, product and service names are trademarks, registered trademarks or service marks of their respective holders.