Sign up to save tools and stay up to date with the latest in AI
bg
bg
1

Coro’s Mythbuster Series—Myth No. 8: I Could Tell If I Was Breached

Dec 19, 2023 - forbes.com
The article debunks the myth that one can easily tell if their company's security has been breached, explaining that a breach and an attack are not the same. It introduces the concept of "dwell time", the period between a breach and an attack when hackers explore the environment without causing alarm. The article reports that dwell times have decreased from 24 days in 2020 to 16 days in 2022, which is both good and bad news. It's good because hackers spend less time in the environment, but bad because it means they need less time to execute an attack.

The article provides tips for fighting dwell time, such as implementing multifactor authentication, applying zero trust architecture, analyzing logs for anomalies, and implementing regular security updates. It also suggests using AI-based cybersecurity companies that can constantly monitor the environment for unusual behavior or suspicious logins. The article emphasizes the importance of updating cybersecurity measures as cybercriminals are now able to discover weaknesses faster than ever before due to AI.

Key takeaways:

  • A breach and an attack in cybersecurity aren't always the same thing. A breach means an unauthorized person gained access to your environment, while an attack is what happens after they exploit that access.
  • The time between a breach and an attack is called dwell time, during which hackers learn about your company without causing alarm.
  • Dwell times are decreasing, meaning hackers are spending less time in your environment but also need less time to execute an attack.
  • AI-based cybersecurity companies can help fight dwell time by constantly monitoring your environment for unusual behavior or suspicious logins.
View Full Article

Comments (0)

Be the first to comment!