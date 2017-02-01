Organizations have a lot to worry about when it comes to cybersecurity – keeping the good stuff in and the bad guys out – and attacking the complexity of cyber threats and intrusions, which, according to Cisco’s 2017 Annual Cybersecurity Report, is increasingly overwhelming for IT experts.
The vendor’s 10th annual report, divided into sections – attack behavior, defender behavior, Cisco 2017 security capabilities benchmark study, industry and conclusion – points to a revolving door of new attacks, the use of an increasing number of security products by IT departments, and restrained budgets and insufficient security expertise, often resulting in lost customers and business revenue.
So what keeps security professionals up at night? Their biggest concerns related to cyber attacks are: mobile devices – 58 percent ; data in the public cloud – 57 percent; cloud infrastructure – 57 percent; and user behavior – 57 percent.
The upside to the report are recommendations to meet the cybersecurity challenge, namely the need to operationalize people, processes and technology in an integrated manner, with automation being essential to the effort.
The hefty report points to more than a dozen key findings:
- As malicious tool kits, such as the well known Angler, Nuclear and Neutrino fade away, new ones take their place, which means there’s no time for security experts to let down their guard.
- Sixty-five percent of IT teams use six or more security vendors and security products, while 45 percent use between one and five, according to the Cisco 2017 Security Capabilities Benchmark Study (SCBS).
- There are a number of constraints encountered by companies that limit the adoption of advanced security products and solutions: 35% percent budget, 28 percent product compatibility, 25 percent certification, and 25 percent talent.
- These constraints not only limit the adoption of higher-level security solutions but also limit how many security alerts received on a given day are responded to — 56 percent. About one-quarter of the investigated alerts, or 28 percent, are deemed legitimate; and, 46 percent of legitimate alerts are remediated. The report also notes that 44 percent of security-operations managers see more than 5,000 security alerts per day.
- Twenty-seven percent of connected third-party cloud applications brought into the enterprise by employees in 2016 posed a high security risk.
- Adware infections that could potentially facilitate other malware attacks were reported by 75 percent of 130 organizations across verticals.
- Brokers, aka gates, are being increasingly used in malvertising campaigns. These brokers increase the speed at which they move, maintain their operational space and evade detection. According to the report, these intermediary links ...