Name: [APAC] SolarWinds attack: What you need to know
Start: 2021-01-20T03:00:00Z
End: 2021-01-20T03:00:51.000Z
Location: BrightTALK
Rating: 0

Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.

Christiaan Beek, Senior Director of Threat Analytics at Rapid7, delivers an eye-opening talk that shines a spotlight on the vulnerabilities inherent in the security appliances we rely on to safeguard our network borders. With a wealth of experience in the field, Beek shares compelling stories and invaluable insights from recent security breaches, where critical appliances were compromised, and explores the challenges customers face in responding to such events.

Through real-world examples, Beek exposes the alarming reality of security appliances being targeted and exploited by threat actors. He dissects the intricacies of these breaches, examining the specific weaknesses that allowed adversaries to breach the trusted defense mechanisms. By analyzing the tactics, techniques, and procedures employed, he reveals the sophisticated nature of these attacks, highlighting the need for heightened vigilance and enhanced security measures.

Beyond storytelling, Beek offers profound observations and key takeaways for the audience. He delves into the struggles and difficulties encountered by organizations in responding to and mitigating the impact of compromised security appliances. From resource limitations to the complexities of patch management and firmware updates, he addresses the roadblocks that hinder effective incident response.

Attendees of Beek's talk will leave with a deeper understanding of the vulnerabilities that exist within security appliances. Armed with this knowledge, they will be better equipped to strengthen their defenses, respond effectively to incidents, and protect their networks from sophisticated attacks.

The unicorn that has a rainbow of vulnerabilities

There are so many different tools for endpoint, perimeter, and end-user protection. Over time the numbers are increasing. But bringing them together is a challenge and creates a blind spot in your detection and increases your risk. Security does not have to be complex and hard. It needs to be set into context, ease-of-use, and integrated out of the box into your other tools and system with automated process flows. So you can focus on developing and hardening the security program.

Please join Christian Jacobsen, Cloud Specialist, and Monika Lisica, Nordics Account Executive at Rapid7  to find out how to:

- Uncover risks earlier, prioritize and shrink your attack surface
- Automate your process for Infrastructure to Application and Identity & Entitlement in your context
- Secure environment from development to production with the same controls and policies

Robust Protection: Identifying Risk and Threats in a Hybrid Environment [NORDICS

Maîtriser le principe du moindre privilège pour réduire les risques

L'échelle massive des environnements cloud conduit les équipes à gérer potentiellement des millions d'identités distinctes à tout moment dans leur organisation. Par conséquent, les équipes de sécurité ont souvent du mal à mettre en œuvre et à gérer des politiques d'accès qui équilibrent l'intégrité et la sécurité du réseau, des utilisateurs et des données de leur organisation avec efficacité et efficience.

Rejoignez Patrick Sonou, Cloud Security Specialist chez Rapid7 pour discuter des défis qui conduisent à des permissions excessives et voir comment Rapid7 InsightCloudSec peut vous aider :

- Identifier les principaux signaux de risque liés à l'identité en temps réel dans tous vos environnements cloud.
- Découvrir les combinaisons toxiques qui augmentent le risque associé à une identité donnée.
- Réduire le champ d'investigation pour prioriser les efforts de remédiation en fonction de la probabilité d'exploitation et de l'impact potentiel.
- Examiner en permanence l'utilisation des autorisations et recommander intelligemment des politiques de remédiation pour appliquer la LPA en fonction des autorisations non utilisées et/ou des activités anormales.

Comment maîtriser le principe du moindre privilège pour réduire les risques ?

When it comes to financial services, “out with the old, in with the new” is probably not the most helpful saying. In an industry with deep historic roots, companies are often saddled with legacy systems and tech debt that can’t be erased overnight (or ever), while simultaneously pursuing the benefits of digital transformation and the cloud.

Financial services organizations face immense pressures when it comes to the cloud. Some of the biggest challenges include:
- Learning how to embrace the speed of the cloud to innovate quickly without sacrificing security
- Navigating complexities related to legacy tech infrastructure and multicloud environments
- Maintaining compliance with industry requirements

It all boils down to one question: Can you move as fast as your customers demand without creating more risk?

Join Patrick Sonou, Enterprise Cloud Specialist Western Europe, and Yoshua Loch, Account Executive at Rapid7 to find out how to:
- balance Innovation and Security 
- maintain your cloud security  & compliance with industry standards
- achieve security by design at scale with security as a code & automation

FinTech and the Cloud: Make Cloud Security an Asset, Not a Liability

The surge in sophisticated cyber threats, ransomware attacks on critical infrastructure, and the increasing impact of AI and machine learning on cybersecurity have profoundly impacted the security landscape in 2023.

Join us for a compelling and informative panel-style webinar hosted by Jason Hart - Field CTO, Rapid7. Our security experts will discuss the evolving face of cybersecurity, providing insights and helping to navigate the opportunities and challenges that lie ahead in 2024 and beyond.

The session will explore the anticipated shifts, emerging trends, and disruptive forces shaping cybersecurity in the coming year. Don't miss this opportunity to gain a forward-looking perspective on Risk and Threats.

Top Cybersecurity Predictions for 2024 [APAC]

The average security breach in the US costs organizations $9.48M dollars according to IBM, and has increased consistently year over year. Executives continue to prioritize security, and as teams plan for 2024, this series brings together key components of a resilient cybersecurity strategy for detecting and responding to attacker behavior as it evolves.

For this episode, join Rapid7's Cathal O’Neill and Tyler Terenzoni, where they’ll discuss the challenges that lead to excessive permissions and showcase how Rapid7 InsightCloudSec can help: 

- Identify key identity-related risk signals in real-time across all your cloud environments. 
- Uncover toxic combinations that increase risk associated with a given identity. 
- Narrow the scope of investigation to prioritize remediation efforts based on likelihood of exploitation and potential impact. 
- Continuously review permission usage and intelligently recommend remediation policies to enforce LPA based insight into unused permissions and/or anomalous activity.

Detection and Response Resiliency in 2024 and Beyond: Least Privilege Access

Rapid7's Managed Detection and Response (MDR) and Incident Response (IR) teams responded to multiple instances of organizational compromise in which a threat actor employed several unique tools, techniques, and procedures (TTPs), including the legitimate remote access tool, ScreenConnect, to maintain persistent access to the compromised environments. 

In this session, learn how Rapid7's MDR service used the visibility and insights to track down and eradicate the threat actor from other organizational environments through the use of open-source intelligence, threat hunting, detection engineering, and ongoing customer partnerships.

Stories from the SOC: Remote Access Made (un)Easy  [EMEA]

According to Gartner, 90% of organisations will run containerised applications in production by 2026, so they can speed up innovation and improve agility. But how do you ensure that increased speed and agility doesn't result in loss of control? 

As you enter the world of containerised applications, where security needs are vastly different, you may find yourself in search of a new approach. In this webinar, Patrick Sonou, Cloud Security Specialist at Rapid7 will give insights into: 

- The unique challenges associated with securing containerized applications 
- Adapting your VM program to address containerized workloads 
- How the AWS Shared Responsibility Model works, and what it means for your organisation 
- The capabilities you need in your security solutions to build safely on AWS 

Register for this informative webinar to start innovating with containerized applications — securely and confidently.

Secure Your Containerized Apps With Rapid7 on AWS

Star Trek II ist nicht nur einer der besten Filme der Reihe, er zeigt auch typische Szenarien und Herausforderungen der Cybersecurity, die wir so nicht erst im 23. Jahrhundert erleben. Als der Film vor 41 Jahren erschien, haben wir noch nicht von Insider Threats, Attack Surface Management oder Detection & Response und Ransomware gesprochen, doch James T. Kirk und seine Crew hatten durchaus ihre Probleme damit.

Wir können davon einiges in die heutige Zeit übertragen. Fragen wie z.B. folgende:
- Wie sollte meine Cybersecurity "Bridge Crew" zusammengesetzt sein?
- Wie bereite ich mein Team auf unerwartete Ereignisse in den Tiefen des Cyberspaces vor?
- Kann ich im Ernstfall unter Stress das Erlernte auch richtig einsetzen? 

Seien Sie dabei, wenn Fabian Guter spannende Antworten auf diese und weitere Fragen gibt.

Ceti Alpha V - Cybersecurity-Probleme erlebte Captain Kirk schon vor 40 Jahren

En 2022, 35 % des compromissions rencontrées par les clients de service MDR (Managed Detection and Response) étaient dus à une vulnérabilité exploitée. Quelle que soit la performance de votre programme de gestion des vulnérabilités et des risques (VRM), une détection et une réponse efficaces sont un aspect crucial de votre programme de sécurité pour vous assurer que les vulnérabilités exploitées sont traitées et corrigées le plus rapidement possible.

Dans ce webinaire, Aurelia Rasch, responsable commercial grands comptes, et Julien Soukhavong, spécialiste Threat XDR chez Rapid7 vous présentent les 5 techniques employées par les entreprises pour réduire les coûts et renforcer l’efficacité de leur programme de sécurité :

1. Consolidation des outils de sécurité
2. Passer à un fournisseur MDR pour la Détection et Réponse
3. Mettre en place une boucle proactive, réactive et stratégique
4. Mise en œuvre d’un Runbook de réponse aux incidents avec leur fournisseur de Réponses à Incidents
5. Supprimer les limitations et les frontières de votre programme de sécurité

Retrouvez-nous pour ce court webinaire pour en savoir plus sur la façon de réduire les coûts et d’augmenter l’efficacité de votre programme de sécurité !

Cyber menaces : 5 mesures clés pour lutter efficacement !

In den letzten Jahren hat sich das Dark Web von einem Insider-Treffpunkt für kriminelle Güter zu einem Milliarden-umsetzenden Marktplatz für organisierte Kriminalität entwickelt. Die Erträge befeuern das weitere Wachstum und die Professionalisierung der Akteure.

In dem Webinar mit Fabian Guter, Account Executive, Threat Intelligence bei Rapid7 erfahren Sie anhand von konkreten Beispielen:
- wie diese Geschäftsmodelle funktionieren
- was Cyberkriminelle dort beziehen können und 
- wie Sie sich auf diese Bedrohungslagen einstellen und vorbereiten können. 

Fabian Guter gibt Ihnen eine Antwort auf die Frage, was diese Entwicklung für Sie als Cybersecurity-Verantwortlichen letztendlich bedeutet.

Das Dark Web: Vom Hinterhofmarktplatz zum Milliardenmarkt [DACH]

Stories from the SOC: Remote Access Made (un)Easy [APAC]

The average security breach in the US costs organizations $9.48M dollars according to IBM, and has increased consistently year over year. Executives continue to prioritize security, and as teams plan for 2024, this series brings together key components of a resilient cybersecurity strategy for detecting and responding to attacker behavior as it evolves.

During this episode you'll learn that when things are a bit chaotic, opportunities arise for infiltrators to unleash malware as they seek cracks in your security armor. As organizations shift employees from offices to homes and back again, expect defenses to be less effective and watch for an increase in nefarious ransomware, the scourge of the internet.

Detection and Response Resiliency in 2024 and Beyond: Ransomware Best Practices

Top Cybersecurity Predictions for 2024

Kaum ein Wort im Cybersecurity-Umfeld wird gerade so inflationär benutzt wie MDR (Managed Detection and Response). Schaut man sich die Thematik im Detail an, stößt man auf sehr viele Bedeutungen und verschiedenste Definitionen – speziell bei den Lösungsanbietern.

Rapid7 beschäftigt sich seit langer Zeit mit dem Thema und verfügt über umfangreiche und belastbare praktische Erfahrungen im MDR-Umfeld. Vor diesem Hintergrund kommen wir den steigenden Kundenanforderungen entgegen. Nun haben wir ein Bundle geschnürt, was neben einem MDR-Service mit Unlimited Incident Response, Unlimited InsightVM und Unlimited Data noch viele weitere Benefits bietet.

Wie wir das Thema MDR/Managed SOC sehen und was unser Managed Threat Complete-Bundle insgesamt beinhaltet, stellt Ihnen Nico Feitsma, Account Executive Commercial West bei Rapid7, in unserem Webinar vor.

Kick-start your security posture - MDR neu gedacht mit Managed Threat Complete

In 2023 a variety of siloed security tools isn't going to be successful in stopping the next ransomware attack. What you need is a comprehensive ransomware prevention and recovery strategy where many tools integrate and work together to combat the ransomware threat.

Join us for this episode to learn about the ecosystem of security and data protection tools that integrate and ensure that you meet all the best practices of a comprehensive ransomware defense, prevention, and recovery strategy.

Detection and Response Resiliency in 2024 and Beyond: Ransomware Strategies

There are so many different tools for endpoint, perimeter, and end-user protection. Over time the numbers are increasing. But bringing them together is a challenge and creates a blind spot in your detection and increases your risk. Security does not have to be complex and hard. It needs to be set into context, ease-of-use, and integrated out of the box into your other tools and system with automated process flows. So you can focus on developing and hardening the security program.

Join Christian Jacobsen, Cloud Specialist, and Sophie Prokop, Account Executive at Rapid7 to find out how to:
- Uncover risks earlier, prioritize and shrink your attack surface
- Automate your process for Infrastructure to Application and Identity & Entitlement in your context
- Secure environment from development to production with the same controls and policies

Robust Protection: Identifying Risk and Threats in a Hybrid Environment [DACH]

As security teams grapple with a rapidly expanding attack surface and environments that have become increasingly dynamic and challenging to secure, organisations must evolve their Risk Management programs. With mission-critical workloads running both on-premise and in the cloud, security teams need a solution that was purpose built to seamlessly manage risk across hybrid environments.

In this session Patrick Sonou, Cloud Security Specialist at Rapid7 will discuss how your team can :

- Maintain risk coverage of existing on-premise infrastructure while expanding your cloud environments, getting both from a single platform. 
- Consolidate your security and establish a consistent definition of risk across your organization. 
- Adapt your security program to a new way of managing risk that’s more efficient in securing modern cloud environments.

Adapting Your Risk Management Program to Cloud and Hybrid Environments

On December 12, 2020, FireEye provided detailed information on a widespread attack campaign involving a backdoored component of the SolarWinds Orion platform.

The information that has since come out continues to highlight the importance of understanding the security in the supply chain as part of a vulnerability management program.

Our number one priority is working to strengthen the security of our customers and the broader community. We have brought together a panel of experts to provide you with the information to help you further secure your environments—we hope that by sharing the details of our investigation, the entire community will be better equipped to fight and defeat cyber attacks.

[APAC] SolarWinds attack: What you need to know

Breach Detection

Breach Prevention

Cyber Attacks

Cyber Crime

FireEye

Supply Chain

SolarWinds

Cyber Defence

Security Awareness

Attack Vectors

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

[APAC] SolarWinds attack: What you need to know

Presented by

About this talk

More from this channel