A new study reveals that the prevalence of advanced evasion techniques (AETs) being employed by attackers is playing a significant role in undermining security efforts and allowing critical networks to be infiltrated.
Vanson Bourne surveyed 800 CIOs and security managers from the U.S., U.K.,Germany, France, Australia, Brazil, and South Africa and found that most respondents do not fully understand AETs and, as a consequence, lack the proper technology to stop the
“Many organizations are so intent of identifying new malware that they are falling asleep at the wheel toward advanced evasion techniques that can enable malware to circumvent their security defences,” said Jon Oltsik, of the Enterprise Strategy Group.
“AETs pose a great threat because most security solutions can’t detect or stop them. Security professionals and executive managers need to wake up as this is a real and growing threat.”
Key findings in the study include:
- More than one in five admits their network was breached (22%), and nearly 40% of those breached believe that AETs played a key role
- A full 39% of IT decision makers do not believe they have methods to detect and track AETs within their organization
- Almost two-thirds of respondents (63%) say that the biggest challenge when trying to implement technology against AETs is convincing the board they are a real and serious threat
“Because of the debate about the very existence of AETs, hackers continue to use these techniques successfully to exfiltrate information,” the report states.
“This confusion allows hackers to further invest in increasingly sophisticated attacks, while staying ‘under the radar’ even longer, resulting in damaging and costly data breaches. The longer the industry continues to debate the existence of AETs, the longer businesses will be vulnerable to them.”
Read More Here (PDF)…