Posted By Steve Wexler
We know that cybersecurity is anything but secure, and the situation appears to be worsening. However, a new study fromVectra Networks – the self-proclaimed ‘leader in real-time detection of in-progress cyber attacks’ – provides a fascinating view of what happens after your cyber defenses have been breached. According to the second edition of its Post-Intrusion Report, there was non-linear growth in lateral movement (580%) andreconnaissance (270%) detections that outpaced the 97% increase in overall detections compared to last year.
For really current – as in to be released sometime today – Waratek, a ‘pioneer in runtime application self-protection’ – just reported that two-thirds of senior security professionals polled at the recent Gartner Security and Risk Management Summit said they do not remediate 60% of the security vulnerabilities discovered by software application security testing (SAST) tools. Half said it takes their organization three months (23%) or more (27%) to fix security flaws in their applications. The company stated that these findings ‘illustrate a painful reality — organizations are only able to fix 40% or less of the flaws they know exist, primarily because application security testing tools are unable to remediate the vulnerabilities they detect.’