[Infographic] M-Trends 2016

•

0 j'aime•752 vues

M-Trends 2016 provides trends, statistics and case studies to illustrate how advanced threat actors have evolved over the past year. The annual report was compiled by consultants at Mandiant and is based on hundreds of incident response investigations in more than 30 industry sectors. View the infographic to get the latest cover attacker trends and industry targets. For more information on Mandiant consulting services, visit www.fireeye.com/services.html.

Technologie

2015 was the year of more. More breaches
became public than in any prior year, and
more cyber threat groups were at work
around the world with a wider array of
motives. The groups infiltrated and destroyed
systems, stole personal information and
targeted networking devices. This resulted
in more stress for those who had to deal
with the loss of data and reputation, more
time and money spent in recovering from an
attack and more reasons for organizations to
strengthen their security posture.
BY THE
NUMBERS
THREAT LANDSCAPE:
MANDIANT CONSULTING / M-TRENDS 2016
ENERGY 1%
AGRICULTURE
AND FORESTRY 1%
HIGH TECH 13%
GOVERNMENT AND
INTERNATIONAL
ORGANIZATIONS 3%
LEGAL SERVICES 3%
TRANSPORTATION 3%
BUSINESS AND
PROFESSIONAL
SERVICES 11%
MEDIA AND ENTERTAINMENT 11%
FINANCIAL SERVICES
AND INSURANCE 10%
RETAIL 10%
EDUCATION 8%
BIOTECHNOLOGY AND
PHARMACEUTICALS 7%
CONSTRUCTION AND ENGINEERING 6%
HEALTHCARE 5%
AEROSPACE AND DEFENSE 5%
TELECOMMUNICATIONS 2%
ORGANIZATIONS MORE
VIGILANT ABOUT
DISCOVERY
In 2015, the median time from
compromise to discovery was cut
by 59 days, down from 205 days.
TIME FROM COMPROMISE TO DISCOVERY
MEDIAN
EXTERNAL
NOTIFICATION
INTERNAL
DISCOVERY
146DAYS
320DAYS
56DAYS
MORE LESSONS LEARNED
A year of disruptive breaches resulted in new lessons regarding defense
and response.
1 Confirm there is a breach. 6 Engage experts before a breach for forensic,
legal and PR support.
2
Remember: you’re dealing with
human adversaries. They can be
unpredictable.
7 Consider all options when asked to pay a
ransom. There are no guarantees.
3 Timing is critical — validate and scope
the breach, fast. 8 Ensure strong segmentation and controls
over your backups.
4 Stay focused — you’re racing
against time. 9 After an incident has been handled, focus on
broader security improvements.
5 Carefully evaluate whether to
confront an attacker (see lesson 2). 10 If you kick the attackers out, be prepared:
they may come back.
LEARN MORE Get the M-Trends 2016 special report at fireeye.com/M-Trends-2016.html
FireEye, Inc.
1440 McCarthy Blvd. Milpitas, CA 95035
408.321.6300 / 877.FIREEYE (347.3393) / info@fireeye.com
fireeye.com
© 2016 FireEye, Inc. All rights reserved. FireEye is a registered trademark of FireEye,
Inc. All other brands, products, or service names are or may be trademarks or service
marks of their respective owners. INFO.MTRENDS.EN-US.032016
Disrupting
business
Stealing personally
identifiable information
Attacking routers
and switches
THREE NEW TRENDS APPEARED IN 2015:
Using persistence
mechanisms
Targeting outsourced
service providers
TWO OLD TRENDS CONTINUED:
THE YEAR IN ATTACKS
47%
53%
External Notification
Internal Discovery
MORE BREACHES
DISCOVERED INTERNALLY
Compared to 2014, the percentage
of victims discovering a breach
internally rose 16%. 16%
INDUSTRIES WHERE
MANDIANT INVESTIGATED
Percentage of total attacks by industry.
MORE AND LESS
Some industries saw an increase in attacks
compared to 2014. Some saw a decrease.
HIGH TECH BUSINESS AND
PROFESSIONAL SERVICES
6%6%

Contenu connexe

En vedette

шевченко т г 1

nvkschool_106

TOP 10 HONEYMOON DESTINATIONS_ABTA MAG_FEB 2016

Rowena Marella-Daw

Apa style course work chile earthquake 2010

CustomEssayOrder

Desições sobre guarda

Elvis Braga

Винтовая симметрия и золотое сечение

Diana Der

EXTRA FASHION - AW1617 Trend Report

James Jackson

WUD 2009 - User Experience Design a telefony komórkowe

World Usability Day Tour 2009

Thyatira

tccdeaf

Planificador de proyectos actual (1)

adrizinemcali2014

Medicina veterinaria

Lucia Cobos

En vedette (10)

шевченко т г 1

TOP 10 HONEYMOON DESTINATIONS_ABTA MAG_FEB 2016

Apa style course work chile earthquake 2010

Desições sobre guarda

Винтовая симметрия и золотое сечение

EXTRA FASHION - AW1617 Trend Report

WUD 2009 - User Experience Design a telefony komórkowe

Thyatira

Planificador de proyectos actual (1)

Medicina veterinaria

Plus de FireEye, Inc.

Asia Pacific & The Security Gap: Don't Stand Still

FireEye, Inc.

EMEA & The Security Gap: Don't Stand Still

FireEye, Inc.

[Industry Intelligence Brief] Cyber Threats to the Legal and Professional Ser...

FireEye, Inc.

[Infographic] Healthcare Cyber Security: Threat Prognosis

FireEye, Inc.

[Infographic] Email: The First Security Gap Targeted by Attackers

FireEye, Inc.

M-Trends 2015: 최일선에서 본 관점

FireEye, Inc.

M-Trends 2015 セキュリティ最前線からの視点

FireEye, Inc.

M-Trends 2015 : Les nouvelles du front

FireEye, Inc.

5 Reasons Cyber Attackers Target Small and Medium Businesses

FireEye, Inc.

As vehicles become both increasingly complex and better connected to the Internet, their increased connectivity makes them even more vulnerable to advanced cyber attacks. This report looks at the five most concerning potential threats created by vehicle software vulnerabilities — including various threat scenarios, their likelihood of occurring and their potential impact — and offers suggestions on how to address this growing cyber security challenge.

Connected Cares: The Open Road For Hackers

FireEye, Inc.

Mandiant’s annual threat report reveals evolving trends, case studies and best practices gained from Mandiant observations to targeted attacks in the last year. The report, compiled from hundreds of Mandiant advanced threat investigations, also includes approaches that organizations can take to improve the way they detect, respond to, and contain complex breaches. For the latest M-Trends report, https://www.fireeye.com/mtrends.

M-Trends® 2013: Attack the Security Gap

FireEye, Inc.

Mandiant’s annual threat report reveals key insights, statistics and case studies illustrating how the tools and tactics of advanced targeted attackers, including the Advanced Persistent Threat (APT), have evolved over the last year. The report, based on hundreds of advanced threat investigations, also shares approaches that organizations can take to improve the way they detect, respond to, and contain complex breaches. For the latest M-Trends report, https://www.fireeye.com/mtrends

M-Trends® 2012: An Evolving Threat

FireEye, Inc.

In 2010, Mandiant's first M-Trends report detailed how the Advanced Persistent Threat (APT) successfully compromised its victims. In 2011, the attackers continued to expand their targets and innovated their techniques. In this report, those attack techniques are explored further and key steps you can take are identified so you can address the threat in your enterprise. For the latest M-Trends report, visit https://www.fireeye.com/mtrends

M-Trends® 2011: When Prevention Fails

FireEye, Inc.

The inaugural M-Trends report details threat intelligence learned while conducting intrusion investigations for the U.S. government, the defense industrial base, and commercial organizations. This report focuses on the Advanced Persistent Threat (APT), and outlines trends, techniques, and real details of how the APT successfully compromises any target it desires. For the latest M-Trends report, visit https://www.fireeye.com/mtrends

M-Trends® 2010: The Advanced Persistent Threat

FireEye, Inc.

Cloud computing and bring-your-own-device (BYOD) workplace policies are expanding the endpoints in IT infrastructures — and more complexity when it comes to investigating cyber attacks. The SANS 2013 Report on Digital Forensics and Incident Response Survey reveals some of the major difficulties that security professionals face in this new environment and how to better prepare for future investigations. Collecting responses from more than 450 security professionals across a range of industries and company sizes, the survey found that nearly 90 percent of respondents had conducted at least one forensics investigation within the last two years. But just 54 percent called their digital forensics capabilities “reasonably effective.” For the latest threat intelligence reports, visit https://www.fireeye.com/current-threats/threat-intelligence-reports.html

SANS 2013 Report: Digital Forensics and Incident Response Survey

FireEye, Inc.

The law of unintended consequences strikes again. In an effort to address security risks in enterprise IT systems and the critical data in them, numerous security standards and requirement frameworks have emerged over the years. But most of these efforts have had the opposite effect — diverting organizations’ limited resources away from actual cyber defense toward reports and compliance. Recognizing this serious problem, the U.S. National Security Agency (NSA) in 2008 launched Critical Security Controls (CSCs), a prioritized list of controls likely to have the greatest impact in protecting organizations from evolving real-world threats. This SANS Institute survey of nearly 700 IT professionals across a range of industries examines how well the CSCs are known in government and industry and how they are being used. For the latest threat intelligence reports, visit https://www.fireeye.com/current-threats/threat-intelligence-reports.html.

SANS 2013 Report on Critical Security Controls Survey: Moving From Awareness ...

FireEye, Inc.

With malware attacks growing more sophisticated, swift, and dangerous by the day — and billions of dollars spent to combat them — surprisingly few organizations have a grip on the problem. Only 20 percent of security professionals surveyed by Information Security Media Group (ISMG) rated their incident response program “very effective.” Nearly two-thirds struggle to detect APTs, limiting their ability to defend today’s most pernicious threats. In addition, more than 60 percent struggle with the speed of detection, and more than 40 percent struggle with the accuracy of detection. Those shortcomings give attackers more time to steal data and embed their malware deeper into targeted systems. For the latest threat intelligence reports, visit https://www.fireeye.com/current-threats/threat-intelligence-reports.html.

2013 Incident Response Survey

FireEye, Inc.

The Internal Signs of Compromise

FireEye, Inc.

The Board and Cyber Security

FireEye, Inc.

FireEye Cyber Defense Summit 2016 Now What - Before & After The Breach

FireEye, Inc.

Plus de FireEye, Inc. (20)

Asia Pacific & The Security Gap: Don't Stand Still

EMEA & The Security Gap: Don't Stand Still

[Industry Intelligence Brief] Cyber Threats to the Legal and Professional Ser...

[Infographic] Healthcare Cyber Security: Threat Prognosis

[Infographic] Email: The First Security Gap Targeted by Attackers

M-Trends 2015: 최일선에서 본 관점

M-Trends 2015 セキュリティ最前線からの視点

M-Trends 2015 : Les nouvelles du front

5 Reasons Cyber Attackers Target Small and Medium Businesses

Connected Cares: The Open Road For Hackers

M-Trends® 2013: Attack the Security Gap

M-Trends® 2012: An Evolving Threat

M-Trends® 2011: When Prevention Fails

M-Trends® 2010: The Advanced Persistent Threat

SANS 2013 Report: Digital Forensics and Incident Response Survey

SANS 2013 Report on Critical Security Controls Survey: Moving From Awareness ...

2013 Incident Response Survey

The Internal Signs of Compromise

The Board and Cyber Security

FireEye Cyber Defense Summit 2016 Now What - Before & After The Breach

Dernier

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Enterprise Knowledge’s Urmi Majumder, Principal Data Architecture Consultant, and Fernando Aguilar Islas, Senior Data Science Consultant, presented "Driving Behavioral Change for Information Management through Data-Driven Green Strategy" on March 27, 2024 at Enterprise Data World (EDW) in Orlando, Florida. In this presentation, Urmi and Fernando discussed a case study describing how the information management division in a large supply chain organization drove user behavior change through awareness of the carbon footprint of their duplicated and near-duplicated content, identified via advanced data analytics. Check out their presentation to gain valuable perspectives on utilizing data-driven strategies to influence positive behavioral shifts and support sustainability initiatives within your organization. In this session, participants gained answers to the following questions: - What is a Green Information Management (IM) Strategy, and why should you have one? - How can Artificial Intelligence (AI) and Machine Learning (ML) support your Green IM Strategy through content deduplication? - How can an organization use insights into their data to influence employee behavior for IM? - How can you reap additional benefits from content reduction that go beyond Green IM?

Driving Behavioral Change for Information Management through Data-Driven Gree...

Enterprise Knowledge

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Dernier (20)

Powerful Google developer tools for immediate impact! (2023-24 C)

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

HTML Injection Attacks: Impact and Mitigation Strategies

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

🐬 The future of MySQL is Postgres 🐘

Tech Trends Report 2024 Future Today Institute.pdf

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Artificial Intelligence: Facts and Myths

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

How to Troubleshoot Apps for the Modern Connected Worker

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Boost Fertility New Invention Ups Success Rates.pdf

GenAI Risks & Security Meetup 01052024.pdf

Scaling API-first – The story of a global engineering organization

Driving Behavioral Change for Information Management through Data-Driven Gree...

Handwritten Text Recognition for manuscripts and early printed texts

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

[Infographic] M-Trends 2016

1. 2015 was the year of more. More breaches became public than in any prior year, and more cyber threat groups were at work around the world with a wider array of motives. The groups infiltrated and destroyed systems, stole personal information and targeted networking devices. This resulted in more stress for those who had to deal with the loss of data and reputation, more time and money spent in recovering from an attack and more reasons for organizations to strengthen their security posture. BY THE NUMBERS THREAT LANDSCAPE: MANDIANT CONSULTING / M-TRENDS 2016 ENERGY 1% AGRICULTURE AND FORESTRY 1% HIGH TECH 13% GOVERNMENT AND INTERNATIONAL ORGANIZATIONS 3% LEGAL SERVICES 3% TRANSPORTATION 3% BUSINESS AND PROFESSIONAL SERVICES 11% MEDIA AND ENTERTAINMENT 11% FINANCIAL SERVICES AND INSURANCE 10% RETAIL 10% EDUCATION 8% BIOTECHNOLOGY AND PHARMACEUTICALS 7% CONSTRUCTION AND ENGINEERING 6% HEALTHCARE 5% AEROSPACE AND DEFENSE 5% TELECOMMUNICATIONS 2% ORGANIZATIONS MORE VIGILANT ABOUT DISCOVERY In 2015, the median time from compromise to discovery was cut by 59 days, down from 205 days. TIME FROM COMPROMISE TO DISCOVERY MEDIAN EXTERNAL NOTIFICATION INTERNAL DISCOVERY 146DAYS 320DAYS 56DAYS MORE LESSONS LEARNED A year of disruptive breaches resulted in new lessons regarding defense and response. 1 Confirm there is a breach. 6 Engage experts before a breach for forensic, legal and PR support. 2 Remember: you’re dealing with human adversaries. They can be unpredictable. 7 Consider all options when asked to pay a ransom. There are no guarantees. 3 Timing is critical — validate and scope the breach, fast. 8 Ensure strong segmentation and controls over your backups. 4 Stay focused — you’re racing against time. 9 After an incident has been handled, focus on broader security improvements. 5 Carefully evaluate whether to confront an attacker (see lesson 2). 10 If you kick the attackers out, be prepared: they may come back. LEARN MORE Get the M-Trends 2016 special report at fireeye.com/M-Trends-2016.html FireEye, Inc. 1440 McCarthy Blvd. Milpitas, CA 95035 408.321.6300 / 877.FIREEYE (347.3393) / info@fireeye.com fireeye.com © 2016 FireEye, Inc. All rights reserved. FireEye is a registered trademark of FireEye, Inc. All other brands, products, or service names are or may be trademarks or service marks of their respective owners. INFO.MTRENDS.EN-US.032016 Disrupting business Stealing personally identifiable information Attacking routers and switches THREE NEW TRENDS APPEARED IN 2015: Using persistence mechanisms Targeting outsourced service providers TWO OLD TRENDS CONTINUED: THE YEAR IN ATTACKS 47% 53% External Notification Internal Discovery MORE BREACHES DISCOVERED INTERNALLY Compared to 2014, the percentage of victims discovering a breach internally rose 16%. 16% INDUSTRIES WHERE MANDIANT INVESTIGATED Percentage of total attacks by industry. MORE AND LESS Some industries saw an increase in attacks compared to 2014. Some saw a decrease. HIGH TECH BUSINESS AND PROFESSIONAL SERVICES 6%6%

[Infographic] M-Trends 2016

Recommandé

Recommandé

Contenu connexe

En vedette

En vedette (10)

Plus de FireEye, Inc.

Plus de FireEye, Inc. (20)

Dernier

Dernier (20)

[Infographic] M-Trends 2016