Sign up for our daily briefing

Make your busy days simpler with Axios AM/PM. Catch up on what's new and why it matters in just 5 minutes.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Twin Cities

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa Bay news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa Bay

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Charlotte news in your inbox

Catch up on the most important stories affecting your hometown with Axios Charlotte

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!
Expand chart
Reproduced from FireEye's M-Trends report; Chart: Axios Visuals

Organizations are closing the skills and preparedness gap between hackers and themselves, improving a picture that's all too often painted as grim. That means we — at least those of us in the Western Hemisphere — are getting pretty good at cybersecurity, according to the latest numbers from one of the largest cybersecurity firms.

The bottom line: “It’s strange to hear, but things are actually getting better,” said Charles Carmakal, vice president at Mandiant, which released its yearly report yesterday.

The big picture: In a report that contains plenty of potentially alarming material, including multiple sections on the growing Iranian threat, Carmakal said its most important statistics are those on who first noticed data breaches and how they did it.

For all the high profile coverage of massive, often careless breaches, there’s reason to think defenders are outpacing attackers.

The details:

  • 64% of North and South American breaches investigated by FireEye are detected by the victim rather than by a third party (like law enforcement).
  • That’s a sizable improvement over 2011, when only 6% were detected internally.
  • This year was also an improvement over 2016, when 53% of breaches were detected by the victim.
  • “There is absolutely an improvement in organizational capability,” said Carmakal.

Why it matters: Who notices hackers makes a big difference in how fast the hackers get caught. Internal detection is much faster, so hackers are in systems for less time than they used to be. In the U.S., it’s a threefold difference.

  • The worldwide median dwell time — the time hackers can spend in a system without being caught — is only a quarter of what it was in 2011, but roughly the same as last year.
  • According to the report, median dwell time is lower in the Americas: 75.5 days, compared to 175 days in the European, Middle Eastern and African markets, and 498 in Asia Pacific markets.

Go deeper

Biden will reverse Trump's attempt to lift COVID related travel restrictions

Photo: Tasos Katopodis via Getty

The incoming Biden administration will reverse President Trump's last-minute order to lift COVID-19 related travel restrictions, Jen Psaki, the incoming White House press secretary, tweeted.

Why it matters: President Trump ordered entry bans lifted for travelers from the U.K., Ireland, Brazil and much of Europe to go into effect Jan. 26, but the Biden administration will "strengthen public health measures around international travel in order to further mitigate the spread of COVID-19," Jen Psaki said. Biden will be inaugurated on Wednesday, Jan. 20 and Trump will no longer be president by the time the order is set to go into effect.

Dominion sends cease and desist letter to My Pillow CEO Mike Lindell

Photo: Stephen Maturen/Getty Images

Dominion Voting Systems on Monday sent a cease and desist letter to My Pillow CEO Mike Lindell over his spread of misinformation related to the 2020 election.

Why it matters: Trump and several of his allies have pushed false conspiracy theories about the company, leading Dominion to take legal action. It's suing pro-Trump lawyer Sidney Powell for defamation and $1.3 billion in damages, and a Dominion employee has sued Trump himself, OANN and Newsmax.

Off the Rails

Episode 5: The secret CIA plan

Photo illustration: Aïda Amer, Sarah Grillo/Axios. Photo: Zach Gibson/Getty Images

Beginning on election night 2020 and continuing through his final days in office, Donald Trump unraveled and dragged America with him, to the point that his followers sacked the U.S. Capitol with two weeks left in his term. This Axios series takes you inside the collapse of a president.

Episode 5: Trump vs. Gina — The president becomes increasingly rash and devises a plan to tamper with the nation's intelligence command.

In his final weeks in office, after losing the election to Joe Biden, President Donald Trump embarked on a vengeful exit strategy that included a hasty and ill-thought-out plan to jam up CIA Director Gina Haspel by firing her top deputy and replacing him with a protege of Republican Congressman Devin Nunes.