Security News > 2023 > April > Threat hunting programs can save organizations from costly security breaches
Proactive threat hunting helps organizations save money by preventing security breaches and reducing the impact of attacks.
To better understand the perspective of threat hunters who are in the trenches defending their organizations every day, Team Cymru surveyed 218 experienced security analysts to learn what works and what doesn't in their threat hunting program, how they measure success, and the biggest challenges they face.
"With today's rising cyber attacks, keeping a proactive stance against threats is key - but teams will only be as successful in protecting their data and assets if they have robust tools to help, the data and visibility into their environments, and experienced analysts to track and stop malicious activity. Yet what the threat hunting analysts reported and what we're seeing in our day-to-day is that security teams are looking for better tools, more data, and more training in order to effectively succeed at threat hunting," said David Monnier, Chief Evangelist and Fellow at Team Cymru.
Ineffective threat hunting program leave organizations vulnerable.
59% say their threat hunting program is not very, or is only somewhat, effective.
Inability to measure success of threat hunting programs and finding more incidents than they have capacity to respond to are what most keep threat hunters up at night.
News URL
https://www.helpnetsecurity.com/2023/04/12/effective-threat-hunting-program/
Related news
- AI security 2024: Key insights for staying ahead of threats (source)
- More than 3 in 4 Tech Leaders Worry About SaaS Security Threats, New Survey Reveals (source)
- Cyber Security and IT Leadership: A Growing Threat to Australia’s Renewable Energy Efforts (source)
- Half of enterprises suffer breaches despite heavy security investments (source)
- Microsoft security tools questioned for treating employees as threats (source)
- Verkada to pay $2.95M for security failures leading to breaches (source)
- Homeland security hopes to scuttle maritime cyber-threats with port infosec testbed (source)