The number of focused cyberattacks per organization has more than doubled this year compared to the amount in 2017, including instances of ransomware and distributed denial of service (DDoS) attacks. However, in good news, a new report from Accenture has found that even in the face of these growing attacks, companies are seeing much more success in the detecting and blocking of targeted cyberattacks.
The study, conducted from January to the middle of March this year (2018), was focused on targeted attacks defined as “having the potential to cause damage and penetrate network defenses, or extract high-value assets and processes from an organization.” Although these attacks have more than doubled in frequency last year, the study found that 87-percent are actually prevented by the cybersecurity measures that are being taken by proactive companies. Comparatively, only 70-percent of attacks were prevented in 2017. This means that only one in eight focused attacks are able to get through versus the one in three last year.
In even more good news, it is also taking organizations less time to actually detect a data breach. Time has been reduced from years to months and now (in some cases) only days. 89-percent of respondents in the study said that their security teams detected breaches within only one month, while 55-percent said that it took one week or less.
Although these major strides have been made in the detection and prevention, it does not mean that organizations still do not have to be proactive about their cybersecurity efforts. What can you and your company be doing to achieve further resilience from cyberattacks?
- Be proactive about potential threats. – Develop a system with your IT department that will strategically and tactically identify threats. Monitor your entire system but pay special attention to areas that are especially tempting to hackers.
- Pressure test your systems. – You must think like a hacker to be able to identify the areas that may be the weakest link. Pressure test your systems to find out where improvements should be made.
- Train your IT professionals. – To properly defend against constant threats, your cybersecurity and IT professionals should have a well-rounded understanding of the processes, tools, and strategies that are employed when protecting a full information system. At Logical Operations, our CyberSec First Responder™ training goes beyond topic-specific training to further develop the skills that are needed to protect your company’s information systems before, during, and after a cyberattack.