You have around 20 minutes to contain a Russian APT attack - Catalin Cimpanu, ZD Net

Governments and private organizations have around 20 minutes to detect and contain a hack from Russian nation-state actors. New statistics published today by US cyber-security firm Crowdstrike ranked threat groups based on their "breakout time." "Breakout time" refers to the time a hacker group takes from gaining initial access to a victim's computer to moving laterally through its network. This includes the time the attacker spends scanning the local network and deploying exploits in order to escalate his access to other nearby computers. The "breakout" metric is crucial for organizations, as this is the time they have to detect infections and isolate hacked computers before a simple intrusion turns into a compromise of its entire network. https://www.zdnet.com/article/you-have-around-20-minutes-to-contain-a-russian-apt-attack/