Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
Summary
A survey indicates that 94% of security incidents involve anonymized infrastructure, yet many security teams remain reactive despite having access to vast amounts of data. Organizations struggle to identify the true origin of threats behind anonymized IP addresses, hindering effective response.
IFF Assessment
The article highlights a persistent challenge for defenders, where anonymized infrastructure obscures threat actors and makes incident response difficult, indicating a continuing advantage for attackers.
Defender Context
This survey highlights a critical blind spot for defenders: the prevalence of anonymized infrastructure in incidents. Organizations need to invest in better threat intelligence correlation and attribution tools to move beyond reactive security postures and effectively identify and respond to threats obscured by anonymity.