Lack of Live Threat Intelligence Costs Enterprises $10 Million a Year

Share it on Twitter  
Share it on Facebook  
Share it on Linked in  

According to the results of a recent survey sponsored by Norse and conducted by the Ponemon Institute, enterprises spent an average of $10 million in the past 12 months resolving the impact of exploits -- but if they had actionable intelligence about cyber attacks within 60 seconds of a compromise, they could reduce that cost by $4 million.

The survey of 708 IT and IT security professionals from 378 enterprises found that those that have been able to stop cyber attacks say they need actionable threat intelligence 4.6 minutes in advance to stop them from turning into compromises, while those that have not been successful in detecting attacks believe 12 minutes of advanced warning would have been sufficient to stop them from developing into compromises.

Fully 57 percent of respondents believe the threat intelligence currently available to most companies is often too stale to enable them understand attackers' strategies, motivations, tactics and locations.

"Ponemon Institute has conducted IT security research for over a decade, and this is one of the first studies that reveals the facts behind the impact that weak threat intelligence is having on organizations," Ponemon Institute founder and chairman Larry Ponemon said in a statement. "Anyone who reads this report will come to understand that live threat intelligence must be an integral part of any security strategy."