In the final part of our blog series focusing on the key points of the Solar Winds MSP Cyber Preparedness survey, we look at how “lethargy” is hindering companies’ ability to effectively combat cyberattacks.
Over the past few weeks, we have explored in-depth the seven key areas for concern highlighted in our survey. These are the important takeaways we uncovered that companies and MSPs need to focus their attention on to get their cyberdefenses up to scratch. These are:
1. Inconsistency – In enforcing security policies
2. Negligence – In the approach to user security awareness training
3. Shortsightedness – In the application of cybersecurity technologies
4. Complacency – Around vulnerability reporting
5. Inflexibility – In adapting processes and approach after breach
6. Stagnation – In the application of key prevention technologies
7. Lethargy – Around detection and response
As part of our report—which surveyed 400 SMEs and enterprises, split equally across the US and the UK—we found that over the past 12 months, detection times for cyberintrusion had risen for 40% of respondents, response times were up for 44%, and resolution times had increased for 46%. In contrast, in our 2016 report, detection times had risen for only 28% of respondents, response times were up for 28%, and resolution times had increased for 27%.
The big worry is this shows that the rate of decay (and complacency) is growing, which is really bad news for organizations and their data security.
What is abundantly clear is that businesses are experiencing real challenges, and struggling to even know at the simplest level when cyberattacks are happening. This is especially true for those companies with IT departments that do not have a background in security. In these instances, they are finding it more difficult to identify a breach and more challenging to respond and recover.
This is likely to continue on as a huge challenge going forward. The reality is that attackers are getting onto end points and then exfiltrating data long before they are discovered. This means that even with ransomware attacks, a lot of damage can be done before you see any screen demanding your money.
For example, if you get infected by a ransomware attack that comes via email, initially a Trojan will be downloaded that will likely scan your networks for things such as EPOS systems or accounting software. For cybercriminals, stealing material like bank details will be a much more enticing prospect than a simple ransomware. Once this data has been located and removed, the ransomware will be released as much as a smoke screen as anything else.
With the rise in detection, response, and remediation times, MSPs have an opportunity to show how they can provide real value, especially if they have a technology stack that can be deployed to help businesses manage and monitor their networks more effectively. Bundling digital forensics and incident response, with the ability to monitor infrastructure using different SaaS or multitenant subscription software, will be a major incentive for companies struggling to secure their networks.
We've tailored the report to reflect your side of the industry:
Click here to find out more about how SolarWinds® MSP can help you protect your customers.
© 2017 SolarWinds MSP UK Ltd. All rights reserved.