SANS: "Less Than Half of Cyberattacks Detected via Antivirus"



SANS_endpoint

We have been saying here for a while that antivirus is dead, but SANS just confirmed it in a new report that starts with: "Companies are buying next-gen antivirus and fileless attack detection tools but few have the resources to use them, researchers report. 

Darkreading summarized: "Businesses are investing in more advanced endpoint security tools but don't have the means to properly implement and use them, according to a new report from the SANS Institute.

The SANS 2018 Survey on Endpoint Protection and Response polled 277 IT professionals on endpoint security concerns and practices. In this year's survey, 42% of respondents reported endpoint exploits, down from 53% in 2017. However, the number of those who didn't know they had been breached jumped from 10% in 2017 to 20% in 2018.

Antivirus systems only detected endpoint compromise 47% of the time

Traditional tools are no longer sufficient to detect cyberattacks, the data shows: Antivirus systems only detected endpoint compromise 47% of the time; other attacks were caught through automated SIEM alerts (32%) and endpoint detection and response platforms (26%).

Most endpoint attacks are intended to exploit users. More than 50% of respondents reported Web drive-by incidents, 53% pointed to social engineering and phishing attacks, and half cited ransomware. Credential theft was used in 40% of compromises reported, researchers state.

The majority (84%) of endpoint breaches involve more than one device, experts report. Desktops and laptops are still the top devices of concern, but attackers are also compromising server endpoints, cloud-based endpoints, SCADA, and other industrial IoT devices. Cloud-based endpoints are increasingly popular, going from just over 40% in 2017 to 60% in 2018.

It's clear as daylight that you need to step your users through new-school security awareness training as your last line as defense. More at DarkReading.


Free Phishing Security Test

Did you know that 91% of successful data breaches started with a spear phishing attack?

Cyber-attacks are rapidly getting more sophisticated. We help you train your employees to better manage the urgent IT security problems of social engineering, spear-phishing and ransomware attacks. Take the first step now. Find out what percentage of your employees are Phish-prone with our new, improved free test. 

Get Your Free PST Now

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/phishing-security-test-offer


Topics: Antivirus

Subscribe To Our Blog


2019 National Cybersecurity Awareness Month Resource Kit




Get the latest about social engineering

Subscribe to CyberheistNews