European organisations are taking longer to detect breaches than their counterparts in North America, according to a study by FireEye.
Organisations in EMEA are taking almost six months (175 days) to detect an intruder in their networks, which is rather more than the 102 days that the firm found when asking the same questions last year. In contrast, the median dwell time in the Americas has improved to 76 days in 2017 from 99 in 2016. Globally it stands at 101 days.
The findings about European breach detection are a particular concern because of the looming GDPR deadline, which will introduce tougher breach disclosure guidelines for organisations that hold Europeans citizens' data. GDPR can also mean fines of €20 million, or four per cent of global turnover, whichever is higher.
FireEye's report also records a growing trend of repeat attacks by hackers looking for a second bite of the cherry. A majority (56 per cent) of global organisations that received incident response support were targeted again by the same of a similarly motivated attack group, FireEye reports.
FireEye has historically blamed China for many of the breaches its incident response teams detected. But as the geo-political landscape has changed Russia and North Korea are getting more and more "credit" for alleged cyber-nasties.
But a different country - Iran - features predominantly in attacks tracked by FireEye last year. Throughout 2017, Iran grew more capable from an offensive perspective. FireEye said that it "observed a significant increase in the number of cyber-attacks originating from Iran-sponsored threat actors".
FireEye's latest annual M-Trends report (pdf) is based on information gathered during investigations conducted by its security analysts in 2017 and uncovers emerging trends and tactics that threat actors used to compromise organisations.
(Score: 0) by Anonymous Coward on Saturday April 07 2018, @02:38PM (3 children)
Israel, Iran, China, Russia, North Korea.
The difference is four of those most Americans know to be wary of as hostiles, while the fifth most are foolish enough to think are their friends.
And out of all of these, which one of those has the keys to the Management Engine kingdom?
(Score: 2) by Runaway1956 on Saturday April 07 2018, @02:59PM (2 children)
Which two, do you mean?
I submitted a story just awhile ago, about Israel pivoting from West to East. http://www.jpost.com/Jerusalem-Report/East-side-story-539690 [jpost.com] Israel, after all, is neither west, nor east. And, they may very well believe that they will face less bigotry in the east, than they do here.
(Score: 0) by Anonymous Coward on Saturday April 07 2018, @03:16PM
They've been taking our money and been working against us for years.
(Score: 3, Insightful) by RamiK on Sunday April 08 2018, @02:44AM
As opposed to Europeans joining with the Russians to run the Syrian oil pipes north of Israel as Assad is chemically genociding the (majority) opposition. Or the Turks getting a nuclear reactor from a Russian contractors for accepting the refugees from Syria. Or the Chinese, Indians and the US letting Iran fund and arm ISIS to destabilize the region as long as the oil keeps flowing from the Gulf...
Honestly all I'm seeing is a lot of hedges as the US further distances itself from global geopolitics. You could say Israel is diversifying into Asian investments over US and EU ones. But that's true for everyone especially including the US and the EU. In fact, the only country not pivoting east is India...
compiling...