Hi [[ session.user.profile.firstName ]]

SecureWorks SecureThoughts

  • Date
  • Rating
  • Views
  • 2017 Threat Landscape: Increased Sophistication, or More of the Same? 2017 Threat Landscape: Increased Sophistication, or More of the Same? SecureWorks Counter Threat Unit Research Team Recorded: Dec 7 2016 45 mins
    As 2016 draws to a close, security professionals worldwide will be left pondering another year of publicised breaches, vulnerabilities and threats. So what are the key takeaways and how can global security events from the past 12 months inform your plans for 2017?

    We’ve asked a panel of experts from the SecureWorks Counter Threat Unit (CTU), our highly-trained team of experienced security researchers, to paint a picture of threat actors and their tradecraft across the globe by sharing their views on 2016’s most significant security events. The panel will end the session by providing actionable insights and recommendations for organisations to factor into their security strategy in 2017.

    Join this exclusive webcast to gain CTU insight on the following topics and more:

    - eCrime trends including the rise of ransomware, business email compromise and the Mirai IoT botnet activity
    - Nation state sponsored threats and whether organisations are set up to defend against them
    - How organisations can use threat intelligence gathered in 2016 to improve security
  • TI Spotlight Series Part 2: An Exposé of a West African Fraud Syndicate TI Spotlight Series Part 2: An Exposé of a West African Fraud Syndicate Lee Lawson, Senior Researcher, CTU EMEA Recorded: Nov 4 2016 25 mins
    "Nigerian prince" and "419" scams have plagued victims for decades and transitioned to the Internet in the 1990s. There are many variations and names for these scams, which originated in Nigeria. The scammers refer to their trade using the terms "yahoo yahoo" or "G-work," calling themselves "yahoo-yahoo boys," "yahoo boiz," or "G-boys." However, the simple con man fraud practiced by many West African-based threat actors is being replaced by a new crime they refer to as "wire-wire," "waya-waya," or "the new G-work."

    In this short 25-minute on-demand webcast, the second in the four-part SecureWorks Threat Intelligence Spotlight Series, Lee Lawson, Senior Researcher with the SecureWorks Counter Threat Unit (CTU), explains how the low-level con games these threat actors are typically known for have evolved into more sophisticated and conventional cybercrime that is compromising businesses around the world.
  • TI Spotlight Series Part 1: The Targeting of the DNC & HillaryClinton.com TI Spotlight Series Part 1: The Targeting of the DNC & HillaryClinton.com Tom Finney, Senior Researcher, CTU EMEA Recorded: Nov 3 2016 32 mins
    Before the widely-publicised spearphishing campaign against HillaryClinton.com and the DNC during the 2016 Presidential Election, Threat Group-4127 (TG-4127), also known as APT28, Sofacy, Sednit, Fancy bear and Pawn Storm, had traditionally targeted governments, the military and international non-governmental organisations (NGOs).

    In this short 30-minute on-demand webcast, the first in the four-part SecureWorks Threat Intelligence Spotlight Series, Tom Finney, Senior Researcher with the SecureWorks Counter Threat Unit (CTU) shares what the CTU learned after spending a year tracking the threat group that hacked the DNC and HillaryClinton.com.
  • When Hackers Use Your Security Tools Against You When Hackers Use Your Security Tools Against You Daniel Gortze, Delivery Manager, SecureWorks Incident Response & Forensics Consulting Team Recorded: Nov 2 2016 44 mins
    You have spent significant financial and human resources to configure and protect your network and digital assets, purchased several new security tools and software, and now you're wondering if those technologies will be able to protect your organisation against potential cyber intrusions.

    Join this webcast and hear from Daniel Gortze, Delivery Manager for the SecureWorks Incident Response & Forensics Consulting Team, who will examine real-life scenarios in which security technologies failed, and even worst cases where threat actors used an organisations' own security technologies against them.

    Key Topics Covered Include:

    - Examples of Threat Actor Abuse of Security Technology in real-world Incidents
    - Anti-Virus Abuse
    - Exploiting Whitelisting Misconfiguration
    - The Human Weak link
    - Lessons learned and actionable insights
  • 2016 Threat Analysis: Learning from Real-World Attacks 2016 Threat Analysis: Learning from Real-World Attacks Matt Webster, CTU Security Researcher, SecureWorks Recorded: Sep 6 2016 44 mins
    SecureWorks® incident responders assist hundreds of organisations annually with the containment and remediation of threats during suspected security incidents.

    Visibility of these incidents provides the SecureWorks Counter Threat Unit™ (CTU) research team with a unique view of emerging threats and developing trends. This Threat Intelligence is then continuously provided to clients, arming them with the information they need to stay one step ahead of adversaries trying to compromise their networks.

    In this webcast Matt Webster, CTU Security Researcher, will discuss developments in the threat landscape observed through SecureWorks’ Incident Response engagements from April to June of 2016, including;

    - Key developments of the APT threat
    - Criminal cyber threat trends
    - Developments in Ransomware

    Matt will also discuss observations of how the affected organisations could have better prepared for the threats they encountered.
  • You’re The One That They Want: Targeted Threats and You You’re The One That They Want: Targeted Threats and You Don Smith, SecureWorks, Ian Glover, CREST & Peter Wood, First Base Technologies Recorded: Jun 15 2016 46 mins
    The rise in targeted threats means that security teams must move beyond a general understanding of the threat landscape, to a detailed understanding of their own context and the ability to spot threats targeted at their specific organisation.

    In a world of information-overload and an explosion in communication channels, how do you sift through the noise and identify true threats to your business?

    Key themes:

    •The challenges faced by organisations from the rise in targeted threats
    •Limitations of security processes in protecting from targeted threats
    •How to gain early visibility into the threats targeting your particular organisation

    Don Smith leads the CTU™ Cyber Intelligence Cell: a team of experienced threat analysts who, through the application of established intelligence practices, deliver actionable and timely intelligence products on the threats most relevant to SecureWorks clients. Don also leads the CTU research team in EMEA.

    Don joined SecureWorks in 2005 and, since then, has been instrumental in establishing a CTU presence in EMEA and building important relationships for SecureWorks in the region. His enthusiasm and threat expertise means that he regularly represents SecureWorks at industry events in EMEA. Don has 24 years’ experience in the IT industry and was previously responsible for security architecture and operations for a multi-billion enterprise, where he took a lead role in successfully integrating 14 acquisitions. He is a recognized subject-matter expert many areas of cybersecurity and advises SecureWorks and SecureWorks’ clients globally.
  • 6 Steps to Risk-Based Security in a Hyper-Connected World 6 Steps to Risk-Based Security in a Hyper-Connected World Hadi Hosn, Head of Security Strategy and GRC Consulting, EMEA Recorded: Jun 13 2016 14 mins
    Achieving total security in an organisation is impossible. Security controls need to be pragmatic and investments prioritised. In this presentation, Hadi Hosn, Head of Security Strategy and GRC Consulting in EMEA, discusses six steps to implementing and operating a risk-based model to help companies identify and protect their most critical information assets and business processes.
  • How Hackers are using Social Media for Cyber-Espionage How Hackers are using Social Media for Cyber-Espionage Mark Osborn, CTU Senior Researcher, SecureWorks Recorded: Jun 13 2016 13 mins
    In this short video, Mark Osborn, a threat researcher with the world-class SecureWorks Counter Threat Unit™ (CTU), discusses the recent investigation into a cyber-espionage campaign, covering the tools and tactics used by the threat actors and exploring the intent behind the activity.

    SecureWorks CTU researchers uncovered a set of fake profiles on a popular professional social media networking site supporting a suspected Iran-based threat group's cyber operations.

    This social engineering campaign is just one example of the kind of malicious activity the SecureWorks CTU are tracking on a daily basis. This Threat Intelligence is constantly being gathered on prominent threat groups across the globe, and is fed into SecureWorks services to ensure their clients stay one step ahead of the Techniques, Tactics and Procedures (TTP) being employed by their adversaries.
  • Strategy Talks: Evolutions in APT Tactics Strategy Talks: Evolutions in APT Tactics Lee Lawson, Counter Threat Unit, Special Operations Recorded: Jun 13 2016 26 mins
    Lee discusses the rise of advanced persistent threats, how the security threat landscape is evolving and what you can do to keep pace. The presentation examines techniques deployed for intrusion, persistence, lateral expansion and exfiltration and highlights where changes to the detective or preventative control frameworks could have prevented attackers from achieving their objectives.

    Lee covers off three types of evolutions recently observed:

    - Defensive Evasion
    - “Living Off the Land”
    - Virtualisation
  • Top 5 Emerging Trends in Information Security Top 5 Emerging Trends in Information Security Chris Yule, Senior Principal Consultant, Security Strategy Recorded: Jun 13 2016 18 mins
    As Information Security continues to evolve, cybercriminals are busier than ever, and when organisations are faced with an ever-evolving range of increasingly sophisticated attacks from threat actors, they turn to SecureWorks for help.

    As a Senior Principal Consultant at SecureWorks, Chris works with a range of clients from different industries and of varying sizes, to help them formulate and hone their security strategy. In this presentation, Chris provides an overview of the five key information security trends that he has seen emerge during his conversations with clients over the past 12 months.

    During this presentation, Chris covers the following five trends;

    - Organisation
    - Threat Intelligence
    - Securing the Cloud
    - Emerging security controls
    - Intelligence-led testing

Embed in website or blog