Cisco 2018 Annual Cybersecurity Report Reveals Security Leaders Rely on and Invest in Automation, Machine Learning and Artificial Intelligence to Defend Against Threats


Findings show 39 percent of organizations are reliant on automation, 34 percent are reliant on machine learning, 32 percent are highly reliant on AI

SAN JOSE, Calif., Feb. 21, 2018 (GLOBE NEWSWIRE) -- Malware sophistication is increasing as adversaries begin to weaponize cloud services and evade detection through encryption, used as a tool to conceal command-and-control activity. To reduce adversaries' time to operate, security professionals said they will increasingly leverage and spend more on tools that use AI and machine learning, reported in the 11th Cisco® 2018 Annual Cybersecurity Report (ACR).

While encryption is meant to enhance security, the expanded volume of encrypted web traffic (50 percent as of October 2017) - both legitimate and malicious - has created more challenges for defenders trying to identify and monitor potential threats. Cisco threat researchers observed more than a threefold increase in encrypted network communication used by inspected malware samples over a 12-month period.

Applying machine learning can help enhance network security defenses and, over time, "learn" how to automatically detect unusual patterns in encrypted web traffic, cloud, and IoT environments. Some of the 3,600 chief information security officers (CISOs) interviewed for the Cisco 2018 Security Capabilities Benchmark Study report, stated they were reliant and eager to add tools like machine learning and AI, but were frustrated by the number of false positives such systems generate. While still in its infancy, machine learning and AI technologies over time will mature and learn what is "normal" activity in the network environments they are monitoring.

"Last year's evolution of malware demonstrates that our adversaries continue to learn," said John N. Stewart, Senior Vice President and Chief Security and Trust Officer, Cisco. "We have to raise the bar now - top down leadership, business led, technology investments, and practice effective security - there is too much risk, and it is up to us to reduce it."

Cisco 2018 Annual Cybersecurity Report Additional Highlights

  • The financial cost of attacks is no longer a hypothetical number:
    • According to study respondents, more than half of all attacks resulted in financial damages of more than US$500,000, including, but not limited to, lost revenue, customers, opportunities, and out-of-pocket costs
  • Supply chain attacks are increasing in velocity, complexity
    These attacks can impact computers on a massive scale and can persist for months or even years. Defenders should be aware of the potential risk of using software or hardware from organizations that do not appear to have a responsible security posture.
    • Two such attacks in 2017, Nyetya and Ccleaner, infected users by attacking trusted software.
    • Defenders should review third-party efficacy testing of security technologies to help reduce the risk of supply chain attacks. 
  • Security is  getting more complex, scope of breaches is expanding
    Defenders are implementing a complex mix of products from a cross-section of vendors to protect against breaches. This complexity and growth in breaches has many downstream effects on an organization's ability to defend against attacks, such as increased risk of losses.
    • In 2017, 25 percent of security professionals said they used products from 11 to 20 vendors, compared with 18 percent of security professionals in 2016.
    • Security professionals said 32 percent of breaches affected more than half of their systems, compared with 15 percent in 2016.
  • Security professionals see value in behavioral analytics tools in locating malicious actors in networks
    • 92 percent of security professionals said behavior analytics tools work well. Two-thirds of the healthcare sector, followed by financial services, found behavior analytics to work extremely well to identify malicious actors.
  • Use of cloud is growing; attackers taking advantage of the lack of advanced security
    • In this year's study, 27 percent of security professionals said they are using off-premises private clouds, compared with 20 percent in 2016
    • Among them, 57 percent said they host networks in the cloud because of better data security; 48 percent, because of scalability; and 46 percent, because of ease of use.
    • While cloud offers better data security, attackers are taking advantage of the fact that security teams are having difficulty defending evolving and expanding cloud environments. The combination of best practices, advanced security technologies like machine learning, and first-line-of-defense tools like cloud security platforms can help protect this environment.
  • Trends in malware volume have an impact on defenders' time to detection (TTD)
    • The Cisco median TTD of about 4.6 hours for the period from November 2016 to October 2017 - well below the 39-hour median TTD reported in November 2015, and the 14-hour median reported in the Cisco 2017 Annual Cybersecurity Report for the period from November 2015 to October 2016.
    • The use of cloud-based security technology has been a key factor in helping Cisco to drive and keep its median TTD to a low level. Faster TTD helps defenders move sooner to resolving breaches.

Additional Recommendations for Defenders:

  • Confirm that they adhere to corporate policies and practices for application, system, and appliance patching.
  • Access timely, accurate threat intelligence data and processes that allow for that data to be incorporated into security monitoring.
  • Perform deeper and more advanced analytics.
  • Back up data often and test restoration procedures, processes that are critical in a world of fast-moving, network-based ransomware worms and destructive cyber weapons.
  • Conduct security scanning of microservice, cloud service, and application administration systems.

About the Report:
The Cisco 2018 Annual Cybersecurity Report, now in its 11th year, highlights findings and insights derived from threat intelligence and cybersecurity trends observed over the past 12-18 months from threat researches and six technology partners: Anomali, Lumeta, Qualys, Radware, SAINT, and TrapX. Also, included in the report are results of the annual Security Capabilities Benchmark Study (SCBS), which this year surveyed 3,600 chief security officers (CSOs) and security operations (SecOps) managers from 26 countries about the state of cybersecurity in their organizations.

Supporting Resources
Cisco 2018 Annual Cybersecurity Report
Cisco Blog: Setting the Cybersecurity Bar Higher - Announcing the Cisco 2018 Annual Cybersecurity
Cisco 2018 Annual Cybersecurity Report Graphics
In-Security video
Follow Cisco Security on Twitter @CiscoSecurity
Follow Cisco Security on LinkedIn 
Follow Cisco Security on Instagram
Like Cisco Security on Facebook

RSS Feed for Cisco:

About Cisco

Cisco (NASDAQ:CSCO) is the worldwide technology leader that has been making the Internet work since 1984. Our people, products, and partners help society securely connect and seize tomorrow's digital opportunity today. Discover more at and follow us on Twitter at @Cisco.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.

Press Relations
Raquel Prieto

Analyst Relations
Jenna Duston

Investor Relations
Marty Palka 

This announcement is distributed by Nasdaq Corporate Solutions on behalf of Nasdaq Corporate Solutions clients.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Cisco via Globenewswire




Abonnera på våra pressmeddelanden.

Senaste pressmeddelandena från NASDAQ OMX

Nasdaq Welcomes Dropbox, Inc. (Nasdaq: DBX) to The Nasdaq Stock Market23.3.2018 19:52Pressmeddelande

NEW YORK, March 23, 2018 (GLOBE NEWSWIRE) -- Dropbox, Inc. (Nasdaq:DBX), a leading global collaboration platform, visited the Nasdaq MarketSite in Times Square today in celebration of its initial public offering (IPO) on The Nasdaq Stock Market. Founded in 2007, Dropbox serves more than 500 million registered users across 180 countries. Over the past decade, Dropbox has pioneered the worldwide adoption of file sync and share software and has expanded its product capabilities to help users do their best work. Today, 80% of its 11 million paying customers use Dropbox for work. "Today we're taking an important step in our journey. I'm so grateful to all of our customers and our incredible team for getting us here," said Drew Houston, Co-Founder and Chief Executive Officer. "Nasdaq has always championed innovation and entrepreneurship, and we're thrilled to partner with them as we become a public company." "For more than a decade, Dropbox has transformed how people around the world access

Barings Alternative Investments Expands Aviation Investment Platform Through Partnership with Genesis Aircraft Services23.3.2018 15:00Pressmeddelande

CHARLOTTE, N.C., March 23, 2018 (GLOBE NEWSWIRE) -- Barings Alternative Investments, part of Barings LLC, one of the world's leading financial services firms, announced today the expansion of its aircraft leasing platform on behalf of the firm's institutional fund clients through Genesis Aircraft Services Limited. To facilitate new aircraft acquisitions on behalf of Barings' clients, Genesis will increase existing capabilities to now include all commercial, technical, portfolio and legal management functions required of a full-service premier owner and lessor of commercial aircraft. As part of its increased capabilities, Karl Griffin will join Genesis as Chief Commercial & Investment Officer and will also be appointed to the Genesis Board of Directors effective May 2018; Anna Reimers will join Genesis as Chief Legal Officer; and John McMahon will be appointed to Genesis' Board as an independent director. Griffin is currently the Chief Operating Officer at DAE Capital, an aircraft leasi

Agrisolutions Acquires Trinity23.3.2018 12:00Pressmeddelande

HAMILTON, Ontario, March 23, 2018 (GLOBE NEWSWIRE) -- Venanpri Group's Agrisolutions division, which services the global agricultural marketplace with its Ingersoll and Bellota brands, announced today the acquisition of Trinity Logistics Corporation ("Trinity"). Based in the U.S., Trinity provides supply-chain solutions relating to fasteners and other components to leading global OEMs that produce mission critical machinery for the agricultural and construction end markets. The terms of the transaction were not disclosed. Headquartered in Davenport, Iowa, Trinity has established ten strategically located service facilities throughout the United States. Trinity specializes in the supply of standard and custom components through vendor managed inventory programs and other arrangements tailored to customer needs. Trinity utilizes its industry leading technology to improve the flow of products, services and information across the supply chain resulting in excellence in the operations of it

BIMobject AB: BIMobject releases toolkit to help digitalise the construction industry23.3.2018 10:57Pressmeddelande

BIMobject releases a toolkit for easy, seamless integration of BIM-softwares with the corporation's cloud-based platform, which hosts digital building products. This gives building product manufacturers more marketing channels and easier access to the platform's user base. BIMobject's new Software Development Kit (SDK) is a quick, efficient way for third party-developers to start using the BIMobject platform. It allows for BIMobject's market-leading platform for digital building products easily to be integrated in different BIM-programmes, such as apps. The design, user experience, and features can be defined entirely by the developer. The SDK is made available as an open source-code for free download and is connected to the web interface upon application. The code is freestanding, making it independent of updates. This in turn makes the SDK future-proof, easy to apply, and less vulnerable, with reduced loading time of the integrated digital content. For more information, please contac

BIMobject AB: BIMobject släpper startkit som hjälper byggbranschen att digitaliseras23.3.2018 10:57Pressmeddelande

BIMobject släpper ett startkit som gör det enkelt att skapa sömlös integration av BIM-programvaror med bolagets molnbaserade plattform BIMobject Cloud för digitala byggprodukter. Produkttillverkare ges på så vis fler marknadsföringskanaler och smidigare tillgång till plattformens användarbas. BIMobjects nya Software Development Kit (SDK) gör det enkelt för tredjepartsutvecklare att snabbt börja använda bolagets webbgränssnitt. Innehållet som tillhandahålls på BIMobjects marknadsledande plattform för digitala byggprodukter kan på så vis enkelt integreras i olika BIM-program, exempelvis i form av appar. Design, användarupplevelse och funktioner kan bestämmas helt av utvecklaren. Startkitet tillhandahålls som öppen källkod ("open-source") för gratis nedladdning och kopplas till webbgränssnittet efter ansökan. Koden i startkitet är fristående och därför oberoende av uppdateringar. Detta gör startkitet framtidssäkert, lättapplicerat, mindre sårbart och kortar dessutom ned laddningstider av

Comodo CA Sees 35 Percent Year-Over-Year Increase in EV Certificates22.3.2018 15:47Pressmeddelande

EV SSL will be a topic of discussion at the Comodo CA booth during RSA 2018 CLIFTON, N.J., March 22, 2018 (GLOBE NEWSWIRE) -- Comodo CA, a worldwide leader in digital identity solutions, will address evolving cyberthreats and the increasing importance Extended Validation (EV) TLS/SSL certificates play in securing websites and inspiring consumer trust at the RSA Conference 2018, San Francisco, April 16 - 20. According to the Feb 2018 Netcraft report, Comodo CA has seen a 35 percent year-over-year increase of EV certificate units* making it one of the fastest growing providers of high assurance certificates. The volume of EV certificates globally also saw a record year in 2017 as more and more businesses adopt EV as standard practice for their websites. The demand for stronger, more secure EV certificates comes in the wake of increased phishing websites using Domain Validated (DV) certificates. Phishing websites imitate legitimate websites to steal customers' funds and identities. Phishi

I vårt pressrum kan du läsa de senaste pressmeddelandena, få tillgång till pressmaterial och hitta kontaktinformation.

Besök vårt pressrum