Carbon Black Report: An Evolution of Cyberattacks

Share and earn Cybytes
Facebook Twitter LinkedIn Email

Quarterly Incident Response
Threat Report

An Evolution of Cyberattacks

From Grab-and-Go Breaches to Long-Term Campaigns

The data in this report reveals that today’s cyberattacks manifest as increasingly complex, long-term campaigns. Employing high-level tools and techniques, attackers set out to colonize an organization’s infrastructure — allowing them to move throughout the network, inflicting maximum damage along the way.

Note the high percentage (59%) of respondents who say attacks nowadays involve lateral movement within a network. And a growing number of hackers won’t stop at a single network — they’re after your clients’ partner and customer infrastructure as well. A full 36% of our respondents say they see attacks where the victim was primarily used for island hopping.

This shift reflects an evolution in the way businesses use and handle data. On the one hand, more and more data is consolidated and shared among organizations. At the same time, this data is increasingly decentralized across networks due to cloud computing — making it harder for attackers to quickly find everything they want. “Our customers’ IT teams don’t even know where all their assets are,” one IR professional says. “So it makes sense that attackers need more time to figure it out.”

And as attacks become increasingly protracted and complex, eluding detection becomes a top priority for hackers: nearly half of respondents (46%) report seeing instances of counter-incident response.

What’s more, attackers are adapting to commonly employed security systems. Nearly two-thirds (64%) of respondents, for example, see instances of secondary C2 used on a sleep cycle during their IR engagements, suggesting that network-based protections, which are regularly deployed to shut off hackers’ secret passages in your network (C2), have ostensibly been rendered useless; attackers are using a second C2 that wakes up only after the initial one goes down.

The post Carbon Black Report: An Evolution of Cyberattacks appeared first on Carbon Black.

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
About Carbon Black, Inc.
Carbon Black is the leading provider of next-generation endpoint security. Carbon Black’s Next-Generation Antivirus (NGAV) solution, Cb Defense, leverages breakthrough prevention technology, “Streaming Prevention,” to instantly see and stop cyberattacks before they execute. Cb Defense uniquely combines breakthrough prevention with market-leading detection and response into a single, lightweight agent delivered through the cloud. With more than 7 million endpoints under management, Carbon Black has more than 2,500 customers, including 30 of the Fortune 100. These customers use Carbon Black to replace legacy antivirus, lock down critical systems, hunt threats, and protect their endpoints from the most advanced cyberattacks, including non-malware attacks.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play

Support Cybrary

Donate Here to Get This Month's Donor Badge

Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?