Name: Apache Log4j Vulnerability: What You Need to Know and Mitigation Guidance
Start: 2021-12-16T19:00:00Z
End: 2021-12-16T19:01:03.000Z
Location: BrightTALK
Rating: 4.7

Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.

In einer Zeit, in der Cybersicherheit von höchster Bedeutung ist, ist es zunehmend wichtig, die Entwicklung der Infrastrukturüberwachung zu untersuchen. Dabei liegt der Fokus des Interesses auf dem Übergang von Endgeräten zur Cloud. Traditionelle Überwachungssysteme passen nicht mehr in die sich verändernde Bedrohungslandschaft, denn der rasante Aufstieg von Cloud-Technologien hat die Verwaltung von Unternehmensinfrastrukturen grundlegend verändert. 

Tauchen Sie mit uns ein in eine Welt der Cloud, in der flüchtige Endpunkte, nicht-wiederverwendbare Endpunkte und Mikroservices die Infrastrukturverwaltung revolutionieren. 

Wir laden Sie ein, am Mittwoch, den 22. Mai 2024 von 9:00 bis 9:30 Uhr an unserem Live-Webinar mit Miklós Csécsi, Senior Security Solutions Engineer bei Rapid7, teilzunehmen, um u.a. diese Fragestellung tiefergehend zu beantworten.

Weitere Punkte:
1. Die Skalierbarkeit: Warum moderne Lösungen, speziell für Skalierbarkeit konzipiert, besser geeignet sind, um mit der neuen Realität Schritt zu halten.
2. Die Kostenfrage: Lizenzkosten für traditionelle Systeme können erheblich sein und die finanziellen Ressourcen Ihrer Organisation belasten. Welche Vorteile bieten hier die neuen Systeme?
3. Bei der Entscheidung für oder gegen traditionelle Systeme sollten Anforderungen, Technologiestapel und IT-Strategie sorgfältig geprüft werden, um festzustellen, ob traditionelle Überwachungssysteme noch angemessen sind. Welche Überwachungslösung passt am besten zu Ihrer IT-Strategie?
4. Sicherheit und Effizienz: Wann ist eine moderne und agile Überwachungslösung besser dazu geeignet, die Sicherheit und Effizienz Ihrer Infrastruktur zu gewährleisten?

Security Journey vom Endpoint in die Cloud

Join us for an insightful interview with former CIA intelligence officer and US Air Force combat veteran Andrew Bustamante. In this captivating interview, discover how dynamic thinking, creative problem-solving, and risk-taking from international espionage can elevate your personal and professional life.

Understand the skills needed to understand your competition, predict human behavior, and control environments to achieve impossible objectives.

Learn the tools, tactics, and techniques once reserved for elite intelligence agencies, empowering you to Take Command of your environment with clarity and confidence.

Command with Confidence: Insights from Andrew Bustamante | AMER

This session explores how the partner channel community collaborates to enhance cybersecurity resilience and safeguard customers against evolving threats.

During this 30-minute session, global channel leaders will share insights into the benefits of strategic alliances, providing valuable perspectives on creating compelling value propositions and establishing joint goals to maximize customer value.

Discover the top services on customers' wish lists, successful partnership models, best practices for effective collaboration and communication, and practical strategies for implementing robust security solutions.

Take advantage of this opportunity to tap into the collective expertise of the partner channel community and elevate your customers' security posture.

Partnering Against Attack Surface Sprawl | AMER

The US Securities and Exchange Commission (SEC) has introduced regulations to ensure organizations have adequately planned for cybersecurity risk and are positioned to provide timely incident disclosure.

Join Sabeen Malik, VP, Global Government Affairs and Public Policy, Kyra Ayo Caros, Director, Corporate Securities & Compliance and Harley L. Geiger, Venable LLP for a discussion on how to prepare for these new regulations and what they mean for your organization.

Take advantage of this opportunity to understand the new rules, which began on December 18, 2023, requiring publicly traded companies to disclose material cybersecurity incidents and to disclose on an annual basis material information regarding their cybersecurity risk management, strategy, and governance for certain registrants.

Preparing for the SEC's Cybersecurity Disclosure Rules | AMER

Creating a resilient cybersecurity culture within organizations is essential to effectively combat evolving cyber threats. In this 30-minute session, security experts and people and culture leaders explore strategies for cultivating a strong cybersecurity culture and fostering employee awareness, engagement, and proactive behaviours.

Learn how executives can enhance their cyber mission and vision statements to create a positive cybersecurity culture that permeates the business. Gain practical insights on embedding cybersecurity principles into the workforce's mindset and fostering personal accountability for cybersecurity practices.

Explore the crucial role of accountability, shared values, and clear cyber strategies in mitigating operational risk, enhancing team efficiency, and optimizing resources even in challenging financial landscapes.

Commander in Chief: Enhancing Cybersecurity Culture | AMER

In an era of headline-making attacks, the threat of ransomware looms across all organizations, regardless of size, sector or brand reputation. In this 30-minute session, our panel of industry experts unveils comprehensive strategies for strengthening defences, shares key insights for effective decision-making during crisis situations, and provides invaluable guidance for navigating the aftermath of a ransomware attack.

The session deep dives into the three critical stages of ransomware defense - Before, During and After an attack.

Our security experts detail proactive measures essential for fortifying defenses and elevating your organization's security posture, reducing vulnerability and exposure to potential threats.

They'll discuss the importance of swift decision-making, which can be paramount in mitigating damage and containing the threat before it spreads throughout your environment, minimizing impact and disruption.

Then, it concludes with a summary of the recovery phase, detailing data restoration and forensic analysis techniques needed to prevent future breaches and ensure resilience against reoccurrence.

Ready and Resilient: Before, During, & After Ransomware Attacks | AMER

The impact and influence of artificial intelligence (AI) have been nothing short of staggering - it's at the top of most leaders' agendas as they strive to balance efficiency with risk mitigation.

This 30-minute webinar discusses the evolving landscape of AI in cybersecurity and its potential implications on future defense policies. 
Gain invaluable insights into harnessing AI to strengthen your organization's defenses, navigate complex threat landscapes, and outmaneuver adversaries. 

This is an ideal opportunity to uncover AI's transformative power in cybersecurity and learn how to leverage its capabilities to build resilient defense mechanisms that stand strong against modern threats.

Control the Chaos: Building Resilient Cyber Defenses Through AI | AMER

As organizations grow increasingly-reliant on cloud environments to support and grow their businesses, safeguarding against cloud-specific threats has never played a more critical role in maintaining a strong security posture.

This 30-minute webinar delves into proven tactics for pinpointing and detecting threats across complex hybrid and multi cloud environments. During the session Rapid7 experts will explore the unique challenges cloud infrastructure presents and outline strategies for effectively adapting your security programs.

Whether you’re looking to proactively mitigate vulnerabilities or detect malicious activity the moment it happens, you’ll gain practical insights to strengthen your security posture and take command of your cloud attack surface.

Command Your Cloud: Anticipate, Pinpoint, and Act On Cloud Threats | AMER

With the cost of a data breach at an all-time high, Security Operation Center (SOC) teams need incident response measures to prevent threat actors from establishing persistent footholds within their environments.


This 30-minute session offers more than just theory; it shares recent exploit stories, trend analysis, and actionable threat-hunting techniques. Discover how research is pivotal in providing security teams with contextual understanding, enabling them to stay ahead of the curve and effectively respond to evolving cyber threats.


Gain invaluable insights into the challenges SOC analysts face and equip yourself with practical advice to navigate the evolving threat landscape. Learn real-world tactics and strategies to effectively empower security teams with the knowledge and tools to combat it.

Stories from the SOC After Party | AMER

Command with Confidence: Insights from Andrew Bustamante | EMEA

Partnering Against Attack Surface Sprawl | EMEA

Explore the process of defining security projects, goals, and outcomes, and showcases strategies for delivering impactful results to drive organizational momentum.

Unlocking Security Success: Strategies for Measuring Team Performance | AMER

Preparing for the SEC's Cybersecurity Disclosure Rules | EMEA

An essential session for leaders and practitioners, this 30-minute session provides a comprehensive overview of the current security landscape, examining macro influences on organizations and Security Operations Center (SOC) teams.

The session explores the dynamic forces at play, from emerging threat vectors to evolving regulations and geopolitical dynamics. Gain proactive guidance on navigating these challenges and empower your organization to respond confidently to emerging security risks.

Take advantage of this opportunity to stay ahead of the curve and strengthen your defenses against evolving threats. Register now to fortify your security posture and safeguard your organization's digital assets.

The State of Security | AMER

Commander in Chief: Enhancing Cybersecurity Culture | EMEA

Join Rapid7 Labs’ threat analytics and vulnerability intelligence leaders as they take a deep dive into the brand new 2024 Attack Intelligence Report. By examining recent notable vulnerabilities and high-impact attacks, the experts of Rapid7 Labs have identified trends every SecOps team should pay attention to, adding valuable context so you can command your attack surface.

Get the data and insights that your business can use to better understand and guard against some of the most significant attacks and TTPs occurring in today’s cyber threat landscape, directly from the researchers behind the report.

Know Your Adversary: Breaking Down the 2024 Attack Intelligence Report | AMER

Ready and Resilient: Before, During, & After Ransomware Attacks | EMEA

Control the Chaos: Building Resilient Cyber Defenses Through AI | EMEA

On December 10, 2021, a critical remote code execution (RCE) vulnerability in Apache’s widely used Log4j Java library (CVE-2021-44228) sent shockwaves across the online world. Also known as Log4Shell, this zero-day vulnerability has impacted huge portions of the internet and web applications because of Log4j’s widespread use. Successful exploitation of Log4Shell can allow a remote, unauthenticated attacker to take full control of a target system.

To help organizations address this vulnerability and offer mitigation guidance, the Rapid7 team is coming together to discuss:
- Details on how this vulnerability works and what kind of system it impacts
- The ways this vulnerability can be and is being exploited in the wild and why it’s such a critical situation
- What organizations can expect in the coming days and weeks, and possible long-term impacts 
- Mitigation and detection guidance, including actionable next steps organizations can take
- Recommended resources to learn more and stay on top of updates

Apache Log4j Vulnerability: What You Need to Know and Mitigation Guidance

log4j

IT Security

detection and response

CISO

Cyber Attacks

Vulnerabilities

Threat Detection

Cyber Security

Security Breach

Response Time

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Apache Log4j Vulnerability: What You Need to Know and Mitigation Guidance

Presented by

About this talk

More from this channel