Dwell time: How are attackers staying hidden for so long?

Presented by

Peter Varhol, Technology Evangelist, Gurucul

About this talk

Dwell Time represents the length of time a cyber attacker has free reign in an environment. Sadly, the average time they enter your network until the time you get them out is way too long. According to a report from Booz Allen Hamilton, cybersecurity dwell times can last 250 days. In the 2020 Cost of a Data Breach Report, IBM estimates it takes 280 days on average to identify and contain a breach. The longer attackers are in the environment, the more damage they can do, obviously. And the more they learn about how an organization operates, the more weaknesses they can identify to exploit. We have so many cybersecurity defenses in our arsenal and many more technologies on the market to choose from. So why is it taking companies so long to detect and eradicate cyber attackers? In this webinar we will look at the tactics and techniques that criminals use to get into the network and stay undetected. We’ll discuss the failures of detection technologies and what can be done to improve Mean Time To Detect (MTTD). We’ll also look at response breakdowns and what you can do to progress Mean Time To Respond (MTTR).

Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (61)
Subscribers (2103)
Gurucul is transforming enterprise security with user behavior based machine learning and predictive analytics. Using identity to monitor for threats, Gurucul provides Actionable Risk Intelligence™ to protect against targeted and under-the-radar attacks. Gurucul is able to proactively detect, prevent, and deter advanced insider threats, fraud and external threats to system accounts and devices using self-learning, behavioral anomaly detection algorithms. Gurucul is backed by an advisory board comprised of Fortune 500 CISOs, and world renowned-experts in government intelligence and cyber security. The company was founded by seasoned entrepreneurs with a proven track record of introducing industry changing enterprise security solutions. Our mission is to help organizations protect their intellectual property, regulated information, and brand reputation from insider threats and sophisticated external intrusions.