According to a survey, organizations in Germany lack background knowledge about the different hacker groups and their procedures. The use of existing threat intelligence is a challenge in many organizations.
Mandiant's Global Perceptions on Threat Intelligence report provides insight into how organizations are addressing the increasingly complex threat landscape. The report is based on a global survey of 1.350 cybersecurity decision-makers in 13 countries, including 100 in Germany, and 18 industries, including financial services, healthcare and government agencies. 40 percent of respondents from organizations in Germany stated that their organization was the victim of a cyber attack in the last 12 months - 7 percentage points more than seen worldwide. German organizations see very similar challenges in strengthening their cyber defenses as those responsible for cyber security worldwide.
Threat intelligence remains unused
In order to be able to defend themselves better against attacks, 77 percent of the German survey participants find it important to know information about how potential attackers are proceeding. Nevertheless, 81 percent of those surveyed state that all or the majority of decisions regarding cyber security in their organization are made without information about the potential attackers. Only 35 percent of respondents in Germany are of the opinion that their organization has comprehensive knowledge of the various hacker groups and their tactics, techniques and procedures. 95 percent of German decision-makers are of the opinion that cyber security strategies are not adapted to the dangers quickly enough when new threat intelligence becomes available.
Management seems to underestimate cyber threats
Only 32 percent of respondents see a lack of talent and expertise as a challenge when leveraging threat intelligence. This concern is greater among respondents in North America (47 percent). More than half of German decision-makers (60 percent) also believe that there is sufficient budget to be one step ahead of the attackers. On the other hand, almost two-thirds (64 percent) of those surveyed see the problem in their organization's management team, which underestimates cyber threats. 62 percent call for a rethink here and for their organization to invest more time and energy in the most important new developments in the field of cyber security.
“Organizations in Germany remain a popular target for cybercriminals. With a string of significant security incidents this young year, security professionals are more aware than ever of the need for better security practices. However, security teams often struggle to keep up with the rapidly changing threat landscape. They also worry that senior executives don't fully understand the scale of the threat," said Jens Monrad, Head of Client Intelligence, EMEA at Google Cloud. “Security teams should therefore acquire threat intelligence that is trustworthy, timely and actionable, and regularly share relevant intelligence (tactical, operational and strategic in nature) with appropriate stakeholders up to senior level. Then organizations can make security and business decisions with insight into the potential attackers.”
More at Mandiant.de
About Mandiant Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response. With decades of experience on the cyber frontline, Mandiant helps organizations confidently and proactively defend against cyber threats and respond to attacks. Mandiant is now part of Google Cloud.