Browse communities
Presenting a webinar?
Share this content

Responding to the Advanced Persistent Threat

Lee Lawson
The Dell SecureWorks Counter Threat Unit has monitored and responded to hundreds of APT attacks across our 3,000+ customer base in the last 12 months. The information gathered from this activity – and information shared with intelligence agencies around the world - includes advanced knowledge of the adversary, their tools and techniques. Most importantly the Counter Threat Unit has perfected how to identify, protect against and respond to APT attacks.

This webcast will examine the threat posed by Advanced Persistent Threats and look at the lifecycle of an attack. Lee Lawson, Security Architecht at Dell SecureWorks, will walk through a genuine APT attack and look at the different phases of attack that were encountered. Considering the motivation behind these attacks, and the range of tactics which are used, how concerned should you really be?

Lee will give insight into best practice for protecting your organisation from APTs, and how you should respond once an incident does occur.

Key topics covered in the webcast include:

•understanding the threat posed by APTs
•understand best practice for defending your organisation from APT attacks
•how to outwit an attacker that anticipates all your defensive moves

Lee Lawson is the Solutions Architect for Security and Risk Consulting Services at Dell SecureWorks EMEA. In this role he is in charge of envisioning and creating combinations of new and existing services to solve the most unique and difficult customer problems. His past experience was as a Principal Consultant managing the EMEA Security Testing and Response team responsible for all adversarial-testing services such as penetration testing, social engineering and physical intrusions, and all responsive services such as digital forensics and security incident response/handling. This background has provided him with a deep knowledge of the subject having led complex and challenging projects for customers in all industries.
May 1 2012
35 mins
Responding to the Advanced Persistent Threat
Advanced Persistent Threat Security malware
More from this community:

IT Security

Webinars and videos

  • Live and recorded (2597)
  • Upcoming (176)
  • Date
  • Rating
  • Views
  • By 2014, 60% of global companies are expected to pilot, deploy or expand their BYOD programs (RainKing). As BYOD has become a fixture in the workplace, with 72% of employees clamoring to have their personal devices work-enabled, the IT industry has watched as the familiar “perimeter" model has become untenable. Data is going to more places, and ending up on a wider variety of devices, than ever before. A new model for protecting data has become a necessity. Organizations have tried to do so in a multitude of ways: extending policies to cover mobile devices, monitoring usage, MDM solutions, and even NAC; all have been methods used to try and create the most stable environment for mobile technology. Let Integralis security expert Mike Gabriel explain how to best balance mobile productivity and security in this Security Talks installment.

    Why Attend?

    1.Discover how your peers are trying to protect mobile data.
    2.See how the perimeter is being sculpted (or not) by the IT industry.
    3.Find out what the future holds for BYOD in the workplace.
    Read more >
  • Over the years true MSPs have had to work diligently to differentiate themselves from companies that are at best, not true MSPs and at worst, are shady fly-by-night operators. This is where the Unified Certification Standard or (UCS) for Cloud & Managed Service Providers comes in.

    The UCS was created by a team of dedicated MSPs to address the shortfalls of existing standards like ISO 27001, ITIL, CoBIT, SSAE 16, which were never intended for managed services organizations and offered little in the way of consumer protection.

    CASE IN POINT: Many MSPs do NOT fail because of technical deficiencies, but due to financial risk. Because of this, customers have very little insight into the service provider's business practices and financial strengths and capabilities.

    Attend this webcast and you will hear from real MSP executives on how the UCS certification and audit has helped them to:

    - Win new business
    - Provide needed transparency to customers
    - Achieve compliance objectives
    - Quickly develop trust with customers and prospects
    - Provide documentation on how those MSPs deliver their services
    - And much more...

    Both Cloud and Managed Service Providers should attend this webcast and at least begin to follow the standards necessary to achieve managed services and cloud computing excellence.
    Read more >
  • Doug Turner, CEO of Mantis Technology Group, talks about how his team built Pulse Analytics, a sentiment analysis solution using text analytics tool running on SAP HANA One. Hear how his team strengthened the capabilities of this solution while simplifying their data architecture by replacing 20 servers with only 1 SAP HANA One instance.
    Read more >
  • Most SMB's use a single point product for each of the different perceived security threats. This has worked in the past, but a far better approach is layering multiple products in a stouter defense.
    Read more >
  • APIs are a hot topic in all sectors of IT - they have gone from being niche solutions provided by big players like Amazon and Google, to being almost as ubiquitous as corporate websites. Ad hoc API development & evangelism without a formal program can leave real revenue on the table, can unintentionally leak sensitive data, and can tarnish the corporate brand with the development community. Today, developers and partners expect to be engaged with first class API programs, while businesses expect real insights to know which APIs are profitable and which APIs to bring to market next. In this webinar, Intel & Mashery outline the baseline enterprise pillars for constructing a first class API program. Learn from CapitalOne how they strategized to build an API program grounded in core business objectives. All attendees to receive a new Mobile API Buyers Guide that presents how to optimize APIs for mobile apps.
    Read more >
  • Are you using or considering a next-generation threat protection solution? Join this webcast and learn how you can multiply the value of your investment by integrating network and endpoint security.

    During this session you’ll learn best practices for protecting your network and your endpoints and servers from today's new breed of cyber attacks. You’ll also see firsthand how the integration of network and endpoint security solutions will help you:

    ・ Automatically confirm and prioritize alerts
    ・ Provide enterprise-wide visibility of infections to speed investigation
    ・ Drive remediation
    ・ Automatically analyze files from endpoints and servers
    Read more >
  • In today’s socially-connected world, conducting business effectively demands easy access to information from anywhere at any time. More people need access to more data through the use of more devices than ever before.

    Join this webcast and learn how CA Technologies helps companies across the world to enable business in a secure manner. Through the use of a Cloud Identity and Access Management service, CA allows the right people have access to the right information at the right time. By seamlessly leveraging existing investments, while extending Identity and Access Management to the cloud, CA Technologies vastly reduces the time to deliver secure new business services.
    Read more >
  • Join us on May 22 for a complimentary webcast on how Oracle Exalogic is the simple way to deploy and upgrade your business applications. Oracle Exalogic is hardware and software engineered together to provide extreme performance, reliability and scalability for your critical applications. Hyundai Motor Company saves more than US$1 Million per year with Exalogic and related Oracle products.

    During this webcast you will hear how Oracle customers have used Exalogic to:

    • Seize new market opportunities
    • Lower business risk
    • Reduce the cost of application deployments

    “We chose Oracle Exalogic, Oracle Exadata, Oracle WebLogic Server, and Oracle WebCenter Content over their competitors as Oracle offers stable storage for petabytes of data and high processing speeds. We have cut the time spent each day on document-related work by around 85% and saved up to US$1.1 million in printing costs.” Kang Tae-jin, Manager, General Affairs Team

    If you would like to contact Tom Smith directly for more information, his email address is tom.a.smith@oracle.com
    Read more >
  • Ever feel like you spend more time converting security information from one format to another, than actually connecting the dots hidden within it? The Collective Intelligence Framework (CIF) is a data processor for pulling in and normalizing out all these threat intel sources into a single combined dataset.

    Learn how to...
    Get CIF up and running
    Connect intelligence sources to CIF
    Leverage CIF with your existing security controls
    Host: Conrad Constantine, Community Manager, AlienVault
    Guest: Todd Leetham, Visiting Scientist, RSA I The Security Division of EMC
    Event Date: Tuesday, May 21, 2013 at 11am PDT
    Read more >
  • "People are talking about doing security in the mobile space and I ask the following question: You have spent the last 13 years building up proper, compliant infrastructures inside your four walls. Now we're going mobile. Why should you implement any lesser degree of compliance in that portion of your infrastructure than you currently have?" Winn Schwartau, one of the world's top experts on security, privacy, infowar and cyber-terrorism, discusses the importance of mobile security and the implications it can have for your pre-existing infrastructure.
    Read more >
  • Channel
  • Channel profile

Dell SecureWorks SecureThoughts

Up Down
  • The cloud: Shaking up your security Recorded: Apr 25 2013 44 mins
    More and more organisations are turning to cloud computing to solve their biggest technology and business challenges. By this stage, most of us are aware of the many benefits cloud has to offer: lower hardware and IT costs, ease of management and increased agility, to name a few. Yet when it comes to security, cloud is not a silver bullet. In fact, according to the Cloud Security Alliance, security is cited as the number one barrier to adoption of cloud services among organisations.

    During this webcast, Mark Wood, Director of Product Management at Dell SecureWorks, will discuss some of the prevalent security risks which exist when moving to the cloud and how this affects the traditional approach to security.

    This webcast will address the following key themes:

    •The security impact of different cloud models and minimising risk in a multi-tenant environment
    •Sharing the security burden and establishing an effective relationship with your cloud provider.
    •Staying one step ahead of the evolving compliance landscape.

    Mark is responsible for managed security for cloud services at Dell SecureWorks. He has more than 25 years of experience in the technology community as a software engineer, a sales engineer, a start-up owner and a product manager.

    Previously, at Cloud Sherpas, a solutions provider focused on migrating organizations to Google Apps, Mark was responsible for product strategy, lifecycle management and optimizing existing products. He has also worked in marketing and product management at a number of leading technology companies, including nCircle, Internet Security Systems (ISS) and AT&T Bell Laboratories.

    Mark holds a Bachelor of Science degree in computer science from Duke University and a Master of Science degree in computer science from Georgia Institute of Technology.
  • Advanced incident response: Are you prepared Recorded: Apr 9 2013 45 mins
    How prepared are you for a data breach? With the threat environment growing more complex, and the rise in advanced and targeted attacks, how does your response plan hold up? Threat actors have have changed their tactics; so must you.

    This webcast will examine how to develop a robust incident response plan, which takes into account the changes in the threat landscape. Lee Lawson, Solution Architect at Dell SecureWorks, will discuss new approaches to identify advanced threats earlier, and how to go beyond responding to the most obvious symptoms of an attack, to understanding the full extent of the breach and what has been compromised.

    This webcast will address the following key themes:

    •Security breaches Dell SecureWorks has seen across its global customer base, from advanced and targeted threats
    •Developing an incident response plan which takes into account the complex threat landscape
    •Getting the necessary visibility into your network to enable you to spot advanced threats early and understand the true scale of the attack.
  • Advanced persistent threats: The threat is real Recorded: Mar 21 2013 43 mins
    Advanced Persistent Threats are more than media hype. Dell SecureWorks has seen a significant increase in stealthy activity targeting specific intellectual assets.

    Rafe Pilling, Counter Threat Unit EMEA, will provide the latest intelligence on Advanced Persistent Threats, using real-world examples; and provide pragmatic advice on what you should be doing now to protect your organisation.

    Security strategies and tactics must evolve in light of the growth in APT attacks; how do you find and stop advanced threats before they become serious breaches?

    This webcast will address the following key themes:

    •The latest tools and techniques that advanced threat actors are using
    •Real-world examples of successful APT attacks
    •Best practice for preventing and responding to APTs

    Rafe Pilling is a leading information security expert who works as a Researcher in the Dell SecureWorks Counter Threat Unit (CTU). Leveraging Dell SecureWorks' global threat visibility across thousands of customer networks, proprietary toolsets and unmatched expertise, the Dell SecureWorks CTU security research team performs in-depth analysis of emerging threats, including Advanced Persistent Threats.
  • Risk assessment and threat identification: Guidance on PCI requirement 6.2 Recorded: Mar 6 2013 25 mins
    Merchants are now required to have a process in place to identify and risk rank newly-discovered vulnerabilities in order to be PCI compliant. The intent is to ensure that businesses proactively seek information on new vulnerabilities that might affect their systems, and not simply wait for vendor updates and patch announcements that could come weeks, months or even years after vulnerabilities are discovered.

    During this webcast, Ron Kiss, Principal Consultant at Dell SecureWorks, will address the following key themes:

    •Integrating requirements introduced this year on ranking identified vulnerabilities that can compromise your cardholder data
    •Risk ranking frameworks and what processes to put in place for categorising threats and working within your risk assessment process
    •Using threat intelligence to increase protection of the business and provide real value

    Ron Kiss is a Principal Consultant within the Security, Risk and Compliance team at Dell SecureWorks. In his current and past roles, Ron has conducted both PCI-DSS and PA-DSS assessments in Europe and overseas. He brings a wealth of experience in assessing Merchants, Service Providers and Payment Applications from a range of industries such as Retail, Airlines, and Finance. 
  • You’re the one that they want: Targeted threats and you Recorded: Feb 28 2013 37 mins
    The rise in targeted threats means that IT security teams must move beyond a general understanding of the threat landscape, to a detailed understanding of their own context and the ability to spot threats targeted at their specific organisation.

    What different techniques should you use as a threat evolves from malicious talk in public forums and social media sites, through to more formulated threats, planning stages, and attack stages? In a world of information-overload and an explosion in communication channels, how do you sift through the noise and identify true threats to your business?

    During this webcast, Lee Lawson, Solutions Architect at Dell SecureWorks, will address the following key themes:

    •The challenges faced by organisations from the rise in targeted threats
    •Limitations of security processes in protecting from targeted threats
    •How to gain early visibility into the threats targeting your particular organisation

    Lee Lawson is the Solutions Architect for Security and Risk Consulting Services at Dell SecureWorks EMEA. In this role he is in charge of envisioning and creating combinations of new and existing services to solve the most unique and difficult customer problems. His past experience was as a Principal Consultant managing the EMEA Security Testing and Response team responsible for all adversarial-testing services such as penetration testing, social engineering and physical intrusions, and all responsive services such as digital forensics and security incident response/handling. This background has provided him with a deep knowledge of the subject having led complex and challenging projects for customers in all industries.
  • Dell SecureWorks Q&A Series: A False Sense of Security? Recorded: Oct 19 2012 12 mins
    First instalment of security Q&A sessions on whether organisations are operating under a false sense of security with the current measures they have in place.
  • Dell SecureWorks Advanced Persistent Threats Series Recorded: Sep 24 2012 16 mins
    Don Smith, Dell SecureWorks Technology Directors, discusses Advanced Persistent Threats (APT) and provides fascinating inisght into the topic, including:

    •Who are the APT threat actors and what are their objectives?
    •What tools and techniques are the hacker groups and cyber-criminals are utilising
    •Common attributes of the Advanced Persistent Threat
    •Trends and patters of APT gleaned from the Dell SecureWorks coalface
    •Who is being targeted by APT and why?
    •What measures and controls should organisations be implementing to combat APT
    •The importance of a robust Incident Response Plan
  • Advanced Persistent Threats: The Threat is Real Recorded: Sep 12 2012 41 mins
    Advanced Persistent Threats are more than media hype. Dell SecureWorks has seen a significant increase in stealthy activity targeting specific intellectual assets, and has been involved in investigating and responding to attacks from APT threat actors.

    During this webcast, Don Smith, Technology Director at Dell SecureWorks, will discuss real-world examples of APT attacks and how to best protect your organisation.
  • Security Leadership Interview Series on Advanced Threats: Question #4 Recorded: Sep 6 2012 11 mins
    What do you feel are the three most important elements of your incident response plan for your organization? Do you respond differently if it is an advanced threat?
  • Security Leadership Interview Series on Advanced Threats: Question #6 Recorded: Sep 6 2012 9 mins
    What steps have you taken to get more visibility into threat actors that might be targeting your organization?
  • Security Leadership Interview Series on Advanced Threats: Question #3 Recorded: Sep 6 2012 10 mins
    What do you think the security community should do better to defend against advanced threats?
  • Security Leadership Interview Series on Advanced Threats: Question #2 Recorded: Sep 6 2012 9 mins
    How do you see the security of your organization changing in terms of technology, people and resources in the coming years to address increasingly sophisticated threats?
  • Security Leadership Interview Series on Advanced Threats: Question #1 Recorded: Sep 6 2012 12 mins
    What distinctions do you make between different types of threats ranging from highly advanced attacks to common malware? How do these distinctions influence your approach to security?
  • Security Leadership Interview Series on Advanced Threats: Question #5 Recorded: Sep 4 2012 12 mins
    How do you present the risk of advanced threats to senior leaders and business leaders?
  • Managing Vulnerabilities in Mobile Applications Recorded: May 30 2012 45 mins
    Mobile applications can give organisations innovative and compelling ways to interact with their customers, employees and partners. However, mobile apps can increase security and compliance risks by increasing the attack surface for hackers or by inadvertently creating a risk of unauthorised access and data loss.

    This webcast will examine the mobile application threat landscape and emerging trends. Rafe Pilling, Head of Security Testing at Dell SecureWorks, will discuss how to build a secure mobile application development lifecycle and present best practice for mobile application security testing.

    Mobility is here to stay, so ensure that you are ahead in managing the risks so you can say “yes” to your organisation’s wants .
  • Responding to the Advanced Persistent Threat Recorded: May 1 2012 35 mins
    The Dell SecureWorks Counter Threat Unit has monitored and responded to hundreds of APT attacks across our 3,000+ customer base in the last 12 months. The information gathered from this activity – and information shared with intelligence agencies around the world - includes advanced knowledge of the adversary, their tools and techniques. Most importantly the Counter Threat Unit has perfected how to identify, protect against and respond to APT attacks.

    This webcast will examine the threat posed by Advanced Persistent Threats and look at the lifecycle of an attack. Lee Lawson, Security Architecht at Dell SecureWorks, will walk through a genuine APT attack and look at the different phases of attack that were encountered. Considering the motivation behind these attacks, and the range of tactics which are used, how concerned should you really be?

    Lee will give insight into best practice for protecting your organisation from APTs, and how you should respond once an incident does occur.

    Key topics covered in the webcast include:

    •understanding the threat posed by APTs
    •understand best practice for defending your organisation from APT attacks
    •how to outwit an attacker that anticipates all your defensive moves

    Lee Lawson is the Solutions Architect for Security and Risk Consulting Services at Dell SecureWorks EMEA. In this role he is in charge of envisioning and creating combinations of new and existing services to solve the most unique and difficult customer problems. His past experience was as a Principal Consultant managing the EMEA Security Testing and Response team responsible for all adversarial-testing services such as penetration testing, social engineering and physical intrusions, and all responsive services such as digital forensics and security incident response/handling. This background has provided him with a deep knowledge of the subject having led complex and challenging projects for customers in all industries.
  • The Threat Landscape: A View From the Inside Recorded: Mar 14 2012 44 mins
    The webcast will take the attendee on a journey through the threat landscape taking in sights such as the latest activity on Trojans and viruses, how the bad guys are stealing intellectual property through the use of malware, the future of cyber warfare and how hacktivism has changed the threat landscape for the foreseeable future.

    Key themes covered in the session:

    • Gain insight into the threats facing your organisation

    • An analysis of threat intelligence gathered from the coalface that will illustrate evolutions and revolutions in the cyber landscape

    • What has Dell SecureWorks observed across its client base in 2012, and what 'new' behaviours have been identified?

    • Inferences, conclusions, and the road ahead: what are the qualitative outcomes of our findings and how can these help inform your strategy for 2012.

    Dell SecureWorks processes more than 20 billion security events across thousands of networks around the globe on a daily basis, leveraging the Counter Threat Unit (CTU) research team who perform in-depth analysis of emerging threats and vulnerabilities.

    This global visibility and unmatched expertise enables early warnings and actionable security intelligence to customers to protect against threats and vulnerabilities before they impact their organisation.

    Lee Lawson is the Solutions Architect for Security and Risk Consulting Services at Dell SecureWorks EMEA. In this role he is in charge of envisioning and creating combinations of new and existing services to solve the most unique and difficult customer problems. with a deep knowledge of the subject having led complex and challenging projects for customers in all industries. Lee often speaks at information security related events for the public and industry insiders and is considered a thought leader in threat landscape.
  • Out with the old, in with the new: Creating effective security programs for 2012 Recorded: Mar 9 2012 45 mins
    There were a number of high profile security breaches amongst large organisations that hit the headlines in 2011, leading to brand damage and financial fallout for the companies in question. Why did this happen and how can organisation’s help better protect themselves from security breaches in 2012?

    During this Dell SecureWorks webcast, Rafe Pilling, Head of Security Testing, discusses the weaknesses and exposures that often lead to the high-profile breaches and how building effective security testing programmes can help organisations stay out of the headlines.

    Key topics included in the webcast:

    •Pitfalls of sticking with the old "commodity" penetration test model

    •Common examples of where the traditional "vulnerability scan and report" combo is no longer effective

    •The new threats and penetration testing methods required to discover weaknesses in an organisations security posture

    •The model of intelligence driven security testing and why you need this approach to protect your business.
  • How to break the cycle of failure in IT Security: A pragmatic approach Recorded: Mar 1 2012 36 mins
    “I know that half my budget is wasted but I don’t know which half.”

    While this often-quoted statement, attributed to early 20th century American merchant and politician John Wanamaker, was originally about advertising, it applies to security too.

    Despite significant spend from organisations on security technology, security breaches are still a daily occurrence and all too often the result of a known threat and vulnerability that should have been fixed.

    Don Smith, VP of Engineering and Technology at Dell SecureWorks, will describe why new threat actors have changed this landscape adding significant complexity and entropy to the life of the security professional.

    Don will then present a bold view of the current state of information security and propose a refreshing, pragmatic approach for improving the security stance of your organisation.
  • Life after the ROC: On-going Compliance and Recertification Recorded: Jan 23 2012 43 mins
    Congratulations, you have received your Report on Compliance (ROC). Now what? Many organisations struggle with this question. While they may have had a dedicated team to get them through the initial ROC, they often lack the resources needed to make compliance a day-to-day reality instead of an annual exercise. They may lack the expertise to develop a long-term plan or struggle to find funding for it, or be faced with pressures to incorporate new technology into their environment - such as virtualisation and cloud computing - while remaining compliant.

    This session will explore the strategic and tactical issues that merchants face in remaining compliant as well as practical advice on how to address them.

    Key themes covered in the webcast:

    Advice for developing a long-term plan while minding day-to-day needs and demands

    How to embrace transformational change in IT, such as virtualisation and cloud computing, while staying compliant

    How a strong security policy can help merchants to achieve on-going compliance
Webcasts from the Dell SecureWorks Team
Dell SecureWorks is relentlessly driven to protect the integrity of the world's digital assets against cyberthreats. We do that with intelligent defences that combine our proprietary technology, global threat visibility and deep expertise. We are 100% focused on information security – it's all we do. That's why we are trusted by thousands of customers. Dell SecureWorks offers a full suite of Managed Security, Threat Intelligence and Security and Risk Consulting services.

Dell SecureWorks is positioned in the Leaders Quadrant of Gartner's Magic Quadrant for MSSPs and has been recognised by SC Magazine’s readers with the “Best Managed Security Service” award for 2006, 2007, 2008, 2009, 2011 (U.S. and Europe) and 2012. Additionally, our experts frequently provide authoritative information security commentary in major media outlets including the New York Times, The Wall Street Journal, The Financial Times, USA Today, The Guardian and many others.
  • Upcoming webinars (0)
  • Recorded webinars (47)
  • Subscribers (2,221)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Responding to the Advanced Persistent Threat
  • Live at: May 1 2012 11:00 am
  • Presented by: Lee Lawson
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK