Name: Insights into the ProxyLogon Exchange Vulnerabilities & related attack activity
Start: 2021-03-23T05:00:00Z
End: 2021-03-23T05:01:03.000Z
Location: BrightTALK
Rating: 4.9

Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through data science and automation to empower over 40,000 business and government customers. More at www.trellix.com.

FireEye and McAfee Enterprise recently joined to protect customers by delivering market-leading cybersecurity. 

Now, we’re proud to announce our new name: Trellix. 

With the new name comes a new mission to build resilient and confident organizations through living security—security technology that learns and adapts to protect your operations and enable your business to thrive, we would like to take this opportunity to share our latest updates on the following: 
- What is Trellix? How does Trellix bring your security to life? 
- Share XDR offerings and best practices  
We look forward to hosting you and your colleagues. 
*please join either session on Mar 3 or 10, as the same content is presented in these 2 sessions.

Customer Briefing - Trellix: Bring your security to life | Session 2

FireEye and McAfee Enterprise recently joined to protect customers by delivering market-leading cybersecurity with our new name – Trellix, the mission of Trellix is to build resilient and confident organizations through living security—security technology that learns and adapts to protect your operations and enable your business to thrive.

We’re committed to ensuring that our partners remain an integral part of our plans and to win together by embracing possibilities. Join us at Trellix Cyber Tech Tales – our monthly partner enablement session, you can learn about our messaging, differentiation, pricing and how we can grow and win together:- 

• Target: Sales/ Product Manager/ Sales Engineer 
• Date: Feb 11, 2022 (Friday)
• Time: 12:00pm, SGT/ HKT (3:00pm – SYD, 9:30am – IST)
• Duration: 60 mins 
• Topic: Helix
Be a part of Trellix community to innovate, create and share knowledge on today’s threats and tomorrow’s risks.

Cyber Tech Tales - Partner Enablement Session | Feb, 2022

Watch to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Dr. Charles Lim, Cyber Security Researcher, and Lecturer, of Swiss German University.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On-The-Go: Ep.3 Executive from Education Sector

Log4Shell is a critical remote code execution vulnerability in the widely used Apache Log4j Java-based logging tool. The Apache Log4j vulnerability has likely impacted hundreds of millions of devices and can be exploited by a wide range of threat actors.
In this session, we address the following:
• Log4J update for Executive
•	What happen?
•	How does this vulnerability impact my organization?
•	What can—and should—I do right now?
Join us to learn more on this vulnerability. Our goal in this session is for you to walk away with concrete next steps to enhance your detection and response.
*the session conducts in Cantonese

Lesson Learnt For Log4j – the Latest Zero-Day Exploit

FireEye and McAfee Enterprise come together to simplifying threat detection, investigation, and accelerated response to the threats that matter.
October 8th marks a significant and exciting step forward for the combined FireEye and McAfee Enterprise as we create a pure play, cybersecurity market leader.
The combined heritage of FireEye and McAfee Enterprise brings a unique perspective to the challenges we will solve for customers and how we will drive innovations to stay ahead of the adversary. FireEye’s detection with McAfee Enterprise’s prevention will rise to the challenge of today’s complex cybersecurity environments.
Join us and hear from FireEye Executive Team of APAC on the followings:- 
• FireEye Divestiture Updates
• Our Service Pledge 
• Frequently Asked Questions
• Key Takeaway 
Together, we will deliver a new model that creates solutions that work seamlessly, in a continuous fashion and to secure our customers across the full attack continuum. We are already seen as market leaders, now our story keeps getting better.
The same session is also scheduled on Jan 11 & Jan 25, 2022.

Shaping the Future of CyberSecurity | Dec 21

Watch to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Mr. Ho Chee Keong, SVP, Technology Solutions of MSIG Asia.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On-The-Go: Ep.2 CISO from Financial Services Sector

The cloud brings the promise of accelerating business, increasing access to data and enabling remote capabilities, but it comes with unique risks. We’ve responded to many cloud breaches and protect customers in very unique cloud configurations. We’ve seen that small mistakes can have a critical impact, and we’ve learned what it takes to build a secure cloud. 

There is a right and wrong way to defend cloud infrastructure, containers and software-as-a-service, and with vulnerabilities like Log4j coming to light, it's more important than ever.

Join the discussion to learn the five crucial differences between a secure, defensible and resilient cloud environment and one that my (already) be compromised. From ransomware and supply chain to zero days and zero trust, we will discuss how to secure the cloud you need for your specific environment.

Presented by Martin Holste, Cloud CTO, FireEye

How to Avoid The Top 5 Cloud Security Mistakes and Defend Against Log4j

Listen to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Dr. Aswami Ariffin, SVP Cyber Security Responsive Services Division of CyberSecurity Malaysia.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On The Go: Ep.1 CISO from Government & Public Sector

Malaysia Cyber Security & Strategy Forum:  Dark web Track by Yihao Lim, Principal Intelligence Advisor – Mandiant, amongst the other panelists

Dark Web Observations and Trends in 2021

In 2021,  our observation of the current dark web ecosystem amongst cyber criminals hosts a wide variety of goods and services. Historically we observed actors to be concentrated in forums, these days dark web communications and transactions are observed to be occurring in different mediums such as instant messenger platforms and various closed communities. These factors are promoting the rise of professional criminal gangs, amongst a host of illicit things happening in the dark web. Join us in this session to learn what it means for enterprise security and how can you protect your environment against these threats.

Malaysia Cyber Security & Strategy Forum:  Dark web

Malaysia Cyber Security & Strategy Forum: Ransomware Track by Steve Ledzian, APAC VP and CTO, amongst the other panelists

Topic: Ransomware & Multifaceted Extortion - A Call To Action

Ransomware has evolved into Multifaceted Extortion and with it all the rules of the game have changed.  Extortion demands as well as the alternative  business consequences are more impactful than they've ever been.  It doesn't have to be this way.  There are low cost, highly effective premediation tasks that organizations can take to drastically increases their chances of surviving a multifaceted extortion incident.  This is likely the #1 cyber security problem facing organizations across all verticals and geographies.

Malaysia Cyber Security & Strategy Forum: Ransomware

ASEAN Cyber Security Forum Industry Keynote & Panel Discussion by Ron Bushar, SVP – Government Solutions, amongst the other panelists

Conflicts between nations are no longer confined to the ground, sea and air. Cyberspace has now become a new battleground. The misuse of ICTs to exploit the cyberspace to achieve certain agenda by the nations are continuing to grow. This session will highlight the role of tech companies in addressing the risks including the nation states attacks.

ASEAN Cyber Security Forum Industry Keynote & Panel

To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform.
Let us share with you our latest XDR platform and priorities and how we make existing security solutions better with greater visibility and detection from FireEye XDR – a unified platform to improve your security posture against the most sophisticated threats. Also, join us in recognizing our 2021 APAC Partners who have contributed significantly to the growth of FireEye's APAC business.

FireEye XDR: Bringing New Meaning to our Affinity Partners

XDR을 잘 활용하기 위한 방법과 EDR의 핵심적인 역할을 알려드립니다.

FireEye XDR을 구성하기 위한 EDR 핵심 기능 활용법

XDR 개요를 포함한, FireEye XDR의 아키텍쳐 및 각 모듈에 대한 기능 소개와 실제 구축 사례에 대해 알려드립니다.

FireEye가 말하는 XDR과 효율적 운영을 위한 구성 방안

[FireEye XDR in Action - Demo Session] To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform. FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most.
Join our experts to have a sneak preview on how FireEye XDR platform can improve your security posture with different use cases.

FireEye XDR Applied - Solving What Keeps You Awake At Night

For many decades now, emerging threats have put organizations at risk, security teams needed to find new ways to detect and respond to threats. While security tools such as SIEM, SOAR and EDR technologies all have their benefits, organizations must look beyond the limits of these offerings to extended detection and response (XDR). 
FireEye XDR protects organizations though unmatched detection, protection and response technologies delivered through an extensible cloud-based platform. By simplifying and correlating incident data across the entire security stack, FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most. 
Register for our FireEye XDR Launch on Sept 10 and our experts walk you through: 
- how XDR security came about
- why FireEye’s take on XDR is focused on security outcomes, 
-	how FireEye XDR addresses evolving cyber threats

Follow-up Sesion: FireEye XDR in Action - Live Demo Session | Sept 23
https://www.brighttalk.com/webcast/10469/507583

FireEye XDR: Bringing New Meaning to Extended Detection and Response

2021년 3월 마이크로소프트는 Exchange Server의 제로 데이 취약점을 노린 HAFNIUM 캠페인이 진행 중이라 밝혔습니다. 마이크로소프트의 발표에 따르면 이번 위협은 취약점을 이용해 초기 시스템 접근 권환을 획득한 후 웹 쉘을 배포하고, 이를 발판 삼아 자격 증명 덤핑(Credential Dumping) 기술을 사용해 엔드포인트 상에서 다양한 조직원의 자격 증명을 수집하는 것으로 추정됩니다. 어떠한 일이 있었고 파이어아이에서 어떻게 대응 했는지에 대한 설명을 들어보세요.

마이크로소프트 익스체인지 제로데이 취약점 - MS Exchange Proxy Logon

親愛的資安專家，
近日，大眾了解到影響微軟Exchange服務器的多個漏洞。從那時起，許多人開始意識到這些攻擊可能會影響數以萬計的企業--其中許多人可能不知道從哪裡開始。無論您的企業規模、行業或地區如何，您都可以採取一些步驟來識別環境中被利用的 Exchange 漏洞。
在這網路研討會，我們將討論以下問題。
-	這次攻擊發生了什麼事？
-	到目前為止，我們對威脅行為者有什麼了解？
-	此攻擊對我的企業有何影響？
-	我現在可以而且應該做什麼？
加入我們討論這些針對 Microsoft Exchange 服務器的攻擊。我們在本次會議中的目標是讓您逐步完成評估環境的具體後續步驟。

對微軟ProxyLogon Exchange漏洞的見解和相關攻擊活動

Speakers:
•	Steve Ledzian, CTO & VP, APAC - FireEye
•	Yihao Lim, Principal Intelligence Enablement Consultant, APAC - Mandiant
•	Vinoo Thomas, Senior Product Line Manager - Endpoint, APAC - FireEye
•	Ryan Delany, Senior Technical Marketing Manager - SaaS Endpoint - FireEye

Regardless of your organization’s size, industry, or locale, there are steps that you can take to identify Exchange exploitation in your environment.

In this session, we address the following questions:
•	What’s happening with this attack?
•	What do we know about the threat actors so far?
•	How does this attack impact my organization?
•	What can—and should—I do right now?

Join us to discuss these attacks on Microsoft Exchange servers. Our goal in this session is for you to walk away with concrete next steps to assess your environment.

Insights into the ProxyLogon Exchange Vulnerabilities  & related attack activity

FireEye

Mandiant

Vulnerabilities

Cyber Attacks

Cyber Crime

Ransomware

Vulnerability Intelligence

Vulnerability Management

Vulnerability Scanning

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Insights into the ProxyLogon Exchange Vulnerabilities & related attack activity

Presented by

About this talk

Trellix - APAC