Racing Against the Adversary: How to Win in the Era of the 18-Minute Breach
Security operations centers must scale up to better detect cyberthreats early. New research on "breakout time" reveals strategies on how you can use the 1-10-60 Rule to benchmark your organization in responding to adversary's activities before it results in a full-blown breach.
What is breakout time? It's the time it takes for an intruder to begin moving laterally outside of the initial beachhead to other systems in the network. The average breakout time analyzed over the previous year came in at one hour and 58 minutes.