Carbon Black’s Global Incident Response Threat Report details “notable rise” in Island Hopping episodes

Carbon Black – a specialist in the realms of cloud-delivered, next generation endpoint security – has just issued its latest Global Incident Response Threat Report, aggregating key findings from IR partner investigations during the last 90 days. The company’s 100+ IR partners conducted more than 500 response engagements in 2018 and continue to use Carbon Black solutions in more than one engagement per day (on average). The insights from the Global Incident Response Threat Report chronicle Carbon Black partners’ experiences during critical engagements.

The findings state that half of today’s surveyed attacks leverage ‘Island Hopping’, meaning that attackers are not only after a network, but supply chains as well. More than half of all survey respondents (56% of them, to be exact) encountered instances of counter-incident response in the past 90 days.

According to the survey, 70% of all attacks now involve attempts at lateral movement as attackers take advantage of new vulnerabilities and native operating system tools to move around a network. Additionally, nearly a third (31%) of targeted victims now experience destructive attacks. This is an alarming by-product of attackers gaining better and more prolonged access to targets’ environments.

“Attackers are fighting back,” said Tom Kellermann, Carbon Black’s chief cyber security officer. “They appear to have no desire to leave the environment. They don’t just want to rob you and those along your supply chain. In the parlance of The Dark Web, attackers these days appear to want to ‘own’ your entire system.”

Again according to the survey results, the financial and healthcare industries remain most vulnerable to destructive attacks, but the threat to manufacturing companies has grown significantly. In the past 90 days, nearly 70% of all respondents saw attacks on the financial industry, followed by healthcare (61%) and manufacturing (59%, which is up from 41% in the previous report).

The latest Global Incident Response Threat Report aggregates qualitative and quantitative input from 40+ Carbon Black IR partners and includes detailed Case Studies from BTB Security, DarkMatter and Optiv Security. The report’s goal is to offer actionable intelligence for business and technology leaders fuelled by analysis of the newest threats and expert insights on how to stop them.

This is Carbon Black’s third Global Incident Response Threat Report since their introduction in July last year.

Click here to download the full report from Carbon Black

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.

Related Posts