Name: Credential Stuffing in Financial Services
Start: 2021-09-23T13:00:00Z
End: 2021-09-23T13:41:17.000Z
Location: BrightTALK
Rating: 4

Akamai secures and delivers digital experiences for the world’s largest companies. Our intelligent edge platform keeps apps and experiences closer to users — and attacks and threats far away. Top brands globally rely on Akamai so their businesses can be fast, smart, and secure.

APIs make up the fabric of the financial services industry - they bridge the customer to the product. 

However, according to recent research by Akamai, as of June 2022, there have been over 9 billion web application and API attacks across the globe. This is three times more than we saw in 2021. Given the value of APIs to the modern organisation, it’s no wonder that they have become a pathway for attackers to infiltrate the network. This talk will cover lessons learned from analysing data across our platform and customers’ best practices. 

Leaders must act now to ensure security is consistent and applied across their entire estate, including web apps and APIs. But what can you do specifically to secure your APIs and how has digital transformation impacted API security? Join us in the third and final episode of Actionable Insights from Akamai as we discuss:

- Best practices for securing your APIs
- How to leverage the cyber kill chain to evaluate your API risks  
- Insights from global Threat Intelligence to enhance your API protection 
- And much more!

Protect Your APIs: Invest in Securing Your Digital Innovation

Digital Transformation (DX) is creating waves of change across all industries, especially in financial services. While the benefits of DX far outweigh the negatives, if not done carefully it can create more risk and complexity across financial environments. Join Akamai to discuss lessons learned from our customers and partners.

The move to cloud, DevOps, APIs, Fintech and open banking are just a few examples of the ways in which the financial services industry is embracing all that digital transformation has to offer. However, with change comes risk. But what are these risks and how does cyber security innovate with the business to protect customers while ensuring a great experience.

In this session we will discuss:

- How to embrace digital transformation while reducing complexity
- Ways in which digital transformation impacts overall risk portfolio
- Approaches to reduce vendor overhead and increase integrated capabilities through single platform

Don’t Let Complexity Disrupt Your Business

It was another demanding year for IT professionals and the cybersecurity teams supporting them. Join Akamai’s Richard Meeus, Director of Security Technology and Strategy and Steve Winterfeld, Advisory CISO as they share what they felt the most impactful and dangerous attack trends were from the past year. They will also cover some of the best practices they are seeing for stopping cyber criminals. 

Join us for a lively discussion of some of the year’s most impactful security events, including how:
- API attacks became a focus for cyber criminals
- Trends changed across attack campaigns and categories  
- DNS and DDoS attacks continued to grow, with some taking on political overtones 
- Ransomware surpassed credential stuffing on the risk radar of many companies

We will also provide our top cybersecurity predictions/educated guesses for 2023. 

Speakers:
Steve Winterfeld, Advisory CISO, Akamai
Richard Meeus, Director of Security Technology and Strategy, EMEA, Akamai

2022 Cyber Year in Review

In this first episode of a three-part series on Cyber Security in the Finance industry you will hear about the latest trends relating to the threat environment. How can leaders stay on top of the rate of innovation in the cybercriminal landscape, and how do these threats work? This talk will cover lessons learned from our customers’ best practices and our threat research.

With digital transformation shifting the financial services industry landscape, we know the threat will follow the money. We need to design security controls that are dynamic, tailorable and provide insights at the individual investigation level all the way to broad industry trends. It’s crucial to understand and gain full visibility of these risks to protect your customers, your brand, and your reputation. Join us and hear about actionable insights from Akamai as we discuss:

- Research on trends in the financial services threat landscape
- The value of end-to-end visibility
- How to leverage the cyber kill chain
- And much more

Adapting to Changes in Your Threat Environment

Could your organisation truly survive a data breach and emerge unscathed? 

If the answer is no, or maybe, your cyber security strategy needs a rethink. The importance of preventing and protecting your organisation against a cyber attack is now a fundamental ‘must’, not simply an option. If your organisation was attacked, how would the attacker be detected and moreover, what response plan is currently in place and how could impacts be minimised?

In this fireside discussion, ESG Analyst John Grady is joined by Richard Meeus, Akamai’s EMEA Director of Security Technology and Strategy to explore how to bullet-proof your data for 2023. 

Join them to discuss: 
-  Why active prevention is now a security 'must-have' instead of a 'nice-to-have'
-  The risk organisations will face in 2023
-  How to minimise the impact of a breach
-  The state of ransomware in 2023 
-  And much more!

Get Ahead of the Game: Preparing for 2023’s Inevitable Cyber Security Breach

If we have one key takeaway from the past two years, it’s that competition for customer loyalty is fierce. It’s no secret consumers became less loyal to brands during the pandemic as products became more difficult to find due to compounding global supply chain issues that still remain. As a result, improving and differentiating CX to retain and attract consumers became – and will remain - a top priority for digital investment. But if you don’t have the right defenses in place to protect these online investments from malicious or unwanted activity – you leave your customers, reputation and bottom line at risk.

Join us in the final episode of the series as we apply key learnings from 2022 trends to help your organization not only survive – but thrive – online throughout 2023.

In the final episode we will discuss:

-  Top security trends within the commerce space for 2023
-  What 2022 has taught us about the importance of protecting customer trust
-  Importance of collaboration between security and digital experience teams

A Look Towards 2023: Considerations for Protecting Customers and Loyalty, Online

In 2022, we’ve seen all sorts of shifts in the cybersecurity world. Nation state attacks, phishing and the growth of AI are only three out of the myriad of trends. In many ways, it’s been an unpredictable year, and security leaders have had to think on their feet to keep up with the wave of change. 

As the year comes to an end, it’s beneficial to evaluate the key trends we’ve experienced in the past 12 months, to truly consider and begin to understand what’s in store for us in the year ahead, and to plan for the unexpected. 

Join us in the final panel of 2022 as we discuss: 
-  Top security predictions for 2023
-  Balancing security and privacy
-  The evolution of the C-Suite 
-  And much more

Top Cybersecurity Predictions for 2023

Il controllo della supply chain, la prevenzione dei movimenti laterali e il ransomware sono tematiche che stanno impegnando quotidianamente i responsabili della security. Ma in uno scenario in cui i budget vengono ridotti e c’è mancanza di personale qualificato, come è possibile contrastare le minacce e mantenere un rischio accettabile per le aziende?

Software Based Segmentation: Come Ridurre i Tempi Della Security

Attracting customers to your website is only half the battle; Keeping them there is what matters most. That’s why creating and maintaining a seamless digital experience once they’ve arrived is crucial to optimizing the customer journey and driving conversions.

Did you know that according to Akamai research, –~15% of potential user sessions are interrupted by an unwanted pop-up or browser extension, potentially luring customers away to a competitive - or even fraudulent site? This “audience hijacking” represents a real source of damage to investments made to build brand loyalty – with bottom line repercussions .

Gaining visibility into and control over how extensions interact with your website will give your retail organization an upper hand against unwanted activity impacting – and distracting – your customers.

Join us in this session as we discuss:

-  The impact of audience hijacking on the customer path to purchase
-  Other client-side threats to brand loyalty (i.e. Magecart style attacks)
-  How to reduce affiliate and ad fraud
-  How the pandemic impacted customer loyalty
-  How to better control your brand experience – and online investments
-  Balancing protecting revenue with building customer relationships

Customer Loyalty: Protecting the Client-side Experience

The multicloud is no longer a stranger to the enterprise. Research shows that the majority of companies operate applications in more than one cloud. Today’s focus is now on workloads. How can you determine which types of cloud platforms are most suitable for your workloads so that you can achieve your development and business objectives? Join Akamai and 451 Research in a discussion about the current state of the multicloud IT infrastructure, including the latest trends and analysis, and how to identify where in the cloud you should house your workloads. The session will cover:

- How to effectively “workload shop” so that you can achieve your agility, maintenance, performance and budgeting goals.
- Criteria to consider when deciding which workloads should go on which platforms.
- How to balance costs vs. outcomes so that you can optimise your ROI.

Speakers:

- Liam Eagle, Research Director, Head of Voice of the Enterprise & Voice of the Service Provider, 451 Research
- Larry Alston, Vice President, Cloud, Akamai
- Pavel Despot, Enterprise Cloud Specialist, Akamai

Not Every Cloud Is Meant for Every Workload

APIs are rapidly becoming a cornerstone of the web and as such need our full attention in order to prevent a loss of capability. It is key to guard your most critical assets holistically with bot and DDoS protection, but how?

This webinar will cover how you can manage all of your app and API security in one place, through multiple integrated solutions with no workflow disruptions. 

In particular it will address:
- Common API vulnerabilities
- Trends showcasing the increasing rise in API attacks
- How to ensure your key assets are appropriately protected

APIs - How to Protect this New Keystone of the Internet

Maintaining and deepening customer trust is imperative, especially in a post-pandemic world where brand loyalty is up for grabs. With the unprecedented shift to life online, retailers and specifically those in ecommerce have struggled to gain visibility into their online traffic – both legitimate and malicious. That’s why being able to quickly detect and block malicious bot activity – like credential stuffing, content scraping and inventory hoarding – not only improves customer experience during the path to purchase but also protects against online revenue loss.

Join us as we discuss:

-  Why enhancing visibility into online traffic is critical for safeguarding customer trust
-  The damaging effect of malicious bot activity on customer experience and conversions. -  The latest tools available today to combat malicious bots
- Understanding the account takeover (ATO) kill-chain to prevent fraud
- The benefits of real-time analysis into bot traffic
- Reducing the risk of being impacted by malicious bots

Understanding Bots: Protecting your Customer Experience… and Bottom Line

How to defend against inevitable security breaches

Fallen victim to a data breach yet? If not, your organisation is one of the lucky ones - for now. Cyber attackers are using ever more sophisticated attempts to execute attacks on a daily basis. Realistically, it's unlikely that an organisation can swerve an attack without robust cyber security measures already in place to prevent, detect and mitigate cyber threats. 

Hear from Akamai's Director of Security Technology and Strategy, Richard Meeus and:
- Understand the common attacks in the cyber threat landscape - from DDoS, to phishing, MFA and microsegmentation.
- Discover cyber security models and strategies to protect your organisation should it fall victim to an attack.
- Learn how you can provide your users with risk-free access to applications and services.

Have You Been Breached Yet? Are You Sure?

From the start of the COVID-19 pandemic EMEA has seen an exponential surge in cyber attacks. Organisations across EMEA spanning a multitude of different industries are now more likely than ever to be victimised by a cyber-attack than they were just a few years ago. 

Within the cyber threat landscape, ransomware has become one of the highest offenders to-date, costing organisations extortionate in damage and losses. Ransomware attacks have taken their motives and execution to a whole new dimension and today schools and government organisations are just a few of the recent victims. 

This webinar provides an in-depth review of the organisations that have executed some of the most high-profile ransomware attacks across EMEA and how these attacks have been orchestrated. Listen to this webinar to discover the latest ransomware attack trends, tools and the next steps required to mitigate the risks.

Ransomware Threat Landscape 2022: Lessons Learned & Review of Attack Trends

In the latest Akamai DNS Traffic Insights Threat Report, our research teams reflect on the most significant and outstanding attack trends and security incidents seen in 2022 so far.
 
With more than 1 of 10 monitored devices communicating at least once to domains associated with malware, ransomware, phishing, or command and control (C2), organisations need to stay vigilant to protect against emerging DNS threats.
 
In this webinar, get the full scoop on DNS trends across the globe, including:
- 2022 H1 DNS traffic threat insights
- Latest phishing attacks and techniques
- DNS cybersquatting and fake domains
- Key recommendations and takeaways

2022 H1 Threat Insights: Latest Phishing and DNS Attack Trends

As Kubernetes (K8s) catches on and becomes a staple in almost any datacenter, it is more important than ever to understand the network security boundaries and gaps that come with the territory. 

What is the shared responsibility model between security and developers? How do you apply network security guardrails without impacting the dynamic nature of rapidly deploying software?

We will answer all these questions and more, while trying to demystify the network security around K8s.

Join us to learn about:
- Why microsegmenting a K8s cluster is crucial 
- Differences between securing K8s compared with legacy environments
- How microsegmentation can accelerate your cloud migration

Demystifying Kubernetes Network Security

New application environments – including cloud-native apps, almost unlimited API opportunities, and borderless connection to customers and partners – bring tremendous opportunity for business growth. 

However, that opportunity also comes with significant related risks: newly built apps bring unknown vulnerabilities, APIs present almost unlimited attack opportunities, and borderless connections bring the need for perimeter-less protections.

In this session you’ll learn:
- Techniques to dynamically adapt protections to evolving attacks
- How to use automation and Akamai’s Adaptive Security Engine (ASE) to reduce the burden on your teams without lowering protections
- Ways to bring developers into the security discussion proactively and productively

Securing the Next Generation of Apps and APIs

Akamai’s Pavel Gurvich talks about the company’s security vision, principles of Zero Trust and future innovations at RSA conference.

Akamai brings scale, insight and simplicity to Zero Trust

2020 presented a unique set of challenges for everyone, but that didn’t mean cybercriminals took time off. In fact, it turned out to be the opposite.

Hackers targeted the financial services industry more than ever, with credential stuffing being the attack vector of choice last year.

Join us as we explore the findings from our latest State of the Internet report. 

We found that:
• 3.4 billion credential stuffing attacks were launched against financial services companies
• There were 736,071,428 web attacks
• 51% of attacks came through Local File Inclusion

Register for our live webinar today to find out more.

Credential Stuffing in Financial Services

Financial Services

Phishing

credential stuffing

Bots

Hackers

Cyber Crime

Cyber Defence

Cyber Intelligence

akamai

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Credential Stuffing in Financial Services

Presented by

About this talk

More from this channel