Navigation
Search
|
Attackers spend 11 days in a network before detection
Thursday May 20, 2021. 03:54 PM , from BetaNews
The median attacker dwell time before detection is 11 days or 256 hours, according to data from Sophos. That's time in which they're free to conduct malicious activity, such as lateral movement, reconnaissance, credential dumping, data exfiltration, and more. The company has released an 'Active Adversary Playbook' detailing attacker behaviors and the tools, techniques and procedures (TTPs) that Sophos' frontline threat hunters and incident responders saw in the wild in 2020. Other findings include that 90 percent of attacks seen involve the use of the Remote Desktop Protocol (RDP) -- and in 69 percent of all cases, attackers used RDP… [Continue Reading]
https://betanews.com/2021/05/20/attackers-11-days-before-detection/
|
25 sources
Current Date
Apr, Thu 25 - 02:10 CEST
|