Hi [[ session.user.profile.firstName ]]

SecureWorks - SecureTalk

  • Date
  • Rating
  • Views
  • Windows Management Instrumentation Threats: Good Tools Gone Bad
    Windows Management Instrumentation Threats: Good Tools Gone Bad Lee Lawson, Special Operation Resercher, SecureWorks Counter Threat Unit Recorded: Sep 12 2017 46 mins
    Windows Management Instrumentation (WMI) is a Microsoft Windows administrative tool that has access to all system resources, making it powerful for both legitimate and illegitimate use. Via WMI you can do things like execute, delete and copy files; change registry values; and identify what security products are installed to aid in bypassing them.

    The malicious use of WMI and other legitimate tools continues to grow and was identified as a top trend in a recent SecureWorks Threat Intelligence Executive Report. Like PowerShell, WMI is often used to create file-less attacks that are difficult to identify and stop with technology alone. This makes WMI the perfect tool for threat actors to use as camouflage while acting inside your organization.

    Join us to learn:
    • Why WMI is so risky
    • Tips to identify malicious use of WMI
    • How threat actors hide their tracks and how you can unmask them
    • WMI threats identified by SecureWorks researchers
    • How you can avoid becoming a victim to this growing threat vector
  • Executive Cyber Protection
    Executive Cyber Protection Chris Bullock, SecureWorks Managing Principal Recorded: Aug 29 2017 48 mins
    In a world where physical attack vectors are no longer the preferred way to attack a person of notoriety or a chief executive sta¬tus individual, the need for cyber executive protection to enhance existing cybersecurity programs and traditional executive protection has become greater than ever. With expanded use of information sharing through social media and use of technologies such as home automation, Executive’s habits, families and close personnel staff are being monitored, targeted and shared via the dark web for a number of reasons such as disruption of business, personal or brand embarrassment and financial gain just to name a few.

    In this webcast, Chris Bullock, SecureWorks Managing Principal, will cover a new approach to mitigating risk to this emerging threat that encompasses:

    • Analyzing ten domains of risk to an Executive, their family and close staff
    • How to assess potential risk and exposure to the brand or reputational damage
    • Guidance on which specific risk factors to monitor regularly to ensure preparedness
    • How to implement the most effective and appropriate safeguards
  • Three Key Principles for Managing Cloud Security Risk
    Three Key Principles for Managing Cloud Security Risk Hadi Hosn, Head of Security Strategy and GRC Consulting, EMEA Recorded: Aug 1 2017 62 mins
    Whether you like it or not, the security industry is being cloudified.
    As IT moves into the Cloud, security must follow, and with IT losing its grip on the endpoint, Cloud is the only Security option. In addition, the Internet of Things continues to scale upwards, and Cloud computing will be its data repository, application engine, provisioning system and Security platform.

    Join Hadi Hosn, Head of Security Strategy & GRC Consulting in EMEA, as he explains why cloud security is so important, and provides guidance on key considerations when building out a cloud security program.

    In this webcast you will learn:
    • 3 key principles for managing cloud security risk
    • 5 common misconceptions and how to avoid them
    • The 5 fundamental cloud security controls you should implement
  • The Value of Time in Threat Detection and Incident Response
    The Value of Time in Threat Detection and Incident Response Derek Brink, VP and Research Fellow (Aberdeen Group) | John Collins, CTU Special Operations Manager (SecureWorks) Recorded: Jul 26 2017 42 mins
    The stakes for enterprise investments in threat detection and incident response capabilities are getting higher, as evidenced by empirical data from successful cyber attacks detected and remediated by SecureWorks, a Dell Technologies company.

    The sheer growth and complexity of the technical threat landscape and vulnerability landscape means that merely keeping up is no longer enough. In cyber security, time is currently working in favor of the attackers — and time is the strategic advantage that the defenders need to regain.

    Join Derek Brink, vice president and research fellow for Aberdeen Group, and John Collins, Operations Manager for the SecureWorks Counter Threat Unit Special Operations Team and Advisory Systems Engineer for threat intelligence services , to gain fact-based insights into:

    • Real use cases where time to detect has impacted the business outcome
    • Trends in threat actors and motivations – and how this affects your strategies for protection, detection, and response
    • Quantifying the value and ROI of faster detection and response – for both attacks on availability (e.g., unplanned downtime or slowdown), and attacks on confidentiality (e.g., a data breach)
    • The increasingly important role played by third party threat detection and incident response, in this rapidly evolving context
  • Analysis Paralysis: Billions of Logs to Incidents That Matter
    Analysis Paralysis: Billions of Logs to Incidents That Matter Tony Merritt, SecureWorks Managing Principal Recorded: Jul 19 2017 52 mins
    Most enterprise organizations have set up a security model that includes a first layer of security event management, responsible for capturing of logs, notification, filtering and some level of correlation. However, with the escalating number of users and logs from more and more devices, making sense of the noise and translating them into incidents that matter can be a daunting task.

    In this webcast, Tony Merritt, SecureWorks Managing Principal, will cover how to leverage logs and tactics to integrate the proper incident response. Topics covered include:

    • Sensing: The challenge of ever increasing in-bound noise and priorities
    • Improving Sensing: What logs and events matter? How do you ensure you have visibility?
    • Sense Making: Not all logs are created equal. The importance of correlation, business context, rules and use cases to determine if the incident matters.
    • Decisions Making: An event has passed a threshold of incident viability. How do you connect logs and tactics into actionable response?
  • “NotPetya” Ransomware Webcast – from SecureWorks® Threat Intelligence
    “NotPetya” Ransomware Webcast – from SecureWorks® Threat Intelligence Aaron Shelmire and Mike McLellan, Security Researchers, Counter Threat Unit Recorded: Jun 30 2017 45 mins
    SecureWorks Counter Threat Unit™ (CTU) researchers will discuss details of the “NotPetya” Ransomware attack. Our experts will discuss this and similar attacks, help organizations explain the importance of avoiding malicious attempts and discuss the value of recommended mitigation tactics.

    In this webcast we will discuss:
    • History and timeline of this attack and how it began
    • What is this ransomware, how is it different from others and how it operates
    • Why this is not Petya or Goldeneye
    • How to be vigilant of misinformation
    • SecureWorks recommended actions to protect yourself
    • Interactive Q&A session
  • The PowerShell Risk: Understanding and Avoiding PowerShell Attacks
    The PowerShell Risk: Understanding and Avoiding PowerShell Attacks Lee Lawson, Special Operation Resercher, SecureWorks Counter Threat Unit Recorded: Jun 20 2017 62 mins
    In a recent SecureWorks engagement, 98.5% of the 3,477 commands executed by threat actors were native to the Windows operating system.

    PowerShell is a popular tool that Microsoft has been including with the Windows OS since 2009, but malicious PowerShell use is rivaling ransomware in popularity with threat actors. Security products focused on preventing endpoint threats are often not enough to differentiate legitimate from malicious PowerShell use. Join us for a discussion of why PowerShell is so risky, how SecureWorks researchers identify PowerShell threats, and how you can defend your organization.

    SecureWorks Counter Threat Unit - Special Operations Researcher, Lee Lawson, will discuss how security leaders and practitioners can leverage his experience to reduce the risk and understand how to defend against PowerShell threats in your organizations.

    You Will Learn:
    • What PowerShell is and how it is used in “living off the land” attacks
    • Why built-in tools like PowerShell are so attractive to threat actors
    • Examples of malicious PowerShell use
    • How to defend your organization against common methods to evade prevention and detection
  • Modernizing Security Operations: Preparing to Better Secure Your Organization
    Modernizing Security Operations: Preparing to Better Secure Your Organization Travis Wiggins, Principal Cyber Security Operations Consultant, SecureWorks Recorded: May 2 2017 59 mins
    According to a recent SANS report, more than 60 percent of large-company CISOs brief the board at least annually and by the end of 2018, 70 percent of all boards will require CISOs to brief them quarterly.^

    Deciding to what degree your security operations should be in-house vs outsourced is a major decision with significant cost and resource ramifications. Currently organizations globally face persistent security challenges, which collectively require people, process, technology, and strategy to address. This collection of challenges are further complicated by evolving business needs; expanding toolsets and platform options; and staffing retention and attrition. Join us to learn how a modern approach to security operations can help address these challenges.

    SecureWorks Principal Cyber Security Operations Consultant and former Security Operations Center (SOC) manager, Travis Wiggins, will discuss how security leaders and practitioners can leverage his experience to more clearly define the requirements and make informed decisions about protecting your organization.

    You Will Learn:
    • Why making the right security operations decisions is critical to reduce business risk
    • What to consider when planning a SOC and how to position the plan to leaders
    • How to address talent retention, accountability, and scalability
    • Why strategy and proper tools are key components in a successful SOC implementation

    ^ Cyber Security Trends: Aiming Ahead of the Target to Increase Security in 2017 - https://www.sans.org/reading-room/whitepapers/analyst/cyber-security-trends-aiming-target-increase-security-2017-37702
  • New York’s New Cybersecurity Regulations: Explained!
    New York’s New Cybersecurity Regulations: Explained! Mihir Mistry, Senior Security Manager Recorded: Apr 27 2017 60 mins
    The nation's first state-mandated cybersecurity regulations regarding banking and financial services companies went into effect in New York state on March 1st. However, many businesses subject to the regulations are asking, what are these rules and how will they affect my business operations.

    SecureWorks invites you to join us on April 27th for a webcast designed to help you understand these new mandates and develop an approach to ensure that your organization has a mature and effective security program in place that will not only help you achieve compliance but will improve your overall information security posture.

    What you will learn:
    • Which entities are covered by the mandate and what type of data needs protecting.
    • The five core elements needed to establish a comprehensive cybersecurity program.
    • Critical questions you should be asking your security program partner.
  • 2017 Ransomware Defense Survey Report: The Enterprise Strikes Back
    2017 Ransomware Defense Survey Report: The Enterprise Strikes Back Keith Jarvis, Senior Security Researcher Recorded: Apr 18 2017 42 mins
    Fifty-two percent of security leaders rate their organizations at above average or superior when it comes to detecting or blocking ransomware before it locks or encrypts data in their systems. Yet, 36 percent also say their organizations were victims of ransomware in the past year. And 57 percent say they are more likely to be a ransomware target in 2017.

    These are among the results of the 2017 Ransomware Defense Survey. Aimed at determining the true impact of ransomware on organizations across industries, the survey uncovers some stark contrasts.

    ISMG Vice President of Editorial, Tom Field and SecureWorks Senior Security Researcher, Keith Jarvis, will analyze the Ransomware Defense Survey results and will discuss how security leaders can put these findings to work in their organizations.

    You Will Learn About:
    • The true impact of ransomware on organizations across industries
    • What works and doesn't work when it comes to detecting and remediating ransomware
    • Key investments enterprises are making in 2017 to shore up their ransomware defenses
    • How to prevent and detect ransomware before it takes root and cripples your operations

Embed in website or blog