Daily Bulletin

Business News

  • Written by Media Release


New CrowdStrike Report Finds an Increase in Cyber Adversaries Turning to Business Disruption as Main Attack Objective

CrowdStrike Services Cyber Front Lines Report offers observations gained from the front lines of incident response and proactive services and insights for 2020

Sydney, Australia – CrowdStrike® Inc. (Nasdaq: CRWD), a leader in cloud-delivered endpoint protection, today announced the release of the CrowdStrike Services Cyber Front Lines Report which provides valuable takeaways from the front lines of incident response (IR) cases spanning 2019 and shares insights that matter for 2020 and beyond. The report identifies new attack methods and challenges, while offering recommendations for organisations looking to improve overall breach preparedness, detection and response capabilities.

The CrowdStrike Services Report offers all-encompassing investigative analysis into IR investigations in multiple countries, regions and industry sectors, and references the MITRE ATT&CK™ framework, offering best practices for organisations looking to improve cyber defenses. It reveals that over the course of 2019, 36% of the incidents that Services investigated were most often caused by ransomware, destructive malware or denial of service attacks, revealing that business disruption was often the main attack objective of cyber criminals. Another notable finding in the report shows a large increase in dwell time to an average of 95 days in 2019 — up from 85 days in 2018 — meaning that adversaries were able to hide their activities from defenders for longer, and that organisations still lack the technology necessary to harden network defenses, prevent exploitation and mitigate cyber risk.

Other notable findings include:

  • Third-party compromises serve as a force multiplier for attacks. Threat actors are increasingly targeting third-party service providers to compromise their customers and scale attacks.

  • Attackers are targeting cloud infrastructure as a service (IaaS). Threat activity around application programming interface (API) keys for public cloud-based infrastructure has become more targeted as attackers increase their ability to rapidly and systematically harvest information assets.

  • Macs are now clearly in the crosshairs of the cyber fight. Threat actors are increasingly targeting macOS environments, “living off the land” with native applications and capitalising on less widely used security tools compared to Windows systems in the same organisation, which have more security tools in place.

  • Patching remains a problem. Basic hygiene still matters, and even though organisations have gotten better at patching, the factors that make patching a challenge have become more complex.

  • How prevention is configured impacts its effectiveness. The report finds that many organisations fail to leverage the capabilities of the tools they already have. The failure to enable critical settings not only leaves organisations vulnerable but also gives them a false sense of security.

The report found that organisations that meet the 1-10-60 benchmark — detect an incident in one minute, investigate in 10 minutes and remediate within an hour — are improving their chances of stopping cyber adversaries. However, the 2019 CrowdStrike Global Security Attitude Survey found that the vast majority of organisations struggle to meet the 1-10-60 standard. Beyond the 1-10-60 benchmark, the report offers guidance on remaining protected against today’s ever-evolving threat landscape, including integrating next-generation endpoint security tools and proactive strategies to strengthen cyber posture. Innovative tools and tactics such as machine learning, behavioral analytics and managed threat hunting teams help uncover cyber criminal behavior and motivations, while also preventing incidents from turning into breaches.

“The CrowdStrike Services Cyber Front Lines Report offers organisations valuable takeaways to increase proactive security measures aimed at creating a more cyber-resilient environment. As adversaries are stealthier than ever, with new attack vectors on the rise, we must remain agile, proactive and committed to defeat them. They still seek the path of least resistance — as we harden one area, they focus on accessing and exploiting another,” said Shawn Henry, chief security officer and president of CrowdStrike Services. “The report offers observations into why ransomware and business disruption dominated headlines in 2019 and gives valuable insight into why issues with adversarial dwell time remain a problem for businesses around the world. Strong cybersecurity posture ultimately lies within technology that ensures early detection, swift response and fast mitigation to keep adversaries off networks for good.”

To download a copy of the CrowdStrike Services Cyber Front Lines Report, please visit the CrowdStrike website.

Please visit the CrowdStrike blog to read more from CrowdStrike’s Shawn Henry on key findings within the report.

About CrowdStrike

CrowdStrike® Inc. (Nasdaq: CRWD), a global cybersecurity leader, is redefining security for the cloud era with an endpoint protection platform built from the ground up to stop breaches. The CrowdStrike Falcon® platform’s single lightweight-agent architecture leverages cloud-scale artificial intelligence (AI) and offers real-time protection and visibility across the enterprise, preventing attacks on endpoints on or off the network. Powered by the proprietary CrowdStrike Threat Graph®, CrowdStrike Falcon correlates over 2.5 trillion endpoint-related events per week in real time from across the globe, fueling one of the world’s most advanced data platforms for security.

With CrowdStrike, customers benefit from better protection, better performance and immediate time-to-value delivered by the cloud-native Falcon platform.

There’s only one thing to remember about CrowdStrike: We stop breaches.

Qualifying organisations can gain full access to Falcon Prevent™ by starting a free trial.

Learn more: https://www.crowdstrike.com/

Follow us: Blog | Twitter

© 2020 CrowdStrike, Inc. All rights reserved. CrowdStrike, the falcon logo, CrowdStrike Falcon and CrowdStrike Threat Graph are marks owned by CrowdStrike, Inc. and registered with the United States Patent and Trademark Office, and in other countries. CrowdStrike owns other trademarks and service marks, and may use the brands of third parties to identify their products and services.

The problem with arts funding in Australia goes right back to its inception

arrow_forward

How have live chatbots turned beneficial for online businesses?

Every business these days have come up with their online models. While some people still rely on the customer service representatives to handle the queries for their company around the clock through...

Paresh Patil - avatar Paresh Patil

Which Internet Marketing techniques can boost my business?

Internet marketing can be easily defined as various internet techniques that can be used to promote a product or service to all those people who use the internet to visit various websites and social p...

Kamballa Johnson - avatar Kamballa Johnson

3 Top Tips to Hiring Long Distance Movers

Moving doesn’t need to be stressful at all. Find the right moving company to help with your relocation and the whole experience should be what you want out of the move in the first place – a new sta...

Ash Thomson - avatar Ash Thomson

What you should do (and not do) during video conference calls

Although video conferences are now the norm, they have certainly been something that many have struggled with, particularly those used to face-to-face discussions. This hasn’t been helped by the lac...

News Company - avatar News Company

How Can PR Agencies Help Your Venture?

There are several integrated marketing and PR agencies that deliver brand solutions to more than four continents. These agencies provide services to do with public relations, strategic marketing...

News Company - avatar News Company

Hiring An Experienced Bail Bondsman In Connecticut

Being Locked Up Is Not Fun Have you been thinking about contacting a bail bondsman in Connecticut because a loved one has been arrested and you want to help him or her as fast as possible? If you h...

News Company - avatar News Company


The Conversation
INTERWEBS DIGITAL AGENCY

Politics

$1.8 billion boost for local government

The Federal Liberal and Nationals Government will deliver a $1.8 billion boost for road and community projects through local governments across Australia.   The package of support will help lo...

Scott Morrison - avatar Scott Morrison

Scott Morrison press conference

PRIME MINISTER: This is a tough day for Australia, a very tough day. Almost 600,000 jobs have been lost, every one of them devastating for those Australians, for their families, for their commun...

Scott Morrison - avatar Scott Morrison

BOOST FOR BUSHFIRE RECOVERY

Local economic recovery plans will help towns and regions hit by bushfires get back on their feet as part of a new $650 million package of support from the Morrison Government.   As part of th...

Scott Morrison - avatar Scott Morrison



News Company Media Core

Content & Technology Connecting Global Audiences

More Information - Less Opinion