Name: 對微軟ProxyLogon Exchange漏洞的見解和相關攻擊活動
Start: 2021-04-09T03:00:00Z
End: 2021-04-09T03:01:00.000Z
Location: BrightTALK
Rating: 4.8

Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through data science and automation to empower over 40,000 business and government customers. More at www.trellix.com.

FireEye and McAfee Enterprise recently joined to protect customers by delivering market-leading cybersecurity. 

Now, we’re proud to announce our new name: Trellix. 

With the new name comes a new mission to build resilient and confident organizations through living security—security technology that learns and adapts to protect your operations and enable your business to thrive, we would like to take this opportunity to share our latest updates on the following: 
- What is Trellix? How does Trellix bring your security to life? 
- Share XDR offerings and best practices  
We look forward to hosting you and your colleagues. 
*please join either session on Mar 3 or 10, as the same content is presented in these 2 sessions.

Customer Briefing - Trellix: Bring your security to life | Session 2

FireEye and McAfee Enterprise recently joined to protect customers by delivering market-leading cybersecurity with our new name – Trellix, the mission of Trellix is to build resilient and confident organizations through living security—security technology that learns and adapts to protect your operations and enable your business to thrive.

We’re committed to ensuring that our partners remain an integral part of our plans and to win together by embracing possibilities. Join us at Trellix Cyber Tech Tales – our monthly partner enablement session, you can learn about our messaging, differentiation, pricing and how we can grow and win together:- 

• Target: Sales/ Product Manager/ Sales Engineer 
• Date: Feb 11, 2022 (Friday)
• Time: 12:00pm, SGT/ HKT (3:00pm – SYD, 9:30am – IST)
• Duration: 60 mins 
• Topic: Helix
Be a part of Trellix community to innovate, create and share knowledge on today’s threats and tomorrow’s risks.

Cyber Tech Tales - Partner Enablement Session | Feb, 2022

Watch to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Dr. Charles Lim, Cyber Security Researcher, and Lecturer, of Swiss German University.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On-The-Go: Ep.3 Executive from Education Sector

Log4Shell is a critical remote code execution vulnerability in the widely used Apache Log4j Java-based logging tool. The Apache Log4j vulnerability has likely impacted hundreds of millions of devices and can be exploited by a wide range of threat actors.
In this session, we address the following:
• Log4J update for Executive
•	What happen?
•	How does this vulnerability impact my organization?
•	What can—and should—I do right now?
Join us to learn more on this vulnerability. Our goal in this session is for you to walk away with concrete next steps to enhance your detection and response.
*the session conducts in Cantonese

Lesson Learnt For Log4j – the Latest Zero-Day Exploit

FireEye and McAfee Enterprise come together to simplifying threat detection, investigation, and accelerated response to the threats that matter.
October 8th marks a significant and exciting step forward for the combined FireEye and McAfee Enterprise as we create a pure play, cybersecurity market leader.
The combined heritage of FireEye and McAfee Enterprise brings a unique perspective to the challenges we will solve for customers and how we will drive innovations to stay ahead of the adversary. FireEye’s detection with McAfee Enterprise’s prevention will rise to the challenge of today’s complex cybersecurity environments.
Join us and hear from FireEye Executive Team of APAC on the followings:- 
• FireEye Divestiture Updates
• Our Service Pledge 
• Frequently Asked Questions
• Key Takeaway 
Together, we will deliver a new model that creates solutions that work seamlessly, in a continuous fashion and to secure our customers across the full attack continuum. We are already seen as market leaders, now our story keeps getting better.
The same session is also scheduled on Jan 11 & Jan 25, 2022.

Shaping the Future of CyberSecurity | Dec 21

Watch to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Mr. Ho Chee Keong, SVP, Technology Solutions of MSIG Asia.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On-The-Go: Ep.2 CISO from Financial Services Sector

The cloud brings the promise of accelerating business, increasing access to data and enabling remote capabilities, but it comes with unique risks. We’ve responded to many cloud breaches and protect customers in very unique cloud configurations. We’ve seen that small mistakes can have a critical impact, and we’ve learned what it takes to build a secure cloud. 

There is a right and wrong way to defend cloud infrastructure, containers and software-as-a-service, and with vulnerabilities like Log4j coming to light, it's more important than ever.

Join the discussion to learn the five crucial differences between a secure, defensible and resilient cloud environment and one that my (already) be compromised. From ransomware and supply chain to zero days and zero trust, we will discuss how to secure the cloud you need for your specific environment.

Presented by Martin Holste, Cloud CTO, FireEye

How to Avoid The Top 5 Cloud Security Mistakes and Defend Against Log4j

Listen to find out from industry practitioners about their perspective on Extended Detection & Response (XDR).

In this episode, we have Dr. Aswami Ariffin, SVP Cyber Security Responsive Services Division of CyberSecurity Malaysia.

******
Note: Trellix is our new name, from the previously announced merger of FireEye and McAfee Enterprise. Read the press release https://www.fireeye.com/company/press-releases/2022/symphony-technology-group-announces-launch-of-xdr-provider-trellix.html

Security On The Go: Ep.1 CISO from Government & Public Sector

Malaysia Cyber Security & Strategy Forum:  Dark web Track by Yihao Lim, Principal Intelligence Advisor – Mandiant, amongst the other panelists

Dark Web Observations and Trends in 2021

In 2021,  our observation of the current dark web ecosystem amongst cyber criminals hosts a wide variety of goods and services. Historically we observed actors to be concentrated in forums, these days dark web communications and transactions are observed to be occurring in different mediums such as instant messenger platforms and various closed communities. These factors are promoting the rise of professional criminal gangs, amongst a host of illicit things happening in the dark web. Join us in this session to learn what it means for enterprise security and how can you protect your environment against these threats.

Malaysia Cyber Security & Strategy Forum:  Dark web

Malaysia Cyber Security & Strategy Forum: Ransomware Track by Steve Ledzian, APAC VP and CTO, amongst the other panelists

Topic: Ransomware & Multifaceted Extortion - A Call To Action

Ransomware has evolved into Multifaceted Extortion and with it all the rules of the game have changed.  Extortion demands as well as the alternative  business consequences are more impactful than they've ever been.  It doesn't have to be this way.  There are low cost, highly effective premediation tasks that organizations can take to drastically increases their chances of surviving a multifaceted extortion incident.  This is likely the #1 cyber security problem facing organizations across all verticals and geographies.

Malaysia Cyber Security & Strategy Forum: Ransomware

ASEAN Cyber Security Forum Industry Keynote & Panel Discussion by Ron Bushar, SVP – Government Solutions, amongst the other panelists

Conflicts between nations are no longer confined to the ground, sea and air. Cyberspace has now become a new battleground. The misuse of ICTs to exploit the cyberspace to achieve certain agenda by the nations are continuing to grow. This session will highlight the role of tech companies in addressing the risks including the nation states attacks.

ASEAN Cyber Security Forum Industry Keynote & Panel

To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform.
Let us share with you our latest XDR platform and priorities and how we make existing security solutions better with greater visibility and detection from FireEye XDR – a unified platform to improve your security posture against the most sophisticated threats. Also, join us in recognizing our 2021 APAC Partners who have contributed significantly to the growth of FireEye's APAC business.

FireEye XDR: Bringing New Meaning to our Affinity Partners

XDR을 잘 활용하기 위한 방법과 EDR의 핵심적인 역할을 알려드립니다.

FireEye XDR을 구성하기 위한 EDR 핵심 기능 활용법

XDR 개요를 포함한, FireEye XDR의 아키텍쳐 및 각 모듈에 대한 기능 소개와 실제 구축 사례에 대해 알려드립니다.

FireEye가 말하는 XDR과 효율적 운영을 위한 구성 방안

[FireEye XDR in Action - Demo Session] To combat the ever-increasing number and sophistication of attacks, FireEye delivers unmatched detection, protection and response technology through an extensible and flexible cloud-based XDR platform. FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most.
Join our experts to have a sneak preview on how FireEye XDR platform can improve your security posture with different use cases.

FireEye XDR Applied - Solving What Keeps You Awake At Night

For many decades now, emerging threats have put organizations at risk, security teams needed to find new ways to detect and respond to threats. While security tools such as SIEM, SOAR and EDR technologies all have their benefits, organizations must look beyond the limits of these offerings to extended detection and response (XDR). 
FireEye XDR protects organizations though unmatched detection, protection and response technologies delivered through an extensible cloud-based platform. By simplifying and correlating incident data across the entire security stack, FireEye XDR applies frontline intelligence and analytics to help you find and resolve the threats that matter most. 
Register for our FireEye XDR Launch on Sept 10 and our experts walk you through: 
- how XDR security came about
- why FireEye’s take on XDR is focused on security outcomes, 
-	how FireEye XDR addresses evolving cyber threats

Follow-up Sesion: FireEye XDR in Action - Live Demo Session | Sept 23
https://www.brighttalk.com/webcast/10469/507583

FireEye XDR: Bringing New Meaning to Extended Detection and Response

自2020年8月開始浮出水面以來，DARKSIDE勒索軟體的創始者及其附屬機構已經發起了一場全球犯罪狂潮，影響了超過15個國家和多個行業和組織。
與許多犯罪份子一樣，這些行為者進行多方面的勒索，數據既被盜竊外流並加密，使他們能夠要求支付解鎖費用，不釋放被盜數據，對受害者施加更大壓力。
DARKSIDE勒索軟體以勒索軟體即服務（RaaS）的形式運作，其利潤在其所有者和合作夥伴或附屬機構之間分享，這些機構提供對受害組織的訪問並部署勒索軟體。
這個網路研討會將分享該惡意軟體、相關行為者和相關TTP的資料，並就如何應對圍繞勒索軟體和多方面勒索的更廣泛威脅提出建議。

了解DARKSIDE勒索軟體的行動和防禦建議

2021년 3월 마이크로소프트는 Exchange Server의 제로 데이 취약점을 노린 HAFNIUM 캠페인이 진행 중이라 밝혔습니다. 마이크로소프트의 발표에 따르면 이번 위협은 취약점을 이용해 초기 시스템 접근 권환을 획득한 후 웹 쉘을 배포하고, 이를 발판 삼아 자격 증명 덤핑(Credential Dumping) 기술을 사용해 엔드포인트 상에서 다양한 조직원의 자격 증명을 수집하는 것으로 추정됩니다. 어떠한 일이 있었고 파이어아이에서 어떻게 대응 했는지에 대한 설명을 들어보세요.

마이크로소프트 익스체인지 제로데이 취약점 - MS Exchange Proxy Logon

親愛的資安專家，
近日，大眾了解到影響微軟Exchange服務器的多個漏洞。從那時起，許多人開始意識到這些攻擊可能會影響數以萬計的企業--其中許多人可能不知道從哪裡開始。無論您的企業規模、行業或地區如何，您都可以採取一些步驟來識別環境中被利用的 Exchange 漏洞。
在這網路研討會，我們將討論以下問題。
-	這次攻擊發生了什麼事？
-	到目前為止，我們對威脅行為者有什麼了解？
-	此攻擊對我的企業有何影響？
-	我現在可以而且應該做什麼？
加入我們討論這些針對 Microsoft Exchange 服務器的攻擊。我們在本次會議中的目標是讓您逐步完成評估環境的具體後續步驟。

對微軟ProxyLogon Exchange漏洞的見解和相關攻擊活動

#APT

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

對微軟ProxyLogon Exchange漏洞的見解和相關攻擊活動

Presented by

About this talk

More from this channel