Extract from Tim Rollins’s article “Meeting Today’s Challenges in Digital Forensics and Incident Response”
We have all heard, many times by now, that the rapid transition to remote workforces is here to stay. Another trend that has been in the news in the recent past has been a large uptick in the number and severity of cybersecurity incidents–ranging from data breaches and ransomware attacks to insider crimes, data exfiltration, and DDoS attacks. These incidents aren’t mitigated by remote infrastructure; in fact, widespread adoption of remote work environments and technology is likely a direct contributor to their increasing numbers.
Organizations must adapt their policies and technologies to suit a fully remote or hybrid workforce—and that includes their ability to conduct investigations. Between HR violations, data breaches, phishing attacks, employee wrongdoing, and countless other incidents, enterprises must be able to quickly, remotely, and at times covertly investigate matters.
But such cybersecurity policies are sensitive, which makes it hard to know where one stands in comparison to others. That’s where Exterro comes in. We recently conducted an enterprise digital forensics and incident response (DFIR) survey and learned some interesting facts and trends.