Long -term cyberbrains have become a growing threat to companies. This is confirmed by the latest incident response analysis report published by Kaspersky, which indicates that this type of attacks represented 35.2% of the total incidents recorded in 2024. The most worrying thing: these attacks remain active for an average of 253 days, highlighting the difficulties in detecting and neutralizing them in time.
The study, based on data collected during real interventions in affected companies, offers a detailed radiography of the most sophisticated threats detected in the last year. The input vectors most used by the attackers include applications exposed on the Internet, committed relationships of trust and the use of legitimate credentials to access corporate systems.
“Understanding the evolution of the panorama of cyber threats is crucial for any company that seeks Global emergency response equipment of Kaspersky.
Prolonged attacks last more than eight months and point to the theft and encryption of business data
Persistent cyberbrays
The most common impacts of these prolonged attacks are data encryption and their subsequent filtration, which means not only a financial risk, but also reputations for affected companies. Despite the growing investment in security, the average response to an incident remains 50 hours, a considerable figure against the speed with which attackers can move laterally inside a network.
Preparation and response: Keys to mitigate risks
The report also underlines the importance of adopting a more mature defensive position. To do this, it recommends the implementation of advanced security solutions and the use of specialized services such as Managed Detection and Response (MDR) e Incident Response. These resources allow to cover the entire incident management cycle, from early detection to recovery, even in environments where cybersecurity specialists are missing.
