Organizations of all sizes are under near-constant attack from cybercriminals — that we know. And of course they must defend themselves against attacks. But there are some huge questions about just how effective their ability to do so is. A new report by Mandiant Security Validation aims to address those questions.
"Customers are making decisions and deploying technologies with a lot of assumptions ... around the value that they're getting," says Chris Key, founder of Verodin and now senior vice president at Mandiant Security Validation. "And what we're seeing in almost every case is that it falls short."
Indeed, less than 10% of the attacks, on average, even generate an alert, he adds.
"I think it speaks to the fact that a lot of controls are sold with weak out-of-the-box configurations," says Key, explaining the difference between the number of test attacks generated and the number that generate alerts. "And then customers don't have the resources to tune and tweak them."
According to the "2020 Mandiant Security Effectiveness Report," the effectiveness gap exists throughout the security stack, from more than half (54%) of organizations that found they were missing early-stage attack tactics, to 67% that saw successful data exfiltration tactics used against them. The numbers were generated from attacks that were executed in 100 Fortune 1000 production environments representing 11 industries employing 123 market-leading security technologies, such as network, email, endpoint, and cloud products and services.
Those security services and product are part of the problem, according to Key. "As you add more tools, you increase the complexity. And the more complex we are, the more challenging it i ..
Support the originator by clicking the read the rest link below.
