A latest cybersecurity report on Monday revealed that more than three high-severity incidents with direct human involvement were discovered every day in 2022 by Security Operations Center (SOC) analysts.
The Kaspersky report surmised that the daily number of human-driven cyber incidents increased by 1.5 times in 2022. It also showed the high-severity incidents required an average 43.8 minutes to be detected by Kaspersky MDR.
Due to an increase in human-driven attacks this processing time grew by approximately 6 per cent compared to previous year, as they take up more of SOC analyst time.
About 30 per cent of such incidents were associated with Advanced Persistent Threats (APTs), 26 per cent accounted for malware attacks and just over 19 per cent resulted from “ethical hacking”.
Moreover, the proportion of incidents involving publicly available critical vulnerabilities and the detection of traces of previous attacks involving humans was around 9 per cent. Remaining incidents resulted from the successful use of social engineering techniques or were linked to insider threats.
In a statement, Sergey Soldatov, Head of Security Operations Center, Kaspersky said, “The (Kaspersky) MDR report shows that sophisticated attacks driven by humans continue to grow. They require more resources to be investigated and they take up more of SOC analyst time as this type of attack lends itself to automation to a lesser degree. To detect these attacks efficiently we recommend companies to implement comprehensive threat hunting practices combined with classic alert monitoring.”