According to the data breach report 2022 issued by IBM the average cost of a data breach for critical infrastructure organizations is USD 4.82 million — USD 1 million more than the average cost for organizations in other industries. These organizations included financial services, technology, energy, transportation, communication, healthcare, education and public sector industries. Twenty-eight percent experienced a destructive or ransomware attack, while 17% experienced a breach because of a business partner being compromised.
- Breaches at organizations with fully deployed security AI and automation cost USD 3.05 million less than breaches at organizations with no security AI and automation deployed. This 65.2% difference in average breach cost between USD 3.15 million for fully deployed versus USD 6.20 million for not deployed represented the largest cost savings in the study.
- Companies with fully deployed security AI and automation also experienced on average a 74-day shorter time to identify and contain the breach, known as the breach lifecycle, than those without security AI and automation 249 days versus 323 days.
- The use of security AI and automation jumped by nearly one-fifth in two years, from 59% in 2020 to 70% in 2022. In another report issued by MTrend in 2021 based on FireEye real-time attack map, it has shown that by the advent of AI-based strategies the attack Dwell time (the number of days an attacker is present in a victim environment before they are detected) has been reduced tremendously.
- In 2020, the global median dwell time dropped below one month for the first time. Organizations are now detecting incidents in only 24 days which was 416 days in 2011 and more than twice as fast as 2019 (56 days).
Autonomous Attacker/Defender system
Decision-making system that gets alerts from the intrusion detection system and decides the best possible action against the alert.