▾ G11 Media Network: | ChannelCity | ImpresaCity | SecurityOpenLab | Italian Channel Awards | Italian Project Awards | Italian Security Awards | ...
InnovationOpenLab

Speed of cyber-attacks increased in 2024 with lateral movement achieved in just 27 minutes: ReliaQuest Annual Threat Report

ReliaQuest, the leader in AI-powered security operations, today published its Annual Threat Report, which reveals that attackers are moving at greater speed than ever before. Once inside networks, lat...

Business Wire

Security teams are gaining speed as well; containing attacks using AI and automation can take just three minutes, compared to six hours with traditional approaches

TAMPA, Fla.: ReliaQuest, the leader in AI-powered security operations, today published its Annual Threat Report, which reveals that attackers are moving at greater speed than ever before. Once inside networks, lateral movement can take as little as 27 minutes (48 minutes on average). Meanwhile, security operations are taking greater advantage of tools like AI and automation to speed up defenses -- and notably the rapidly growing power of agentic AI agents.

ReliaQuest customers using automated workflows in 2024 dramatically reduced their mean time to contain (MTTC) cyber threats to as little as 3 minutes, compared to 6.3 hours without automation.

Though attackers are moving faster, they’re still using tried-and-tested methods. Phishing remains the top initial access method. Nearly 30% of reported phishing emails now contain credential harvesters, which lay the groundwork for larger attacks like business email compromise. Enhanced by AI, credential harvesting emails now feature more polished language, fewer errors, and highly convincing designs, making them an increasingly effective and scalable weapon for cybercriminals. The more quickly attackers gain this access, the more quickly they can spread and do real damage to an organization.

“Time is the enemy in cybersecurity,” said Michael McPherson, ReliaQuest Senior Vice President of Technical Operations. “Attackers are moving faster than ever, which means our defenses must speed up as well. Manual responses are no longer sufficient to stop today’s threats. We have to take advantage of automation and AI to stay ahead. Agentic AI is now taking this even further and is capable of processing security alerts 20x faster than traditional methods with 30% greater accuracy at identifying true threats to the business.”

In addition to utilizing automation and AI, ReliaQuest’s research identified five other critical controls that security teams must address to avoid being exposed to threats. These are:

  • Improve detections - Insufficient monitoring or logging leaves parts of the system vulnerable, making it impossible to detect or investigate malicious activity.
  • Ensure all devices are monitored - Devices without security controls like endpoint protection or monitoring agents create security gaps, providing attackers with open pathways throughout networks.
  • Use secure VPNs - VPNs lacking essential protections like multifactor authentication (MFA) or device-based certificates allow attackers to exploit stolen credentials and gain network access.
  • Limit external exposure - Vulnerabilities in internet-facing devices serve as entry points for attackers to infiltrate the network.
  • Maintain vigilance around social engineering tactics, especially those targeting IT teams - Weak institutional controls make organizations easy targets for social engineering attacks, with 14% of breaches in 2024 involving social engineering for initial access or privilege escalation

Read more in the full ReliaQuest Annual Threat Report here: https://www.reliaquest.com/blog/insights-from-reliaquests-2025-annual-threat-report/

About ReliaQuest

ReliaQuest exists to Make Security Possible. Our Agentic AI-powered security operations platform, GreyMatter, allows security teams to detect threats at the source, contain, investigate and respond in less than 5 minutes – eliminating Tier 1 and Tier 2 security operations work. GreyMatter uses data-stitching, detection-at-source, AI and automation to seamlessly connect telemetry from across cloud, multi-cloud and on-premises technologies. ReliaQuest is the only cybersecurity technology company that delivers outcomes specific to each organization’s unique architecture, technology and business needs. With over 1,000 customers and 1,200 teammates across six global operating centers, ReliaQuest Makes Security Possible for the most trusted enterprise brands in the world. Learn more at www.reliaquest.com.

Fonte: Business Wire

If you liked this article and want to stay up to date with news from InnovationOpenLab.com subscribe to ours Free newsletter.

Related news

Last News

RSA at Cybertech Europe 2024

Alaa Abdul Nabi, Vice President, Sales International at RSA presents the innovations the vendor brings to Cybertech as part of a passwordless vision for…

Italian Security Awards 2024: G11 Media honours the best of Italian cybersecurity

G11 Media's SecurityOpenLab magazine rewards excellence in cybersecurity: the best vendors based on user votes

How Austria is making its AI ecosystem grow

Always keeping an European perspective, Austria has developed a thriving AI ecosystem that now can attract talents and companies from other countries

Sparkle and Telsy test Quantum Key Distribution in practice

Successfully completing a Proof of Concept implementation in Athens, the two Italian companies prove that QKD can be easily implemented also in pre-existing…

Most read

Claritev Further Strengthens Leadership Team as Part of Business Transformation…

$CTEV #CTEV--Claritev Corporation (“Claritev” or the “Company”) (NYSE: CTEV), a technology, data and insights company focused on making healthcare more…

SMART Modular Expands CXL Offerings with Addition of E3.S 2T 128GB CMM…

$PENG #AI--SMART Modular Technologies Inc. (“SMART”), a Penguin Solutions, Inc. brand (Nasdaq: PENG) and a global leader in integrated memory solutions,…

Hawk Recognized as a Strong Performer in Anti-Money Laundering Solutions…

Hawk, the leading provider of AI-powered anti-money laundering (AML), screening and fraud prevention solutions, has today announced that it has been recognized…

ISG to Assess Workday Ecosystem Providers in the U.S., Europe and APAC

#AI--Information Services Group (ISG) (Nasdaq: III), a global AI-centered technology research and advisory firm, has launched a research study examining…

Newsletter signup

Join our mailing list to get weekly updates delivered to your inbox.

Sign me up!