M-Trends 2026 Report: Initial Access Handoff Time Shrinks to 22 Seconds
Google's M-Trends 2026 report reveals that the time from initial access to handoff to a secondary threat group has decreased from hours to just 22 seconds, with exploits accounting for 32% of initial infections.
Key Points
- Initial access handoff time dropped from hours to 22 seconds, per M-Trends 2026.
- Exploits caused 32% of initial infections, followed by phishing at 11%.
- Report based on 500,000+ hours of Mandiant investigations in 2025.
Full Details
Google's M-Trends 2026 report, based on over 500,000 hours of Mandiant incident response investigations in 2025, shows a dramatic reduction in the time between initial access and handoff to a secondary threat group—from hours to just 22 seconds. Exploits were the most common initial infection vector, accounting for 32% of cases, followed by phishing (11%), prior compromise (10%), and stolen credentials (9%). The report highlights the increasing speed and sophistication of cyber attacks, emphasizing the need for rapid detection and response. Mandiant's data underscores the evolving threat landscape where attackers quickly pivot to secondary groups. This trend necessitates advanced threat intelligence and automated response capabilities for organizations.
Why It Matters
The drastic reduction in handoff time demands real-time threat detection and automated response systems to mitigate attacks before they escalate.
Get stories like this delivered daily
AI-curated news, personalized to your interests. Zero noise.
Start 7-Day Free Trial →More in Global News
One Month Into Iran War: Global Economy Faces Major Disruptions
One month after the US and Israeli war on Iran began, the global economy is experiencing the largest supply disruption in oil market history, with cascading effects on inflation, air travel, food prices, and even semiconductor chip production.
AI Targeting Systems in Iran Conflict Raise 'Cold War' Concerns
Reports confirm Palantir's AI targeting systems used in Ukraine are now being integrated into Iranian drone operations, sparking concerns about an emerging AI arms race and ethical questions about autonomous warfare.
G7 Policymakers Hold Crisis Talks as Iran-Russia War Roils Global Economy
Top western G7 policymakers convened emergency discussions to address the economic turmoil caused by the ongoing Iran-Russia war, as the conflict continues to strain global supply chains and markets.
WTO E-Commerce Duties Moratorium Expires as Global Trade Talks Stall
The global moratorium on customs duties for digital downloads and streaming has expired after WTO ministers in Yaoundé, Cameroon failed to reach an extension agreement, with talks now moving to Geneva.