Google M-Trends 2026: Initial Access Handoff Shrinks to 22 Seconds
The time between an attacker's initial access and handoff to a secondary group has collapsed from hours to just 22 seconds, according to Google's M-Trends 2026 report.
Key Points
- Initial access handoff time collapsed from hours to 22 seconds.
- Exploits accounted for 32% of initial infections, the most common vector.
- Report based on 500,000+ hours of Mandiant investigations in 2025.
Full Details
Google's M-Trends 2026 report, based on over 500,000 hours of Mandiant incident response investigations in 2025, reveals a dramatic acceleration in attacker workflows. The time between an attacker gaining initial access to an organization's systems and handing off to a secondary threat group has plummeted from hours to a mere 22 seconds. Exploits were the most common initial infection vector, accounting for 32% of cases, followed by phishing (11%), prior compromise (10%), and stolen credentials (9%). This rapid handoff underscores the increasing sophistication and coordination of modern cybercriminal operations.
Why It Matters
The extreme speed of handoffs means organizations have drastically less time to detect and respond to breaches, necessitating near-real-time automated defense mechanisms.
Get stories like this delivered daily
AI-curated news, personalized to your interests. Zero noise.
Start 7-Day Free Trial →More in Global News
One Month Into Iran War: Global Economy Faces Major Disruptions
One month after the US and Israeli war on Iran began, the global economy is experiencing the largest supply disruption in oil market history, with cascading effects on inflation, air travel, food prices, and even semiconductor chip production.
AI Targeting Systems in Iran Conflict Raise 'Cold War' Concerns
Reports confirm Palantir's AI targeting systems used in Ukraine are now being integrated into Iranian drone operations, sparking concerns about an emerging AI arms race and ethical questions about autonomous warfare.
G7 Policymakers Hold Crisis Talks as Iran-Russia War Roils Global Economy
Top western G7 policymakers convened emergency discussions to address the economic turmoil caused by the ongoing Iran-Russia war, as the conflict continues to strain global supply chains and markets.
WTO E-Commerce Duties Moratorium Expires as Global Trade Talks Stall
The global moratorium on customs duties for digital downloads and streaming has expired after WTO ministers in Yaoundé, Cameroon failed to reach an extension agreement, with talks now moving to Geneva.