Search DubaiPRNetwork.com

Home >> Technology

Cisco 2018 Annual Cybersecurity Report Reveals Security Leaders Rely on and Invest in Automation, Machine Learning and Artificial Intelligence to Defend Against Threats

Cisco 2018 Annual Cybersecurity Report Reveals Security Leaders Rely on and Invest in Automation, Machine Learning and Artificial Intelligence to Defend Against Threats

Sunday, February 25, 2018/ Editor -  

Share

Home >> Technology
Findings show 39 percent of organizations are reliant on automation, 34 percent are reliant on machine learning, 32 percent are highly reliant on AI
 
Dubai, United Arab Emirates, February 25, 2018 –   Malware sophistication is increasing as adversaries begin to weaponize cloud services and evade detection through encryption, used as a tool to conceal command-and-control activity. To reduce adversaries’ time to operate, security professionals said they will increasingly leverage and spend more on tools that use AI and machine learning, reported in the 11th Cisco® 2018 Annual Cybersecurity Report (ACR).  
 
While encryption is meant to enhance security, the expanded volume of encrypted web traffic (50 percent as of October 2017) — both legitimate and malicious — has created more challenges for defenders trying to identify and monitor potential threats. Cisco threat researchers observed more than a threefold increase in encrypted network communication used by inspected malware samples over a 12-month period. 
 
Applying machine learning can help enhance network security defenses and, over time, “learn” how to automatically detect unusual patterns in encrypted web traffic, cloud, and IoT environments. Some of the 3,600 chief information security officers (CISOs) interviewed for the Cisco 2018 Security Capabilities Benchmark Study report, stated they were reliant and eager to add tools like machine learning and AI, but were frustrated by the number of false positives such systems generate. While still in its infancy, machine learning and AI technologies over time will mature and learn what is “normal” activity in the network environments they are monitoring.
 
“Last year’s evolution of malware demonstrates that our adversaries continue to learn,” said Scott Manson, Cybersecurity Lead - Middle East and Africa, Cisco. “We have to raise the bar now – top down leadership, business led, technology investments, and practice effective security – there is too much risk, and it is up to us to reduce it.”
 
Cisco 2018 Annual Cybersecurity Report Additional Highlights 
  • The financial cost of attacks is no longer a hypothetical number:
    • According to study respondents, more than half of all attacks resulted in financial damages of more than US$500,000, including, but not limited to, lost revenue, customers, opportunities, and out-of-pocket costs 
  • Supply chain attacks are increasing in velocity, complexity - These attacks can impact computers on a massive scale and can persist for months or even years. Defenders should be aware of the potential risk of using software or hardware from organizations that do not appear to have a responsible security posture.
    • Two such attacks in 2017, Nyetya and Ccleaner, infected users by attacking trusted software.
    • Defenders should review third-party efficacy testing of security technologies to help reduce the risk of supply chain attacks.
  • Security is getting more complex, scope of breaches is expanding -  Defenders are implementing a complex mix of products from a cross-section of vendors to protect against breaches. This complexity and growth in breaches has many downstream effects on an organization’s ability to defend against attacks, such as increased risk of losses.
    • In 2017, 25 percent of security professionals said they used products from 11 to 20 vendors, compared with 18 percent of security professionals in 2016.
    • Security professionals said 32 percent of breaches affected more than half of their systems, compared with 15 percent in 2016.
  • Security professionals see value in behavioral analytics tools in locating malicious actors in networks
    • 92 percent of security professionals said behavior analytics tools work well. Two-thirds of the healthcare sector, followed by financial services, found behavior analytics to work extremely well to identify malicious actors.
  • Use of cloud is growing; attackers taking advantage of the lack of advanced security 
    • In this year’s study, 27 percent of security professionals said they are using off-premises private clouds, compared with 20 percent in 2016
    • Among them, 57 percent said they host networks in the cloud because of better data security; 48 percent, because of scalability; and 46 percent, because of ease of use.
    • While cloud offers better data security, attackers are taking advantage of the fact that security teams are having difficulty defending evolving and expanding cloud environments. The combination of best practices, advanced security technologies like machine learning, and first-line-of-defense tools like cloud security platforms can help protect this environment. 
  • Trends in malware volume have an impact on defenders’ time to detection (TTD)
    • The Cisco median TTD of about 4.6 hours for the period from November 2016 to October 2017 — well below the 39-hour median TTD reported in November 2015, and the 14-hour median reported in the Cisco 2017 Annual Cybersecurity Report for the period from November 2015 to October 2016.
    • The use of cloud-based security technology has been a key factor in helping Cisco to drive and keep its median TTD to a low level. Faster TTD helps defenders move sooner to resolving breaches.
Additional Recommendations for Defenders:
  • Confirm that they adhere to corporate policies and practices for application, system, and appliance patching.
  • Access timely, accurate threat intelligence data and processes that allow for that data to be incorporated into security monitoring.
  • Perform deeper and more advanced analytics. 
  • Back up data often and test restoration procedures, processes that are critical in a world of fast-moving, network-based ransomware worms and destructive cyber weapons.
  • Conduct security scanning of microservice, cloud service, and application administration systems. 

Previous in Technology

Next in Technology


Home >> Technology Section

Latest Press Release

DWTC announces up to 70 per cent reduction on FZ licensing and incorporation fee ...

Young Guns Make Their Mark as Uae Team Emirates Finish Top of the Team Standings

Watermelon Communications joins 3AW global media network

The Balmain Flamea II savours the allure of haute couture

Abu Dhabi International Airport enhances traveler experience this summer season

Guaranty Trust Bank (Tanzania) Limited goes live on ICS BANKS from ICS Financial ...

2XL launches Blomsbury coffee color sofa set

DIB Champions Customer Happiness With 9th Double Your Salary Draw

Bath-time Essentials from Corine de Farme

Medeor 24x7 International Hospital Al Ain Signs MoU with Fatima College of Healt ...

DHA focuses on expanding reach of telemedicine

Yet another strategic step from Turkish Airlines before moving to the Istanbul N ...

Scuderia Ferrari presents the new Aero collection for Spring Summer 2018 season

Jafza F&B Sector Sees Steady Growth in 2017

Philips ranked amongst 25 great places to work for in the UAE

NAMA and UN Women Collaborate to Create New Entrepreneurial Opportunities for 25 ...

FBMA offers jam-packed Summer Camp at its newly opened Ladies' Club

EverSnow to launch Snow Land at the Al Shallal Theme Park Ice Rink in Jeddah i ...

Trend Alert | Make way for summer stripes

Guinness World Records Launches Arabic Website to Cater to the Growing Number of ...