Cyber Evolution: En Route to Strengthening Resilience in Asia-Pacific

The cloud is more pervasive in our organizations and our lives. But security operations centers (SOCs) can keep up, even when their organization adopts multiple public cloud and SaaS solutions.

Join this webinar to ensure that your organization’s cloud strategy is less of a problem than you might think. Expert Martin Holste, Cloud CTO at FireEye, shares:

• Trade-offs and nuances between cloud providers
• Considerations that can affect your strategic direction
• Seasoned guidance on how to optimize your cloud migration

For some time, the healthcare sector has faced a wide range of threat actors and adversary motivations. Today, data held by healthcare organizations—patient records, medical research, and more—remains at risk from cyber criminals and espionage groups. More disruptive cyber attacks can even hamper operations within healthcare providers.

Join us on September 17 at 9 a.m. PT/12 p.m. ET, as FireEye and Beazley present a webinar that discusses the latest breach and threat landscape trends for this sector.

Did you know that attackers are using Office’s eDiscovery features to search for sensitive data? FireEye has rules that look specifically for eDiscovery use and exports from eDiscovery, which are generally rare in an uncompromised organization.

Listen to Martin Holste, FireEye’s CTOas he discusses the security for Office365:
• Visibility into Azure event sources:
o Azure audit
o Azure AD
o MS Exchange
o Office365
• Leverage visibility into cloud events to identify credential theft using anomaly detection
• Using rules to spot risky configuration and suspicious events
• OneDrive advanced file security

With an ever-changing threat landscape and an increase in the sophistication of the attack techniques used by attackers and to add to that, humongous amounts of alerts generated by the myriad security tools, makes it easy for attackers to hide in the noisy alerts. A proverbial cherry on top – lack of skilled resources to investigate the alerts and resolve them confidently and reduce business risk. Quickly. Who will guide the teams? Who will give them the right context? The right picture? And how?

Watch the webinar to find out more

Defending the frontlines of cybersecurity is a never-ending battle, with new advanced persistent threat (APT) groups lurking to steal data, compromise infrastructure, and interfere with victim business operations. FireEye’s newly named threat group, APT41 is no exception. Their aggressive and consistent mode of operation, and highly sophisticated tactics, distinguishes them from other adversaries making them a double threat to contend with.

APT41 uniquely balances espionage activity concurrently with financially motivated activity driven by personal gain. Since 2012 FireEye has observed APT41 conduct in a wide range of operations including data theft, innovative supply-chain attacks, and the use of unique tools and targeting techniques.

Join this webinar to hear FireEye Threat Intelligence experts, Jacqueline O’Leary, Raymond Leong and Dan Perez, provide:

•Insights into attribution and shared tactics between espionage and financially motivated operations
•Supply chain compromises attributed to APT41 activity
•Unique malware capabilities and techniques
•Details on connections to identified personas

The overall objective of the SOC is stop or reduce the impact of cyber-attacks and this objective is lost in the midst of a cloud of confusing claims and statements about a SIEM. Although, a SIEM is central to SOC operations, a mechanical approach in its adoption has failed to provide any real value.

Join Shashwath Hegde, Solution Architect, for this webinar, as he discusses a shift in mindset in thinking beyond a SIEM and adopting a platform approach and cite practical examples from the field that helps stop the bad guys.

Did you know that attackers are using Office’s eDiscovery features to search for sensitive data? FireEye has rules that look specifically for eDiscovery use and exports from eDiscovery, which are generally rare in an uncompromised organization.

Listen to Martin Holste, FireEye’s CTOas he discusses the security for Office365:
• Visibility into Azure event sources:
o Azure audit
o Azure AD
o MS Exchange
o Office365
• Leverage visibility into cloud events to identify credential theft using anomaly detection
• Using rules to spot risky configuration and suspicious events
• OneDrive advanced file security

這些數字令人印象深刻。每日有超過20億個商業用戶發送2810億封電子郵件。而所有網路攻擊中有91％是以電郵作序幕，當中只需要1個人對您的組織有惡意企圖就會影響到整家公司。隨著入侵者使用層出不窮的方法，各組織很難再獨善其身。

在此網路研討會中，專家將會討論：　
- 針對電子郵件安全的網路環境的狀態
- 多向量攻擊如何隨著嶄新策略，技術，程序而進化，以及隨著變化需要注意的內容
- 為什麼FireEye能更有效地捕捉不斷演變的攻擊以及對您的益處

Front and Center with Colin Carmichael and Jason Martin on the Cyber Security Skills Shortage

FireEye Chat, our quarterly talk show, brings guest experts front and center to cover today’s most important cyber security topics.
In this episode, we address the growing cyber security skills gap, which is expected to reach 3.5 million by 2021.

The rise of technology, combined with more complex cyber security products and cyber threats, have gradually increased the demand for experienced, trained experts to fill a growing number of critical security roles in industry and government worldwide.

Join us as our FireEye Chat panel discusses:

• An overview of the cyber skills gap
• Current proposed solutions
• A breakdown of how FireEye thinks about the challenge, as both a technology company and a security provider

FireEye relentlessly protects its customers. But who protects FireEye? Join us for an overview of how FireEye uses its own products and services to protect itself from the same threats faced by customers.

In this webinar, Matt Shelton, FireEye Director of Technology Risk and Threat Intelligence, will reveal how FireEye:

•Uses threat intelligence to proactively protect the organization
•Detects threats using FireEye Network Security products
•Responds to incidents with FireEye Endpoint Security
•Leverages Helix as its security operations platform
•Hunts for known and unknown threats within its environment.

Through 2022, at least 95% of cloud security failures are predicted to be the customer’s fault (Gartner). But change how you think about cloud security, and you can be a success story.

Join our webinar, which helps debunk several common myths that jeopardize your fast, secure, migration to the cloud:

• The cloud is unsafe
• My organization doesn’t use the cloud
• My cloud provider will keep me secure
• The cloud is just someone else’s computer
• Advanced adversaries aren’t attacking the cloud

You’ll also learn how to identify a trusted advisor for cloud migration so you can confidently take advantage of cloud advancements.


Presented by: Martin Holste, Cloud CTO at FireEye

A Breach Investigation Scenario Leveraging FireEye Endpoint Security

FireEye spends thousands of hours annually investigating the world’s most impactful security breaches - you don’t have to stand alone when this happens to you. In this webinar, we will use a real-life scenario to dive deeper into how breaches are discovered and importantly, what security lessons can be learned.

Join FireEye’s Vinoo Thomas as we take a closer look at the discovery of credential harvesting and multiple compromised clients from a single compromised endpoint. Learn how investigation can be used to find and contain the impact of a breach in nearly any environment.

Rapidly evolving threats and infiltration techniques have rendered traditional cyber defense strategies insufficient and ineffective. The emerging threat vectors and speed of change amplified by the digital transformation cannot be addressed by traditional means. Globally, laws are also changing to keep pace as cybercrime evolves, knowing no boundaries. Therefore, organizations must be nimble and agile to keep pace with policy changes, especially when expanding across different jurisdictions

Join us as we discuss three strategic imperatives to strengthen cyber resilience:
• Understand (know your threats) – Identify organization- and industry-specific cyber threats and regulations calls for robust strategies that include cross-disciplinary considerations.
• Measure (know yourself) – Quantify the potential financial impact of cyber exposures to compare against the level of risk appetite acceptable to the board. This will determine the amount of investment necessary to mitigate and transfer any residual risk.
• Manage (know what you can do) – Proactively manage cyber risks by having clear action plans based on your capabilities and capacities to protect against cyber criminals.

While cyber-attacks are inevitable, proper preparation is the essential element that sets resilient organizations apart from the rest in managing risk, minimizing damage, and recovering quickly from any incidents.

The shortage of cybersecurity workers is a growing concern for the teams who are directly responsible for protecting the organization against cyber threats. It’s estimated that by 2021, 3.5 million cyber security positions will go unfilled.

Join Stanley Parret, Principal Consultant for FireEye Managed Defense, for a look at the unforeseen challenges and consequences of the growing cyber skills gap, especially around protecting against advanced threats. In this webinar, we’ll discuss:

-The impact of staffing shortages on security practitioners
-How they’re being required to protect more with less
-The options available to security teams who need to extend their capacity

Register now for the webinar

Managing security operations is a challenge, and the technologies most organizations are using don’t provide the visibility, detection efficacy, or context they need. As their risk profile expands, organizations rely on hiring more analysts and purchasing more tools, often depending on manual processes to find and mitigate threats. The high volume of alert noise strains security teams’ resources and increases the probability they will miss an alert that matters. Organizations need a single solution that centralizes their security management, provides visibility, and allows them to quickly respond to threats with automation.

In this webinar:
- Understand the benefits of technology consolidation
- Learn about what a single platform can do for your people and processes
- Discover the untapped potential of your security investments

The numbers make stark reading. 281 billion emails sent daily to over 2 billion business users. 91% of all cyber-attacks start with an email and it only takes 1 with malicious intent to impact your organisation. With evolving methods used by the adversary, it’s becoming increasingly difficult not to get burned.

Join Gareth Fraser-King, Director, Product Marketing EMEA, to learn:
- The state of the cyber landscape, specific to email security.
- How the attack vector is changing with new tactics, techniques, procedures and what you need to look out for.
- Why is FireEye better at catching evolving attacks and how this can benefit you.

Managed Detection and Response (MDR) services should spot prevention failures and respond quickly. Good MDR services spot Red Teams and Pen Testers who are tasked with defeating preventative controls. A great MDR service knows when real, malicious threat actors are hiding their footprints amongst Red Team activity. In this war story, we discuss how Managed Defense, FireEye's MDR service, deals with such situations.

Using Risk Management to Optimize Cybersecurity Costs: Best Practices for the C-Suite

Cyber risk management is increasingly becoming a strategic priority for executive leaders worldwide, though many organizations find it challenging to accurately anticipate, prioritize, and forecast risk mitigation costs.

C-level executives can meet these challenges by engaging their boards and their security teams to ensure they have the right data to scope risk-based focus areas. This allows the organization to plan effectively while keeping necessary security investments top of mind.

Join this webinar with Matt Keane, FireEye Mandiant Senior Director of Risk Management Services, as he explains how to:

• Identify the top risks to your organization based on threat intelligence—and communicate these trends to your board of directors in a way they’ll hear
• Ensure that the board’s security investment decisions support your organization’s appetite for risk
• Establish a framework that ensures the alignment of strategic priorities with security spending
• Track the right risk performance metrics to monitor changes in your unique risk profile, so that you can shift priorities and spending when needed
• Apply these lessons to a sample business scenario.

Register for this webinar to learn how executives like yourself can effectively implement these cyber risk management practices today.

Like most cyber criminals, advanced persistent threat (APT) groups try to steal data, disrupt operations, and destroy infrastructure. But unlike other attackers, APT attackers pursue their objectives over months or even years, adapting to defenses and frequently retargeting the same victim.

Join this webinar to hear David Grout, FireEye EMEA Chief Technology Officer explain how effective cyber threat intelligence (CTI) helps you understand APT groups’ intents and tactics so you can stay ahead of attacks, instead of just reacting to them. He’ll also provide:

•A high-level overview of the nation-state interests driving APT activity
•Insight into the most recent APT attacks investigated by FireEye
•A deep dive into the workings of APT40, a Chinese cyber espionage group that typically targets countries and organizations strategically important to the country’s “Belt and Road Initiative.”