Long Road to Recovery: Fastly Research Reveals Businesses Taking 25% Longer to Recover From Cybersecurity Incidents Than Expected
Fastly's Global Security Research Report reveals concerning trends in cybersecurity recovery times. In 2024, businesses are taking an average of 7.3 months to recover from cyber incidents, 25% longer than the expected 5.9 months. Companies reducing cybersecurity spending faced 70% more incidents and longer recovery times of 10.9 months. While 87% of businesses plan to increase security investments, 50% still feel unprepared for future attacks. The report also highlights that 40% of businesses are concerned about their security stack's reliability, with 29% considering vendor changes. Organizations are shifting towards a platform engineering approach, with these teams now being held responsible for 8% of cybersecurity incidents.
Il Rapporto Globale sulla Sicurezza di Fastly rivela tendenze preoccupanti nei tempi di recupero dalla cybersecurity. Nel 2024, le aziende impiegano in media 7,3 mesi per riprendersi da incidenti informatici, il 25% in più rispetto ai 5,9 mesi previsti. Le aziende che riducono la spesa per la cybersecurity hanno affrontato il 70% in più di incidenti e tempi di recupero più lunghi di 10,9 mesi. Sebbene l'87% delle aziende preveda di aumentare gli investimenti in sicurezza, il 50% si sente comunque impreparato per gli attacchi futuri. Il rapporto evidenzia inoltre che il 40% delle aziende è preoccupato per l'affidabilità della propria infrastruttura di sicurezza, con il 29% che sta considerando cambi di fornitore. Le organizzazioni si stanno muovendo verso un approccio di ingegneria delle piattaforme, con questi team ora ritenuti responsabili per l'8% degli incidenti di cybersecurity.
El Informe Global de Seguridad de Fastly revela tendencias preocupantes en los tiempos de recuperación de ciberseguridad. En 2024, las empresas están tardando un promedio de 7.3 meses en recuperarse de incidentes cibernéticos, un 25% más que los 5.9 meses esperados. Las empresas que redujeron el gasto en ciberseguridad enfrentaron un 70% más de incidentes y tiempos de recuperación más largos de 10.9 meses. Mientras que el 87% de las empresas planean aumentar sus inversiones en seguridad, el 50% aún se siente desprevenido para futuros ataques. El informe también destaca que el 40% de las empresas están preocupadas por la fiabilidad de su stack de seguridad, con un 29% considerando cambios de proveedor. Las organizaciones se están moviendo hacia un enfoque de ingeniería de plataformas, siendo estos equipos ahora responsables del 8% de los incidentes de ciberseguridad.
Fastly의 글로벌 보안 연구 보고서는 사이버 보안 회복 시간에 대한 우려스러운 경향을 드러냅니다. 2024년, 기업들은 사이버 사건으로부터 회복하는 데 평균 7.3개월이 걸리며, 이는 예상한 5.9개월보다 25% 더 긴 시간입니다. 사이버 보안 지출을 줄인 기업들은 70% 더 많은 사건에 직면했고, 회복 시간은 10.9개월로 더 길어졌습니다. 87%의 기업이 보안 투자를 늘릴 계획인 반면, 50%는 여전히 향후 공격에 대해 준비가 되어 있지 않다고 느끼고 있습니다. 보고서에서는 또한 40%의 기업이 보안 스택의 신뢰성에 대해 우려하고 있으며, 29%는 공급업체 변경을 고려하고 있다고 강조하고 있습니다. 조직들은 플랫폼 엔지니어링 접근 방식으로 전환하고 있으며, 이러한 팀들은 이제 사이버 사건의 8%에 대해 책임을 지고 있습니다.
Le Rapport Mondial sur la Sécurité de Fastly révèle des tendances préoccupantes concernant les délais de récupération en cybersécurité. En 2024, les entreprises mettent en moyenne 7,3 mois à se remettre d'incidents cybernétiques, soit 25% de plus que les 5,9 mois attendus. Les entreprises ayant réduit leurs dépenses en cybersécurité ont rencontré 70% plus d'incidents et des temps de récupération plus longs de 10,9 mois. Bien que 87% des entreprises prévoient d'augmenter leurs investissements en sécurité, 50% se sentent encore mal préparées pour de futures attaques. Le rapport souligne également que 40% des entreprises s'inquiètent de la fiabilité de leur système de sécurité, 29% envisageant de changer de fournisseur. Les organisations se tournent vers une approche d'ingénierie des plateformes, ces équipes étant désormais responsables de 8% des incidents de cybersécurité.
Fastlys Globaler Sicherheitsforschungsbericht zeigt besorgniserregende Trends bei den Wiederherstellungszeiten in der Cybersicherheit. Im Jahr 2024 benötigen Unternehmen im Durchschnitt 7,3 Monate, um sich von Cybervorfällen zu erholen, was 25% länger ist als die erwarteten 5,9 Monate. Unternehmen, die ihre Ausgaben für Cybersicherheit gekürzt haben, hatten 70% mehr Vorfälle und längere Wiederherstellungszeiten von 10,9 Monaten. Während 87% der Unternehmen planen, ihre Sicherheitsinvestitionen zu erhöhen, fühlt sich immer noch die Hälfte unvorbereitet auf zukünftige Angriffe. Der Bericht hebt zudem hervor, dass 40% der Unternehmen mit der Zuverlässigkeit ihres Sicherheitssystems besorgt sind, wobei 29% einen Anbieterwechsel in Betracht ziehen. Die Organisationen bewegen sich hin zu einem Plattform-Engineering-Ansatz, wobei diese Teams nun für 8% der Cybersecurity-Vorfälle verantwortlich sind.
- 87% of businesses plan to increase security tool investments, up 11% year-over-year
- 86% of companies have improved their approach to testing and updates following major incidents
- Recovery time from cyber incidents increased to 7.3 months, 25% longer than expected
- Companies reducing cybersecurity spending faced 70% more incidents (68 vs. average)
- 50% of cybersecurity decision makers feel unprepared for future attacks
- 40% of businesses express concerns about security stack reliability
Insights
The findings reveal concerning trends in cybersecurity incident recovery, with organizations taking 7.3 months to recover from breaches - significantly longer than the expected 5.9 months. Most alarming is that companies reducing security budgets face 70% more incidents and nearly double the recovery time at 10.9 months.
The planned 87% increase in security investment signals a reactive rather than proactive approach, especially concerning given that half of security decision-makers still feel unprepared. The shift towards platform engineering involvement in security decisions (20% prioritizing this approach) indicates a positive trend toward integrated security architecture, though the distributed responsibility model needs careful implementation to avoid accountability gaps.
For investors, these extended recovery times directly impact business continuity and financial performance. Companies with robust security investments demonstrate better incident resilience, suggesting potential competitive advantages in an increasingly threat-heavy environment.
Organizations are reassessing their cybersecurity budget allocations after taking 7.3 months to recover from incidents in 2024 - over a month longer than expected
Fastly Global Security Report: Cybersecurity at the Crossroads (Graphic: Business Wire)
Recovery times were even worse for companies that planned on cutting back cybersecurity spending. They faced an average of 68 incidents each –
With attacks becoming more prevalent and taking longer to recover from, not surprisingly, the report found that
Marshall Erwin, CISO at Fastly, commented on the findings, “Full recovery from breaches is not getting any faster. The revenue, reputation and time lost damages business relationships permanently and drains resources from other areas of the business. With attacks not diminishing and the possibility of further high-profile slip-ups always present, it’s crucial that any changes businesses are now making to cybersecurity strategies fit within a holistic plan and aren’t knee-jerk reactions.”
Recent global IT outages have also been a wake up call for security professionals with many now scrutinizing their vendor choices and the value of cybersecurity investments more closely. In 2024,
When it comes to software security, we found that organizations are also re-evaluating how security integrates across their operations. Increasingly, key stakeholders outside traditional security teams, including Platform Engineering teams, are having a say in which app security solutions are being adopted, with one in five (
Marshall Erwin added, “Cybersecurity spending is under the microscope as businesses continue to feel unprepared dealing with an evolving threat landscape. We are seeing a shift towards a shared responsibility for security across organizations, with increased focus on embedding security measures throughout all projects. Companies that bake in security and establish strong partnerships with security organizations early in a product development process are in a better position to deal with emerging threats and recover more quickly from attacks.”
About the research
This research surveyed 1,800 key IT decision makers with an influence in cybersecurity, in large organizations spanning multiple industries across North, Central and
To access the full report and understand how businesses are consolidating tools and changing their spending habits in the wake of high-profile cybersecurity incidents, visit here.
About Fastly, Inc.
Fastly’s powerful and programmable edge cloud platform helps the world’s top brands deliver online experiences that are fast, safe, and engaging through edge compute, delivery, security, and observability offerings that improve site performance, enhance security, and empower innovation at global scale. Compared to other providers, Fastly’s powerful, high-performance, and modern platform architecture empowers developers to deliver secure websites and apps with rapid time-to-market and demonstrated, industry-leading cost savings. Organizations around the world trust Fastly to help them upgrade the internet experience, including Reddit, Neiman Marcus, Universal Music Group, and SeatGeek. Learn more about Fastly at https://www.fastly.com, and follow us @fastly.
Source: Fastly, Inc.
View source version on businesswire.com: https://www.businesswire.com/news/home/20241119049088/en/
Media Contact
Alex Klepel
press@fastly.com
Investor Contact
Vernon Essi, Jr.
ir@fastly.com
Source: Fastly, Inc.
FAQ
How long does it take businesses to recover from cybersecurity incidents in 2024 according to Fastly (FSLY)?
What percentage of businesses plan to increase security investments according to Fastly's (FSLY) 2024 report?
How many cybersecurity incidents do companies face when reducing security spending according to Fastly (FSLY)?
