"While automation and new tools are helping response teams," Bromiley said, "65% of survey respondents see a skills shortage as an impediment to incident response efforts. Training and experience is the difference between breached and not breached."
Although malware has the top spot as the underlying cause of reported breaches, at 69%, unauthorized access, chosen by 51%, is recognized as a growing problem as attackers take advantage of weak, outdated remote access and authentication mechanisms. Organizations are also reporting that 36% of attacks are advanced persistent threats (APTs) or multistage attacks.
Full results will be shared during a two-part webcast. Part 1, Wednesday, June 8, 2016, at 1 PM EDT, will focus on the current threat landscape and how prepared incident responders are to respond to security incidents. Part 2, Thursday, June 9, 2016, at 1 PM EDT, will focus emerging trends in incident response. The series is sponsored by AlienVault, Arbor Networks, HPE, IBM Security, Intel Security, LogRhythm, NETSCOUT, and Veriato, and hosted by SANS.
Register to attend the Part 1 webcast at www.sans.org/webcasts/101322 and the Part 2 webcast at www.sans.org/webcasts/101627
Those who register for the webcast will also receive access to the published results paper.
2016 IR Capabilities Pt 1: The Current Threat Landscape & Survey Results | June 8 | Part 2- June 9 | Free Webcast: sans.org/u/ifH
Malware and APTs remain top threats- Get the full results- SANS 2016 Incident Response Survey in this FREE WEBCAST: sans.org/u/ifH
"Unauthorized Access"- 51% of breaches- growing problem as attackers exploit the weak| SANS 2016 IR Survey Results: sans.org/u/ifH
About SANS Institute
The SANS Institute was established in 1989 as a cooperative research and education organization. SANS is the most trusted and, by far, the largest provider of training and certification to professionals at governments and commercial institutions world-wide. Renowned SANS instructors teach over 50 different courses at more than 200 live cyber security training events as well as online. GIAC, an affiliate of the SANS Institute, validates employee qualifications via 30 hands-on, technical certifications in information security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers master's degrees in cyber security. SANS offers a myriad of free resources to the InfoSec community including consensus projects, research reports, and newsletters; it also operates the Internet's early warning system--the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to help the entire information security community. (www.SANS.org)
To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/new-sans-institute-incident-response-survey-finds-malware-unauthorized-access-and-apts-lead-attacks-300276919.html
SOURCE SANS Institute