Alexei Rubinstein, Vice President of Sales Engineering at IntSights
The rapid-fire of cybersecurity threats hitting today’s businesses cause many security teams to “live in the moment.” It’s equally important, however, to receive and understand the early indicators cyber threat intelligence (CTI) provides. With these indicators in hand, your team can remediate issues before they become full-blown incidents.
For example, consider what your team could do if it learned that a bot was installed on a single corporate machine, and it was exfiltrating credentials from that machine including those for Citrix and Slack. This is a real-world story of a compromised UK company whose network access was for sale for just $8 USD.
In this session, we will explore the current dark web activity that reveals network compromises and sets the stage for future cyberattacks:
• How CTI provides clues about your company’s vulnerabilities
• What can be done when CTI shows that access to your network is up for sale
• Techniques for integrating CTI into your SecOps processes