Hi [[ session.user.profile.firstName ]]

APT38: Un-usual Suspects

APT38 is a newly identified cyber-crime organization that has attempted to steal over $1.1 billion by attacking more than 16 financial organizations in 13 different countries – many of them located in the Asia Pacific region. This North Korean regime-backed group is careful in its planning and often lives in a compromised victim environment for months before initiating their fraudulent banking transactions.

Please join the FireEye experts for a detailed discussion on the tactics, techniques and procedures used by APT38 and what you can do to defend your organization.
Recorded Nov 15 2018 42 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Presentation preview: APT38: Un-usual Suspects

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Malaysia Cyber Security & Strategy Forum: Dark web Nov 17 2021 6:00 am UTC 46 mins
    Yihao Lim, Principal Intelligence Advisor, FireEye Mandiant
    Malaysia Cyber Security & Strategy Forum: Dark web Track by Yihao Lim, Principal Intelligence Advisor – Mandiant, amongst the other panelists

    Dark Web Observations and Trends in 2021

    In 2021, our observation of the current dark web ecosystem amongst cyber criminals hosts a wide variety of goods and services. Historically we observed actors to be concentrated in forums, these days dark web communications and transactions are observed to be occurring in different mediums such as instant messenger platforms and various closed communities. These factors are promoting the rise of professional criminal gangs, amongst a host of illicit things happening in the dark web. Join us in this session to learn what it means for enterprise security and how can you protect your environment against these threats.
  • Malaysia Cyber Security & Strategy Forum: Ransomware Nov 10 2021 6:00 am UTC 51 mins
    Steve Ledzian, APAC VP and CTO, FireEye Mandiant
    Malaysia Cyber Security & Strategy Forum: Ransomware Track by Steve Ledzian, APAC VP and CTO, amongst the other panelists

    Topic: Ransomware & Multifaceted Extortion - A Call To Action

    Ransomware has evolved into Multifaceted Extortion and with it all the rules of the game have changed. Extortion demands as well as the alternative business consequences are more impactful than they've ever been. It doesn't have to be this way. There are low cost, highly effective premediation tasks that organizations can take to drastically increases their chances of surviving a multifaceted extortion incident. This is likely the #1 cyber security problem facing organizations across all verticals and geographies.
  • ASEAN Cyber Security Forum Industry Keynote & Panel Nov 3 2021 6:00 am UTC 64 mins
    Ron Bushar, SVP Government Solutions, FireEye Mandiant
    ASEAN Cyber Security Forum Industry Keynote & Panel Discussion by Ron Bushar, SVP – Government Solutions, amongst the other panelists

    Conflicts between nations are no longer confined to the ground, sea and air. Cyberspace has now become a new battleground. The misuse of ICTs to exploit the cyberspace to achieve certain agenda by the nations are continuing to grow. This session will highlight the role of tech companies in addressing the risks including the nation states attacks.
  • FireEye XDR: Bringing New Meaning to our Affinity Partners Recorded: Oct 21 2021 61 mins
    Vincent Wong, Heads of Channels - APAC | Shrikant Shitole, Head of Sales - APAC | Anthony Ng, VP of SE
    To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform.
    Let us share with you our latest XDR platform and priorities and how we make existing security solutions better with greater visibility and detection from FireEye XDR – a unified platform to improve your security posture against the most sophisticated threats. Also, join us in recognizing our 2021 APAC Partners who have contributed significantly to the growth of FireEye's APAC business.
  • FireEye XDR을 구성하기 위한 EDR 핵심 기능 활용법 Recorded: Oct 20 2021 17 mins
    Joohyung Lee
    XDR을 잘 활용하기 위한 방법과 EDR의 핵심적인 역할을 알려드립니다.
  • FireEye가 말하는 XDR과 효율적 운영을 위한 구성 방안 Recorded: Oct 20 2021 34 mins
    Tony Kim
    XDR 개요를 포함한, FireEye XDR의 아키텍쳐 및 각 모듈에 대한 기능 소개와 실제 구축 사례에 대해 알려드립니다.
  • [Cyber Headline Briefing] Vermilion Strike & UNC2447 Recorded: Oct 19 2021 28 mins
    Steve Ledzian | VP, CTO - APAC
    In this episode of our Cyber Headline Briefing, Cobalt Strike’s Beacon come to Linux and UNC2447 is a threat cluster focused on multifaceted extortion.

    Are your security controls effective against them? Find out the answer with Mandiant Security Validation.
  • Security Validation: The C-Suite Roundtable. Recorded: Sep 28 2021 64 mins
    Mandiant Consulting Team: Vivek Chudgar – VP, APAC | Steven D’sa – MD, SEA | Scott Deacon - MD, ANZ
    Part 1 [On demand]: https://www.brighttalk.com/webcast/10469/505817
    Part 2 [On demand]: https://www.brighttalk.com/webcast/10469/505818
    How to prove the return on security investments.

    Companies today need a strong security posture and must be able to demonstrate its impact on the organization’s financial stability. CFOs and business leaders are looking to CIOs and CISOs to provide customers and key stakeholders with the confidence they need in the organization’s ability to reduce risk, improve its overall security posture and protect its assets.

    Join our live session where we will be discussing business outcomes that customers are seeing from this strategy.
  • Mandiant Automated Defense - Investigation power at Machine speed Recorded: Sep 28 2021 53 mins
    Igors Konovalovs, Director Mandiant Solution Specialist - APJ, Tim Blumentals, Mandiant Solution Specialist - ANZ
    Join Mandiant for an overview of Mandiant Automated Defence, and learn how you can respond to the alerts that matter.
  • FireEye XDR Applied - Solving What Keeps You Awake At Night Recorded: Sep 23 2021 60 mins
    Rajesh Seshan, Director of SE - India
    [FireEye XDR in Action - Demo Session] To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform. FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most.
    Join our experts to have a sneak preview on how FireEye XDR platform can improve your security posture with different use cases.
  • Security Validation in Action Recorded: Sep 21 2021 62 mins
    Vivek Chudgar - VP, Mandiant Consulting, APAC | Jim Meyer – Technical Manager, Mandiant Consulting, ANZ
    Part 1 [On-demand]: https://www.brighttalk.com/webcast/10469/505817
    Part 2 on 28 Sep: https://www.brighttalk.com/webcast/10469/505819
    Real-Life Use Cases from Non-Technical to Technical.

    By operationalizing Mandiant’s award-winning threat Intelligence and security validation platform, organizations gain the evidence they need to prove whether their existing investments are protecting their environments. In this session, Mandiant’s APAC subject matter expert Jim Meyer will reveal how intelligence-led security validation is delivering positive business outcomes and how our customers are using this strategy to secure and develop their security programs.
  • [Cyber Headline Briefing] ProxyToken & HiveNightmare Recorded: Sep 17 2021 37 mins
    Steve Ledzian - VP, CTO, APAC | Yihao Lim - Principal Intelligence Advisor, Mandiant Threat Intelligence, APAC
    Ransomware attacks are escalating at an alarming rate and more organizations are getting victimized faster than they can react.

    In this week's installment of our Cyber Headline Briefing, we will cover ProxyToken & HiveNightmare - the latest in vulnerabilities making the headlines.

    We’ll look at how Security Validation can provide a level of risk assurance for these latest threats and how organizations can assess their exposure.
  • FireEye XDR: Bringing New Meaning to Extended Detection and Response Recorded: Sep 16 2021 59 mins
    Anthony Ng, VP of SE | Vincent Wong, Senior Director, Channels | Shrikant Shitole, VP & Country Head, India & SAARC
    For many decades now, emerging threats have put organizations at risk, security teams needed to find new ways to detect and respond to threats. While security tools such as SIEM, SOAR and EDR technologies all have their benefits, organizations must look beyond the limits of these offerings to extended detection and response (XDR).
    FireEye XDR protects organizations though unmatched detection, protection and response technologies delivered through an extensible cloud-based platform. By simplifying and correlating incident data across the entire security stack, FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most.
    Register for our FireEye XDR Launch on Sept 10 and our experts walk you through:
    - how XDR security came about
    - why FireEye’s take on XDR is focused on security outcomes,
    - how FireEye XDR addresses evolving cyber threats

    Follow-up Sesion: FireEye XDR in Action - Live Demo Session | Sept 23
  • Security Validation: Remove Assumptions, Prove Security Every Day Recorded: Sep 14 2021 57 mins
    Vivek Chudgar - VP, Mandiant Consulting, APAC | Amit Pradhan - Director, Mandiant Consulting, APAC
    Part 2 on 21 Sep: https://www.brighttalk.com/webcast/10469/505818
    Part 3 on 28 Sep: https://www.brighttalk.com/webcast/10469/505819
    Why security validation is critical in maintaining or improving your brand reputation and market position.

    The need to validate security is clear: many organizations are not as secure as they think they are, attacks are increasing in sophistication, budgets are under scrutiny and adversaries are rapidly morphing their tactics. To outmaneuver highly motivated cyber criminals, organizations need to safely test their security programs with real attacks that they are likely to be facing daily to expose and remediate gaps in their defenses.

    Join this panel to learn more about how Intelligence-driven Security Validation programs can effectively test and adapt to an ever-changing threat landscape.
  • [Cyber Headline Briefing] - LOCKFILE, ProxyShell, & PetitPotam Recorded: Sep 3 2021 45 mins
    Steve Ledzian - VP, CTO, APAC | Yihao Lim - Principal Intelligence Advisor, Mandiant Threat Intelligence, APAC
    Last week we covered the LOCKBIT 2.0 Ransomware threat. Cyber security moves fast and this week it’s LOCKFILE ransomware that’s making the headlines.

    LOCKFILE is being combined with ProxyShell and PetitPotam which have both made headlines of their own in recent weeks. We’ll look at how organizations can validate their security control effectiveness against this triple threat.
  • [Cyber Headline Briefing] - LOCKBIT How well does your security stack hold up? Recorded: Aug 25 2021 44 mins
    Steve Ledzian | VP, CTO - APAC | FireEye Mandiant
    MAZE, EGREGOR, DARKSIDE, SODINOKIBI, and now LOCKBIT; these are just a few of the more notorious ransomware families that have become front of mind for cyber security professionals.

    It seems like every few weeks security teams have to run a fire drill to see if they are protected from the ransomware flavour of the month making headlines.

    LOCKBIT is the latest to be in the spotlight. We’ll take a look at the LOCKBIT ransomware but more importantly, explore ways to assess if your security investments are up to the task of stopping it.
  • Mandiant Advantage - What's new? Recorded: Aug 18 2021 54 mins
    Drew Carroll, Intellegence Enablement Manager, Mandiant, and Tim Blumentals, Solution Specialist, FireEye
    Join us for an update into new content, as well as an overview of the material available addressing Threat Actor FIN11 as well as Malware Family SUNSHUTTLE.
  • [FireEye Rapid Response Briefing] REvil, Sodinokibi, and Side-Loading Recorded: Jul 16 2021 43 mins
    Steve Ledzian | VP, CTO - APAC
    Many organizations were simultaneously impacted by REvil / SODINOKIBI Ransomware campaign at the start of July 2021 – this is just one of many cyber-attacks making the headlines in recent months.

    When defenders read these headlines, they often wonder if the latest attack in the news could be successful in their own organizations.

    In this webinar, we’ll help organizations understand how to answer that question so that they can be prepared as possible if they become the next target.
  • Enter the Arena, Live the Experience and Discover How You Will React Recorded: Jul 8 2021 68 mins
    Steve Ledzian, Vice President & CTO, FireEye APAC | Steven D’sa – Managing Director, Mandiant Consulting, APAC
    Join us for the last session of our four-part series on Learnings from the Frontlines: Ransomware Series.
    Missed the previous sessions? Watch the on-demand recordings here:

    Part 1: https://www.brighttalk.com/webcast/10469/492130
    Part 2: https://www.brighttalk.com/webcast/10469/492132
    Part 3: https://www.brighttalk.com/webcast/10469/492144


    Combining our experience in the field with our in-depth knowledge of attackers and their techniques, we have built a unique, immersive and interactive session which challenges you to make the necessary key decisions during a cyber attack.

    During our Cyber Attack Simulation, attendees will be guided through the stages of a ransomware attack, whilst also receiving guidance around the decisions you may need to make. Will you pay, delay or ignore? Are you ready to take the risks and look at the possible outcomes? If yes, you cannot miss this session!
  • Learning from the Worst: Emulating Ransomware Groups with Red Team Operations Recorded: Jul 1 2021 56 mins
    Steven D’sa – Managing Director | Rishi Narang – Manager | James Anderson – Senior Consultant | Mandiant Consulting, APAC
    Join us for Part 3 of our four-part series on Learnings from the Frontlines: Ransomware Series.
    Register for the rest of the sessions here:

    Part 1: https://www.brighttalk.com/webcast/10469/492130 (On-demand)
    Part 2: https://www.brighttalk.com/webcast/10469/492132 (On-demand)
    Part 4: https://www.brighttalk.com/webcast/10469/492145 (8 Jul)


    One of the hardest questions to answer for any organization is “Could we actually detect a ransomware attack before it’s too late?” With attacker sophistication increasing all the time, there is no guarantee that the policies and plans of yesteryear will still work, nor that the products and automated detections will get there in time.

    The only way to know for sure is to learn from the worst and carry out a sophisticated cyber-attack wearing the mask of a ransomware group attacker. Using the unmatched Threat Intel, the FireEye Mandiant Red Team have been able to conduct such engagements using the tools and techniques of the world’s leading ransomware threat actors and find those spaces between the defensive dream and risk-filled reality that could cost you dearly.

    In this session, our experts reveal some of the results from these engagements which can be adopted into your ongoing security program.
Built to Innovate.
FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, and nation-state grade threat intelligence.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: APT38: Un-usual Suspects
  • Live at: Nov 15 2018 1:00 am
  • Presented by: FireEye
  • From:
Your email has been sent.
or close