Story image

Not quick enough: Most firms can't detect or contain a breach within one hour

28 Mar 2018

Organisations around the globe still face a tough fight against the cyber threat battle, with new research from LogRhythm showing that fewer than half of all organisations are able to detect a ‘major’ cybersecurity incident within one hour.

751 IT decision makers from Asia Pacific, the UK, and the US admitted that they are ‘moderately’ confident in their ability to protect their organisations against hackers.

LogRhythm says this is more of a ‘hopeful’ attitude rather than a truly confident one.

39% of respondents in Asia Pacific also admitted their company has experienced a breach in the past year.

Despite hiring an average of 12 cybersecurity professionals in their organisation, less than a third of respondents said that if they did detect a major cyber incident, they would not be able to contain it within an hour.

Asia Pacific respondents allocate more of their budget to security than their UK and US counterparts. Overall, 57% say they are moderately comfortable with their security funding and a quarter say they are not comfortable.

LogRhythm’s senior regional director for Asia Pacific and Japan, Joanne Wong, says threats continue to grow – and organisations need to focus their planning.

“To combat these threats, organisations need to carefully plan their budgets and strategies, while developing effective programs that tackle specific threats and keep them one step ahead of cyber attackers.”

Respondents say that their security maturity is supported by threat detection programs. 95% use security software to prevent and respond to threats.

70% say they use these programs to detect specific threats such as ransomware. This tactic also influences respondents’ cybersecurity confidence.

Respondents who don’t have programs to protect against threats such as ransomware, insider threats, and service denial attacks are less confident in their security programs.

The same segment reported slower rates of detection, response, and containment.

Respondents aren’t necessarily reliant on one solution to do the job - 10% use at least 10 security software solutions.

Despite numerous threat detection products, around half of all respondents believe a hacker can still breach their organisation.

When asked what would be beneficial to incident detection and response, almost 80% say a platform for security management, analysis, and response but only a third rate a platform as ‘very beneficial’.

“This response may reinforce the notion that true security confidence cannot be created with technology alone,” LogRhythm says.

Respondents were not optimistic about their organisation’s capability to operate from a threat lifecycle management perspective. One third of respondents say they need help at all stages, especially detecting, investigating, neutralising, and recovering from cyber threats.

Fake apps on Google Play scamming users out of cryptocurrency
Fake cryptocurrency apps on Google Play have been discovered to be phishing and scamming users out of cryptocurrency, according to a new report from ESET.
Hackbusters! Reviewing 90 days of cybersecurity incident response cases
While there are occasionally very advanced new threats, these are massively outnumbered by common-or-garden email fraud, ransomware attacks and well-worn old exploits.
SEGA turns to Palo Alto Networks for cybersecurity protection
When one of the world’s largest video game pioneers wanted to strengthen its IT defences against cyber threats, it started with firewalls and real-time threat intelligence from Palo Alto Networks.
Forrester names Trend Micro Leader in email security
TrendMicro earned the highest score for technology leadership, deployment options and cloud integration.
LogRhythm releases cloud-based SIEM solution
LogRhythm Cloud provides the same feature set and user experience as its on-prem experience.
One Identity named Leader in PAM and IAM by KuppingerCole
KuppingerCole lead analyst Anmol Singh evaluated the strengths and weaknesses of 20 solution providers in the PAM market for the report.
Healthcare environments difficult to secure - Forescout
The convergence of IT, Internet of Things (IoT) and operational technology (OT) makes it more difficult for the healthcare industry to manage a wide array of hard-to-control network security risks.
Bitglass appoints new cloud, business development leaders
The cloud security company has appointed vice presidents for worldwide channels and worldwide business development.