Name: Protecting Your Customers' PII from Magecart
Start: 2020-07-31T13:00:00Z
End: 2020-07-31T13:44:00.000Z
Location: BrightTALK
Rating: 5

Akamai secures and delivers digital experiences for the world’s largest companies. Our intelligent edge platform keeps apps and experiences closer to users — and attacks and threats far away. Top brands globally rely on Akamai so their businesses can be fast, smart, and secure.

Extortion is the criminal business model that is dominating the headlines. Join Akamai and IDC to hear about the most effective ways to stop the “Cyber Triple Extortion” threat from impacting your company. This webinar will cover common attack groups, the techniques they use, and how to stop them based on an integrated security strategy. Our panel includes IDC’s Christopher Rodriguez; Akamai’s Advisory CISO, Steve Winterfeld; and Akamai’s Cloud Security Product Manager, Venkat Praneeth Nangineni.

Defending the Triple Threat

No one is a stranger to the complexity of cyber. And with confusion, comes misconception.

In this special episode of The (Security) Balancing Act, Diana Kelley and cyber experts will sit down, and deep dive into the common cyber myths.

Does compliance equal security? Is data safer on-prem than in the cloud? Will AI take our jobs? What misconceptions drive you crazy? Bring your best myths and join Diana Kelley and guests as we decipher common cyber myths in a bid to clear up the confusion.

Cyber Myth Busting: Blasting Common Misconceptions

When Forrester Consulting contacted hundreds of enterprise cloud strategy leaders for a new study, commissioned by Akamai, the responses showed that multicloud only achieves its potential with a workload-first strategy. The study, The Great Cloud Reset, describes the key issues those tech leaders face in implementing multicloud today and in the future, including:

• 41% struggle to find a cloud services provider that can meet data sovereignty requirements
• 88% said they have six or more applications that need to run in multiple regions
• Two-thirds are prioritizing architecture that supports workloads across the core and edge
• More than two-thirds said placing workloads in the right clouds optimized performance, reliability, and resilience

For more of Forrester’s findings, join our webinar on June 14 at 10 AM ET. Register today to reserve your place.

The Great Cloud Reset

API and App Security is no joke. As the volume of API use increases, so does the likelihood of an attack. APIs are powerful tools for developers but when they are left vulnerable, easy targets for cybercriminals they are essentially passageways to business-critical data, and this year, bad bots are becoming a bigger threat for APIs than ever before.

In this month’s episode of The (Security) Balancing Act, we’ll be deep diving into API risk, and how to navigate this growing threat. Join us as we discuss:

-  Defending against DDoS attacks
-  Why it’s crucial to manage your app & API security in one place
- Why API keys must be protected
- Top API security vulnerabilities
-  Understanding how to manage and mitigate risk in a changing climate
-  Future API Security trends
-  And much more!

Secure Your APIs, Secure Your Business

With nearly 50% of organisations regularly releasing vulnerable apps into production because of time restraints from the growing demand of faster turnaround, security is often not being integrated into the application development lifecycle until it is too late. 

Additionally, the number of vulnerabilities is continuously increasing and exploitation attempts are being seen within 24 hours of disclosure. App and API attacks against organisations are on the rise. 

Join us for a two-part webinar, each episode lasting just a bite-sized 20 minutes, where we will take a closer examination of the key takeaways of our recently released State of the Internet / Security report, Slipping Through the Security Gaps: The Rise of Application and API Attacks Against Organisations.

Some key takeaways include:
• LFI attacks tripled over last year and remain top attack vector 
• App and API attacks surged in manufacturing and healthcare industries due to the major increase in IoT connections 
• SSTI, SSRF, and web shells are emerging attack vectors

Presenters:
Richard Meeus, Director of Security Technology and Strategy, EMEA, Akamai
Eliad Kimhy, Head of Akamai Security Research Core Team, Akamai

Akamai SOTI: The Rise of Application and API Attacks - Part 2

Akamai SOTI - The Rise of Application and API Attacks - Part 1

In our first State of the Internet / Security report of 2023 we will share insights into the latest attack trends based on DNS traffic on corporate and home networks that Akamai monitors and protects in real time. 
 
Join us for the second of a two-part webinar, lasting just a bite-sized 20 minutes, where we will conclude our examination of the DNS traffic for 2022 uncovered in the report.

We will focus on:
- Phishing attack targets, their impact, and top phishing kits
- C2 traffic analysis to ascertain the most prevalent threats and attacker groups today
- A closer look at EMEA trends in enterprise and home network malicious traffic
- How to understand the kill chain of current breaches through the lens of outbound traffic

Speakers:

Richard Meeus
Director of Security Technology and Strategy, EMEA, 
Akamai

Eliad Kimhy
Head of Akamai Security Research CORE Team
Akamai

Akamai SOTI - DNS Traffic Insights Threat Report: Part 2

In our first State of the Internet / Security report of 2023 we will share insights into the latest attack trends based on DNS traffic on corporate and home networks that Akamai monitors and protects in real time. 
 
Join us for the first of a two-part webinar, lasting just a bite-sized 20 minutes, where we will begin to take a closer examination of the DNS traffic for 2022 uncovered in the report. We will cover how we amassed the data analysed and the key findings and insights.

We will focus on:
- Phishing attack targets, their impact, and top phishing kits
- C2 traffic analysis to ascertain the most prevalent threats and attacker groups today
- A closer look at EMEA trends in enterprise and home network malicious traffic
- How to understand the kill chain of current breaches through the lens of outbound traffic

Speakers:

Richard Meeus
Director of Security Technology and Strategy, EMEA, 
Akamai

Eliad Kimhy
Head of Akamai Security Research CORE Team
Akamai

Akamai SOTI - DNS Traffic Insights Threat Report: Part 1

There are two ways of watching media online. Media can either be consumed live or it has already been produced for entertainment, education, or commercially driven reasons. Enabling media to be consumed on the internet, like when we used to experience it on television, can be challenging. 

In this webinar, we will uncover the basic concepts of delivering media over the internet, be it live or via on-demand streaming. Learn how to make your media available to millions of people by leveraging the power of cloud computing on a global scale. 

Join our live webinar to learn about:
• The two ways of experiencing media
• The technology behind live and on-demand streaming 
• How to make your streams available on a global scale

How to Help Video Content Make Its Journey Through the Cloud

Watch this webinar to learn what DevOps professionals seek from their cloud providers, what’s driving them to spread workloads across multiple clouds, and how companies like NSoft approach different cloud providers for their workloads to deliver the best customer experiences.

Panelists:
• Nikola Rakić, Chief Technology Officer - NSoft
• Pavel Despot, Senior Product Marketing Manager - Akamai
• Mike Rothman, Chief Strategy Officer of Techstrong Group & GM of Techstrong Research

Finding the Right Cloud for the Right Workload with NSoft

APIs make up the fabric of the financial services industry - they bridge the customer to the product. 

However, according to recent research by Akamai, as of June 2022, there have been over 9 billion web application and API attacks across the globe. This is three times more than we saw in 2021. Given the value of APIs to the modern organisation, it’s no wonder that they have become a pathway for attackers to infiltrate the network. This talk will cover lessons learned from analysing data across our platform and customers’ best practices. 

Leaders must act now to ensure security is consistent and applied across their entire estate, including web apps and APIs. But what can you do specifically to secure your APIs and how has digital transformation impacted API security? Join us in the third and final episode of Actionable Insights from Akamai as we discuss:

- Best practices for securing your APIs
- How to leverage the cyber kill chain to evaluate your API risks  
- Insights from global Threat Intelligence to enhance your API protection 
- And much more!

Protect Your APIs: Invest in Securing Your Digital Innovation

Digital Transformation (DX) is creating waves of change across all industries, especially in financial services. While the benefits of DX far outweigh the negatives, if not done carefully it can create more risk and complexity across financial environments. Join Akamai to discuss lessons learned from our customers and partners.

The move to cloud, DevOps, APIs, Fintech and open banking are just a few examples of the ways in which the financial services industry is embracing all that digital transformation has to offer. However, with change comes risk. But what are these risks and how does cyber security innovate with the business to protect customers while ensuring a great experience.

In this session we will discuss:

- How to embrace digital transformation while reducing complexity
- Ways in which digital transformation impacts overall risk portfolio
- Approaches to reduce vendor overhead and increase integrated capabilities through single platform

Don’t Let Complexity Disrupt Your Business

It was another demanding year for IT professionals and the cybersecurity teams supporting them. Join Akamai’s Richard Meeus, Director of Security Technology and Strategy and Steve Winterfeld, Advisory CISO as they share what they felt the most impactful and dangerous attack trends were from the past year. They will also cover some of the best practices they are seeing for stopping cyber criminals. 

Join us for a lively discussion of some of the year’s most impactful security events, including how:
- API attacks became a focus for cyber criminals
- Trends changed across attack campaigns and categories  
- DNS and DDoS attacks continued to grow, with some taking on political overtones 
- Ransomware surpassed credential stuffing on the risk radar of many companies

We will also provide our top cybersecurity predictions/educated guesses for 2023. 

Speakers:
Steve Winterfeld, Advisory CISO, Akamai
Richard Meeus, Director of Security Technology and Strategy, EMEA, Akamai

2022 Cyber Year in Review

In this first episode of a three-part series on Cyber Security in the Finance industry you will hear about the latest trends relating to the threat environment. How can leaders stay on top of the rate of innovation in the cybercriminal landscape, and how do these threats work? This talk will cover lessons learned from our customers’ best practices and our threat research.

With digital transformation shifting the financial services industry landscape, we know the threat will follow the money. We need to design security controls that are dynamic, tailorable and provide insights at the individual investigation level all the way to broad industry trends. It’s crucial to understand and gain full visibility of these risks to protect your customers, your brand, and your reputation. Join us and hear about actionable insights from Akamai as we discuss:

- Research on trends in the financial services threat landscape
- The value of end-to-end visibility
- How to leverage the cyber kill chain
- And much more

Adapting to Changes in Your Threat Environment

Could your organisation truly survive a data breach and emerge unscathed? 

If the answer is no, or maybe, your cyber security strategy needs a rethink. The importance of preventing and protecting your organisation against a cyber attack is now a fundamental ‘must’, not simply an option. If your organisation was attacked, how would the attacker be detected and moreover, what response plan is currently in place and how could impacts be minimised?

In this fireside discussion, ESG Analyst John Grady is joined by Richard Meeus, Akamai’s EMEA Director of Security Technology and Strategy to explore how to bullet-proof your data for 2023. 

Join them to discuss: 
-  Why active prevention is now a security 'must-have' instead of a 'nice-to-have'
-  The risk organisations will face in 2023
-  How to minimise the impact of a breach
-  The state of ransomware in 2023 
-  And much more!

Get Ahead of the Game: Preparing for 2023’s Inevitable Cyber Security Breach

If we have one key takeaway from the past two years, it’s that competition for customer loyalty is fierce. It’s no secret consumers became less loyal to brands during the pandemic as products became more difficult to find due to compounding global supply chain issues that still remain. As a result, improving and differentiating CX to retain and attract consumers became – and will remain - a top priority for digital investment. But if you don’t have the right defenses in place to protect these online investments from malicious or unwanted activity – you leave your customers, reputation and bottom line at risk.

Join us in the final episode of the series as we apply key learnings from 2022 trends to help your organization not only survive – but thrive – online throughout 2023.

In the final episode we will discuss:

-  Top security trends within the commerce space for 2023
-  What 2022 has taught us about the importance of protecting customer trust
-  Importance of collaboration between security and digital experience teams

A Look Towards 2023: Considerations for Protecting Customers and Loyalty, Online

In 2022, we’ve seen all sorts of shifts in the cybersecurity world. Nation state attacks, phishing and the growth of AI are only three out of the myriad of trends. In many ways, it’s been an unpredictable year, and security leaders have had to think on their feet to keep up with the wave of change. 

As the year comes to an end, it’s beneficial to evaluate the key trends we’ve experienced in the past 12 months, to truly consider and begin to understand what’s in store for us in the year ahead, and to plan for the unexpected. 

Join us in the final panel of 2022 as we discuss: 
-  Top security predictions for 2023
-  Balancing security and privacy
-  The evolution of the C-Suite 
-  And much more

Top Cybersecurity Predictions for 2023

Il controllo della supply chain, la prevenzione dei movimenti laterali e il ransomware sono tematiche che stanno impegnando quotidianamente i responsabili della security. Ma in uno scenario in cui i budget vengono ridotti e c’è mancanza di personale qualificato, come è possibile contrastare le minacce e mantenere un rischio accettabile per le aziende?

Software Based Segmentation: Come Ridurre i Tempi Della Security

Many modern web pages rely heavily on JavaScript to interact with users for popular functions such as account SEO, social media, logins, and payments. 

This has created a new attack surface for hacker groups such as Magecart that put your users’ personal data at risk and expose your business to regulatory punishments. 

Unfortunately, most current protections offer limited help for this sophisticated attack method. 

In this webinar, we will explore the elements of Magecart attacks, and compare specific pluses and minuses of different approaches that security teams can employ to combat this new threat.

You will learn more about: 
• Why Magecart attacks arose now and why they are not going away 
• Why Magecart attacks are so much harder to defeat than other types of script attacks 
• What options are in the market today to use against Magecart and how they will work for you 
• What you can do now to get control of JavaScript security and develop the right approach to beating Magecart

Protecting Your Customers' PII from Magecart

Magecart

Malicious Activity

scripts

Javascript

Cyber Attacks

Cyber Defence

Covid-19

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Protecting Your Customers' PII from Magecart

Presented by

About this talk

More from this channel