Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Six-month snapshot of state-sponsored threats shows continued APT resi...
Cohesity Strengthens Resilience of Large, Mission-Critical MongoDB Wor...
Closing the gap in Zero Trust implementation: What you need to conside...
Solving data protection challenges in an era of cloud and AI
42Gears Launches SureIdP — Zero Trust Identity and Access Manage...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning
News

Zooming in on the characteristics of the longest-duration cyberattacks

By CybersecAsia editors | Thursday, May 23, 2024, 5:14 PM Asia/Singapore

Zooming in on the characteristics of the longest-duration cyberattacks

Using its 2023 incident response teams telemetry, one cybersecurity firm has taken a deep dive into what makes them tick

In analyzing its incidence response data for 2023, one cybersecurity firm took a deeper look at what it termed “the longest cyberattacks”: those that had persisted for longer than one calendar month.

The data, gathered from Kaspersky’s customer base seeking incident response assistance or when hosting expert events for their internal incident response teams, showed some key trends.

First, the longest cyberattacks that persisted for more than a month constituted 21.85% of the total, an increase over that of 2022 by 5.55%. A primary vector of such long attacks had been identified in the data as “the exploitation of trusted relationships”. In 2022 data, this vector had also been a factor, but for 2023, its frequency had increased, accounting for 6.78% of the total number of the longest attacks. 

Secondly, it was noted that such long attacks gave threat actors more time to infiltrate multiple victims through a single compromised organization. Difficulties were encountered by investigative teams because initially-targeted organizations did not always recognize the importance of thorough investigations, and could have been reluctant to cooperate. 

Also, attacks initiated through the abuse of trusted relationships often required more time to progress from the initial intrusion to the final incursion phase. Furthermore, detecting them takes a lot longer because the attackers’ actions can be hard to distinguish from those of employees working for a contractor. Similarly, many of the longest attacks exceeding one month were exclusively registered within “insider” and phishing vectors.

According to Konstantin Sapronov, Head, Global Emergency Response Team, Kaspersky: “Cybersecurity threats are constantly evolving, and our latest findings underscore the critical role of trust in cyberattacks. In 2023 and for the first time in recent years, attacks through trusted relationships were among the three most used vectors. Half of these incidents were discovered only after a data leak had been found. By exploiting trusted relationships, threat actors can prolong attacks and infiltrate networks for extended periods, posing significant risks to organizations. It’s imperative for businesses to remain vigilant and prioritize security measures to safeguard against such sophisticated tactics.”

Share:

PreviousMitsui Bussan Secure Directions, Inc. launches Blackpanda IR Retainer, a cyber incident emergency response retainer service
NextWhy strong cybersecurity is an inextricable part of the Net Zero journey

Related Posts

What drives customer loyalty most? Price or COVID-19 safety?

What drives customer loyalty most? Price or COVID-19 safety?

Tuesday, February 2, 2021

Hackers increasingly hijacking trusted system tools, ‘Living Off the Land’ in stealth

Hackers increasingly hijacking trusted system tools, ‘Living Off the Land’ in stealth

Monday, October 14, 2024

McAfee report on ransomware resurgence

McAfee report on ransomware resurgence

Monday, September 2, 2019

2022 financial services web-application and API attacks surge 248% in APJ

2022 financial services web-application and API attacks surge 248% in APJ

Tuesday, June 6, 2023

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    With only a small IT team, the digital transformation has united operations across 30 locations, …Read more
  • Automating border control and security with facial recognition technology

    Automating border control and security with facial recognition technology

    Indonesia Immigration & Seaport Authorities enhances security and speeds up border control queues at Batam …Read more
  • Securing wealth advisory services without unnecessary friction: Endowus

    Securing wealth advisory services without unnecessary friction: Endowus

    The wealth advisory platform demonstrates its non-negotiable commitment to a robust security posture through partnering …Read more
  • LifeTech group sets up next-gen security operations center in Malaysia

    LifeTech group sets up next-gen security operations center in Malaysia

    By partnering with a unified cybersecurity platform, the firm will be offering cost-effective advanced SOC …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.