Intrusion Detection and Insider Threats Among Top Cybersecurity Concerns

When I read the 2017 U.S. State of Cybercrime Survey, its findings confirmed many of my concerns about America’s cybersecurity and its impact on business. The Survey was released on November 7th, and the parties behind the research are a mix of private sector, academic, and public-sector entities. 

The Survey is a coordinated effort between IDG Communications’ CSO, Forcepoint, the CERT Division of the Software Engineering Institute at Carnegie Mellon University, and the U.S. Secret Service. For the sake of transparency, I’ll mention that my work has been published in CSO although I’ve never been employed by IDG.

Over five hundred executives from government agencies, law enforcement, and private sector businesses responded to the Survey. The focus is entirely on the United States. Respondents were given an online questionnaire with 61 questions. Participants were found through CSO’s website, and the margin of error is 4.3% in either direction.

Okay, On To the Findings!

Here’s some good news first. The average number of cybersecurity incidents reported by each respondent’s company or agency has gone down each year from 2015 to 2017. An average of 163.3 incidents were reported by respondents in 2015, 161.1 in 2016, and a significant drop down to 147.8 in 2017.

The rest of the findings were either neutral or worrisome in nature.

Threats are becoming more difficult to detect. Respondents were asked how much time passed between the beginning of an intrusion and discovering it. They reported an average of 57.6 days for 2015, 80.6 days for 2016, and a whopping 92.2 days for 2017.

Enterprises are having more difficulty with intrusion detection than small and medium-size businesses (SMB) overall. Enterprises reported an average of 138.3 days for 2017, whereas SMBs reported an average of (Read more...)

This is a Security Bloggers Network syndicated blog post authored by Kim Crawley. Read the original post at: Cylance Blog