Cyber Dwell Time and Lateral Movement

Provided by Forcepoint

Category Cybercrime

Type White Paper

Length 6

Publish Date December 29 2015

Date posted June 02 2016


Cyber dwell time is the length of time from a breach occurring until the time of its discovery and remediation. The initial breach and early stages of lateral movement within the network is what gives an attacker the opportunity to obtain legitimate credentials. The longer an attacker remains in your network, the higher the risk for damage. It’s that simple. Other cybersecurity metrics such as the number of attacks stopped, the ability to recognize attack techniques of certain attackers, or even attribution, are all secondary. Visibility and breach containment - stopping lateral movement and the breach from “calling home” – are, ultimately, the only thing that will minimize the impact of the attack by preventing the attackers from stealing your data. 



Thinking Different

Taking baby steps with Big Data

Jon Collins’ in-depth look at tech and society


China Rising

The South China Sea: A new hacking hotspot

Phil Muncaster reports on China and beyond


CIO Watch

Losing CIOs to startups could be costly

Mark Chillingworth on IT leadership

Most Recent Comments

Resource Center

  • /view_company_report/775/aruba-networks
  • /view_company_report/419/splunk


Crowdfunding: Viable alternative to VC funding or glorified marketing?