{"id":3269,"date":"2021-01-14T16:24:01","date_gmt":"2021-01-14T20:24:01","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=3269"},"modified":"2021-01-14T16:24:01","modified_gmt":"2021-01-14T20:24:01","slug":"dwell-time-the-cyber-threat-peril-you-havent-considered","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/","title":{"rendered":"Dwell Time: The Cyber-Threat Peril You Haven&#8217;t Considered?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3058\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\" alt=\"Dwell Time: The Cyber-Threat Peril You Haven't Considered?\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg 800w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? How can a next-generation <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">SIEM solution<\/a> help limit or mitigate dwell time?\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Dwell time refers to the period of time after hackers gain access to your IT environment but before your cybersecurity solution detects the problem. You may believe that such dwell time must be limited; after all, surely cybersecurity and threat hunting efforts should find all threats that penetrate your network eventually.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Unfortunately, the keyword in that sentence is \u201ceventually.\u201d <\/span><a href=\"https:\/\/investors.fireeye.com\/news-releases\/news-release-details\/fireeye-mandiant-m-trends-2020-report-reveals-cyber-criminals#:~:text=In%20the%202020%20M%2DTrends,observed%20in%20the%20previous%20year.\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">FireEye Mandiant<\/span><\/a><span style=\"font-weight: 400\"> estimates the average dwell time at 56 days. Yet <\/span><a href=\"https:\/\/www.crowdstrike.com\/blog\/2019-services-report-key-findings-part-1\/\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">CrowdStrike<\/span><\/a><span style=\"font-weight: 400\"> estimates the average at 95 days. Remember, those represent the averages. Evidence indicates that the <\/span><a href=\"https:\/\/www.yahoo.com\/now\/hackers-last-year-conducted-a-dry-run-of-solar-winds-breach-215232815.html#:~:text=The%20hackers%20distributed%20malicious%20files,distributed%20to%20customers%20on%20Oct.\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">SolarWinds Breach<\/span><\/a><span style=\"font-weight: 400\"> actually began in 2019, dwelling for nearly a year before discovery.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The longer the dwell time, the more serious the breach. Here\u2019s why<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n<h2 style=\"text-align: justify\"><b>Dwell Time: The Peril You Haven&#8217;t Considered?<\/b><\/h2>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Breaches don\u2019t just cause direct damage. You can think of them as a poisoned arrow; yes, it pierces and hurts immediately, but the real problem lies in the long-term consequences. Legal fees and compliance fines hurt almost as much if not more than any initial financial theft. According to <\/span><a href=\"https:\/\/solutionsreview.com\/identity-management\/81-percent-of-consumers-would-stop-engaging-with-a-breached-brand-online\/\" target=\"_blank\" rel=\"noopener noreferrer\"><span style=\"font-weight: 400\">Ping Identity<\/span><\/a><span style=\"font-weight: 400\">, 81 percent of consumers would stop engaging with a brand online after a data breach. That reputation damage lingers, costing you more over time even if you get the breach under control.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Why does this matter? SImple: dwell time exacerbates all of these issues. In fact, it adds exponential damage. Imagine the reputational damage among customers and clients if you suffered a breach but didn\u2019t notice for months, if not years. It could deal a serious blow to your relations and ultimately to your profitability.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Additionally, the more time unchallenged in your IT environment they enjoy, the more direct damage hackers can do in data theft or reconnaissance. Returning to the arrow analogy, imagine leaving the arrow and continuing to try to move.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">So that\u2019s the challenge in a nutshell. Now, what can you do?\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>How SIEM Limits Hacker\u2019s Time and Options<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">SIEM works via log management and security event analysis. It aggregates data from across your IT environment and normalizes it for easier threat detection. Then, it scans for relevant and interconnected security events, looking for any signs of a data breach. If certain thresholds are met, then it can send an alert to your IT security team.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">These alerts speed up necessary investigation times, which in turn speeds up remediation times if an investigation finds a cyber-threat. Again, speed is crucial in mitigating the damage caused by hackers and reducing dwell time.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Additionally, SIEM through its log management capabilities increases visibility over your IT environment. While you should exercise caution in how you deploy your SIEM, you can use it as an extra set of mechanical eyes over your most sensitive databases. Eventually, hackers go after the most valuable part of any network, and if your SIEM keeps a close watch over those areas, hackers can find no purchase.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">To learn more, check out our updated <a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/siem-buyers-guide-security-information-and-event-management\/\" target=\"_blank\" rel=\"noopener noreferrer\">SIEM Buyer\u2019s Guide<\/a>.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? How can a next-generation SIEM solution help limit or mitigate dwell time?\u00a0 Dwell time refers to the period of time after hackers gain access to your IT environment but before your cybersecurity solution detects the [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3058,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[551,1],"tags":[353,95,1480,112,86,212,22],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Dwell Time: The Cyber-Threat Peril You Haven&#039;t Considered?<\/title>\n<meta name=\"description\" content=\"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Dwell Time: The Cyber-Threat Peril You Haven&#039;t Considered?\" \/>\n<meta property=\"og:description\" content=\"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors\" \/>\n<meta property=\"article:published_time\" content=\"2021-01-14T20:24:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/\",\"name\":\"Dwell Time: The Cyber-Threat Peril You Haven't Considered?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"datePublished\":\"2021-01-14T20:24:01+00:00\",\"dateModified\":\"2021-01-14T20:24:01+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Panther Labs Releases State of SIEM 2021 Report\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Dwell Time: The Cyber-Threat Peril You Haven&#8217;t Considered?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\",\"name\":\"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors\",\"description\":\"Buyer&#039;s Guide and Best Practices\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Dwell Time: The Cyber-Threat Peril You Haven't Considered?","description":"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/","og_locale":"en_US","og_type":"article","og_title":"Dwell Time: The Cyber-Threat Peril You Haven't Considered?","og_description":"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.","og_url":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/","og_site_name":"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors","article_published_time":"2021-01-14T20:24:01+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/","url":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/","name":"Dwell Time: The Cyber-Threat Peril You Haven't Considered?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","datePublished":"2021-01-14T20:24:01+00:00","dateModified":"2021-01-14T20:24:01+00:00","author":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"What is dwell time? Why does it matter for cybersecurity (or why does it keep cybersecurity professionals up at night)? Find out here.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#primaryimage","url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2020\/06\/Dark-web-mod.jpg","width":800,"height":400,"caption":"Panther Labs Releases State of SIEM 2021 Report"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/dwell-time-the-cyber-threat-peril-you-havent-considered\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/security-information-event-management\/"},{"@type":"ListItem","position":2,"name":"Dwell Time: The Cyber-Threat Peril You Haven&#8217;t Considered?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website","url":"https:\/\/solutionsreview.com\/security-information-event-management\/","name":"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors","description":"Buyer&#039;s Guide and Best Practices","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/3269"}],"collection":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/comments?post=3269"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/3269\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media\/3058"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media?parent=3269"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/categories?post=3269"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/tags?post=3269"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}