Trustwave SpiderLabs Uncovers Critical Cybersecurity Vulnerabilities Exposing Manufacturers to Costly Attacks. Learn More

Request a Demo

Trustwave SpiderLabs Uncovers Critical Cybersecurity Vulnerabilities Exposing Manufacturers to Costly Attacks. Learn More

Request a Demo
Services
Capture
Managed Detection & Response

Eradicate cyberthreats with world-class intel and expertise

twi-cloud-lock-color-svg
Managed Security Services

Expand your team’s capabilities and strengthen your security posture

twi-briefcase-color-svg
Consulting & Professional Services

Tap into our global team of tenured cybersecurity specialists

twi-dashboard-color-svg
Penetration Testing

Subscription- or project-based testing, delivered by global experts

twi-database-color-svg
Database Security

Get ahead of database risk, protect data and exceed compliance requirements

twi-email-color-svg
Email Security & Management

Catch email threats others miss with layered security & maximum control

twi-managed-portal-color
Co-Managed SOC (SIEM)

Eliminate alert fatigue, focus your SecOps team, stop threats fast, and reduce cyber risk

View All Trustwave Services
Solutions
BY INDUSTRY
BY REGULATION
BY TOPIC
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
The Trustwave Approach
A focus on threat detection and response
Awards and Accolades
Recognition by analysts and media outlets
Trustwave SpiderLabs Team
Researchers, ethical hackers and responders
Trustwave Fusion Platform
Unprecedented security visibility and control
SpiderLabs Fusion Center
Our cybersecurity command center
Security Operations Centers
Distributed worldwide defense nodes
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Register
Login
Resources
BLOGS
UPCOMING
MEDIA & ASSETS
NOTICES
HELP
Reports

Introducing the 2018 Trustwave Global Security Report

April 05, 2018 1 minute read Dan Kaplan

The most successful cybercriminals flourish and prosper because they know valuable things about your organization, like how your network is set up, where your weak spots are situated and how to effectively hoodwink your employees.

Sorry to freak you out, but it's true. Your adversaries use this recon to launch all types of attacks, from social engineering to web application code injection to remote access. It's opportunistic or targeted in nature, but either way, they count on knowing more about you than you do about them.

But what if it didn't have to be that way? The truth is, companies that can interrupt attacker advances are the ones with the best chance of avoiding negative headlines, angry customers, financial losses and the rest of the unpleasant aftermath associated with a major security incident.

Which brings us to the 2018 Trustwave Global Security Report. Celebrating its 10th annual edition this year, the report is based not on opinions or polling, but on actual facts about cybercriminals - based off our analysis of hundreds of data breach investigations, threat intelligence from our global security operations centers, telemetry from security technologies and industry-leading security research.

The report is sectioned into three chapters - Data Compromise, Threat Intelligence and the State of Security  - all of which contain not only actionable data, but also clear and concise insights that help put every fact and figure into perspective. And as mentioned, this year's edition is a special one for us. As such, the report includes a 10-year retrospect on various threats, while focusing an eye on the future.

To win at cybersecurity, you must keep your friends close and your enemies closer - and the  2018 Trustwave Global Security Report closest of all.

Download and read it to discover:

  • The top methods used to compromise corporate networks, point-of-sale-systems and e-commerce sites.
  • The most common industries and geographies under attack, and the type of data being targeted.
  • An actual email conversation between a "CEO Fraud" attacker and his victim.
  • The median number of days between intrusion and detection for both internally detected incidents and externally detected incidents.
  • How one botnet carried the weight for spam-delivered malware.
  • The most frequent vulnerabilities across databases, networks, applications and other platforms.
  • Details on the evolution of exploit kits and other threats, including ransomware and cryptocurrency mining.
  • The most common techniques malware used to avoid detection.
  • Plus, much more!

Dan Kaplan is manager of online content at Trustwave.

Latest Trustwave Blogs

Unlock the Power of Your SIEM with Co-Managed SOC

Security information and event management (SIEM) systems play a pivotal role in cybersecurity: they offer a unified solution for gathering and assessing alerts from a plethora of security tools,...

Read More

Trustwave SpiderLabs: LockBit 3.0 Ransomware Most Common Malware Used to Attack the Manufacturing Sector

As the manufacturing sector continues its digital transformation, Operational Technology (OT), Industrial Control Systems (ICS), and Supervisory Control and Data Acquisition (SCADA) are becoming...

Read More

Trustwave’s Observations on the Recent Cyberattack on Aliquippa Water Treatment Plant

The attack last week on the Municipal Water Authority in Aliquippa, Penn., that gave threat actors access to a portion of the facility’s pumping equipment has spurred the Cybersecurity &...

Read More