News Report: Reduction in Hackers’ Time Spent in Compromised Networks
In the first half of 2023, cybersecurity specialists have observed a significant decrease in the duration that hackers spend in compromised networks. Sophos, a leading cybersecurity company, reports that in attacks involving extortion during their stay on the network, the average duration has decreased from 9 to 5 days.
According to statistics provided by Sophos, around 68 to 75% of all cyber attacks in 2023 were related to ransomware programs. In contrast, the average duration of other types of attacks has increased from 11 to 13 days. This suggests that cybercriminals tend to linger on compromised networks, waiting for the opportune moment.
A noteworthy observation is that most attacks involving extortion occur on Fridays and Saturdays, when companies tend to have slower response times as it becomes more challenging for them to reach their IT departments.
One of the most vulnerable components in network security is the remote desktop protocol (RDP), which is utilized in approximately 95% of hacking incidents. Sophos strongly advises reinforcing RDP protection, as restricting access through RDP can significantly impede hackers’ efforts.
To effectively safeguard against cyber threats, SOPHOS recommends conducting regular analysis of network data. This practice not only aids in real-time threat detection, but also provides valuable information for swift incident response.