Name: Threat Hunting Log4j Exploits with Falcon OverWatch
Start: 2022-02-22T16:30:00Z
End: 2022-02-22T16:30:59.000Z
Location: BrightTALK
Rating: 4.5

CrowdStrike has redefined security with the world’s most advanced cloud-native platform for protecting critical areas of risk — endpoints and cloud workloads, identity, and data. The Falcon® platform harnesses real-time threat intelligence and enterprise telemetry to automate threat prevention, detection, remediation, hunting, and vulnerability observability through a single, intelligent, lightweight agent.

<h1>Outpacing modern adversaries with smarter, faster defense </h1>

The age of AI has changed the rules of the game. According to the CrowdStrike 2025 Threat Hunting Report, adversaries are now using generative AI (GenAI) to enhance their operations, raising the stakes for defenders everywhere. To stay ahead, organizations need innovative strategies that match this new level of speed and sophistication.

CrowdStrike is redefining the cloud security experience with breakthroughs that transform how teams see, prioritize, and respond in the cloud.

In this webinar, you’ll discover how CrowdStrike Falcon® Cloud Security helps you: 

- Unlock a new AI-powered, persona-aware experience that accelerates security workflows
- Prioritize smarter with risk insights that focus your attention where it matters most
- Reshape response and power the future of SecOps with agentic AI

Redefining Cloud Security with Agentic AI

When it comes to understanding how to prevent tomorrow's attacks, no one has better insights than the experts who investigate and stop today's adversaries on the frontlines.

Join our frontline experts as they reveal authentic stories and insights from this year's most significant incidents, including nation-state operations, ransomware campaigns, cloud intrusions, identity-based attacks, and more

Key takeaways:
• Key frontline insights from 2025's most significant incidents
• How adversaries bypass defenses and how to stop them
• How to turn frontline experience into prevention capabilities
• Predictions for 2026 and how security teams can get ahead

2025 Cyber Frontline Insights: Transforming Reactive Response into Prevention

Watch this lightboard video to learn how CrowdStrike Falcon Shield stops SaaS breaches providing full visibility and control into misconfigurations, identities, and threats targeting your SaaS applications.

Lightboard Video: How Falcon Shield Stops SaaS Breaches

See how CrowdStrike FalconID eliminates identity threats like credential phishing, MFA fatigue, and session hijacking with FalconID’s phishing-resistant MFA. Integrated into CrowdStrike’s holistic Next-Gen Identity Security solution, FalconID leverages real-time telemetry across the platform to dynamically block threats in real time. Built on FIDO2 standards, FalconID ensures secure, frictionless authentication, providing stronger protection and greater control over your identities.

Lightboard Video: Stop Adversaries before they Login with Falcon ID

This lightboard video explores how modern adversaries use stolen credentials to log in rather than break in, making identity a primary attack target. It explains how CrowdStrike Falcon Next-Gen Identity Security unifies SaaS posture management, identity threat detection, and secure privileged access to deliver complete visibility and protection across every identity to stop threats.

Lightboard Video: Next Gen Identity Security: Secure every identity, human, non-human, and AI agents, everywhere

Watch this video on how CrowdStrike secures non-human identities against modern threats including AI agents, API's and SVC accounts. Complete visibility and across on-prem, cloud and SaaS applications. Manage and enforce privileged access accounts in real-time.

Lightboard Video: Securing Non-Human Identities Against Modern Threats

Join us for a high-impact briefing on the 2025 CrowdStrike Global Threat Report—tailored specifically for government cybersecurity professionals . Learn how today’s most advanced adversaries are accelerating attacks and what your agency must do to stay ahead.


Key Insights:

• Newly named adversaries and their rapidly evolving tradecraft
• How cross-domain attacks and compromised identities are changing the speed and scale of intrusions
• How social engineering and vulnerability exploits are driving faster breaches

Inside the 2025 Global Threat Report: What Government Cyber Defenders Need to Know

Adversaries are faster and more sophisticated than ever — achieving lateral movement in as little as 51 seconds. The stakes have never been higher, and traditional reactive defenses are no longer enough.

According to The Forrester Wave™: Managed Detection and Response Services, Q1 2025, “MDR is an established market that helps security leaders and their teams detect, investigate, respond, and recover from attacks ranging from commoditized malware to sophisticated techniques used by nation-state actors.”

But the bar has risen. Organizations now look for proactive defense and expert guidance from their MDR vendors to strengthen security posture and maximize protection.

Join Austin Murphy, VP & GM of Falcon Complete, and guest speaker Jeff Pollard, VP & Principal Analyst at Forrester, as they explore what’s next in MDR — and the strategic priorities security leaders must act on to stay ahead.

Key Takeaways: 
• Learn where the MDR market is heading and what’s driving change
• Identify capabilities that define best-in-class MDR providers
• Get actionable guidance on how to strengthen your security posture with MDR
• Learn why AI-driven detection, automation, and human expertise are critical for response

The Next Era of MDR: AI, Automation & Human Expertise

Join Alex Walker, Practice Lead for Counter Adversary Operations – Healthcare US, for an exclusive look into the evolving threat landscape facing the healthcare sector. Drawing on real-time insights from the CrowdStrike Falcon® Adversary OverWatch™ team’s 24/7 all-domain threat hunting operations, this session will highlight critical adversary trends and actionable defense strategies.

What you'll learn:
• The top eCrime and nation-state adversaries targeting healthcare organizations

• Oft-abused remote access tools and opportunistic exploits observed in the wild

• Key findings and themes from the CrowdStrike 2025 Threat Hunting Report

• Practical, immediate recommendations to defend against hands-on-keyboard intrusions

Inside the Hunt: Insights on Healthcare Cyber Threats

According to the CrowdStrike 2025 Global Threat Report, voice phishing (vishing) attacks surged 442% between the first and second half of 2024, and there was a 50% rise in dark web advertisements selling stolen credentials in 2024. Adversaries like CURLY SPIDER and SCATTERED SPIDER exploit stolen credentials and legacy privileged access management tools to escalate privileges and move undetected within minutes.

Join us for an exclusive look at how CrowdStrike Falcon® Privileged Access delivers just-in-time protection to stop them.

In this session, you’ll discover how CrowdStrike’s latest innovation:

• Delivers just-in-time access without the operational complexity
• Blocks privilege escalation and lateral movement in real time
• Supercharges your SOC with identity-driven automation
• Expands protection across hybrid environments

Falcon Privileged Access Saves the Day. The Latest Identity Protection Innovations from CrowdStrike

Today’s SaaS environments demand more than basic visibility — they require a modern, proactive approach to managing risk. Join us for an interactive virtual discussion focused on the critical capabilities every organization needs to build for an effective SaaS security strategy.

We’ll break down the essential features required to protect your expanding SaaS ecosystem, including:

•SaaS Security Posture Management (SSPM) for continuous visibility and control across your entire SaaS environment 

•Misconfiguration Management to eliminate common security gaps with automated 24/7 security checks and remediation options

•Identity Security Posture Management to protect users, detect dormant accounts, and enforce least-privilege principles

•Third-Party and Shadow App Visibility to uncover hidden risks from OAuth connections and API integrations

•Generative AI Security to protect against emerging risks in AI-enhanced applications like Microsoft Copilot and Salesforce Einstein

•Identity Threat Detection & Response (ITDR) to identify anomalous behavior, impossible travel scenarios, and sophisticated attack patterns

Learn why these core capabilities are critical — and how CrowdStrike’s leading SSPM solution - Falcon Shield combines them to deliver automated monitoring, built-in expertise, and a robust SaaS security hygiene.

The SaaS Defense Layer You’ve been Missing

The race to adopt AI is a double-edged sword—organizations must quickly embrace these technologies to stay competitive while safeguarding against AI-related risks.

In this session, we’ll explore how today’s cloud security solutions must address key AI-related risks such as data leakage, injection attacks, and model poisoning. A viable cloud security solution should:

• Provide comprehensive visibility into AI models.
• Detect shadow AI.
• Ensure secure configurations.
• Safeguard sensitive data and ensure compliance with stringent security and privacy regulations.

Fortify your AI initiatives with AWS and CrowdStrike

Ransomware attacks have evolved. Armed with stealthy, sophisticated malware, today’s ransomware is difficult to detect and even more challenging to halt. Today, 71% of attacks are malware free and impossible for legacy solutions to detect.

Ransomware attacks pose a significant threat to your business, your reputation, and the trust of your customers. Traditional antivirus and endpoint protection measures are no longer sufficient.

Join CrowdStrike for this exclusive content to:
• Gain insights into the evolving nature of ransomware.
• Recognize the limitations of traditional security tools that leave you vulnerable in today’s threat landscape.
• Watch a demo of the latest antivirus and modern endpoint security solutions that will keep you ahead of cybercriminals and ransomware attacks.

Defending Against Evolving Ransomware Attacks: Modern Security that Stays Ahead of the Adversary

The rise of cloud adoption, the explosion of endpoints, and increasingly advanced cyber threats demand a new approach to data security. Traditional methods are falling short, leaving enterprises vulnerable to breaches and data loss via malicious and accidental exposure. 

Forrester Principal Analyst, Heidi Shey, and CrowdStrike’s Senior Tech Strategy Manager, Derek Tsang, will discuss:
• The current data security landscape
• Challenges faced by organizations
• What organizations truly need to stay protected 

Watch this session to discover the essential components of a modern, comprehensive data security strategythat addresses today’s challenges while preparing for the future.

CrowdStrike + Forrester: Redefining Data Security for the Modern Enterprise

Small businesses are the backbone of the economy — but they’re also prime targets for cyber threats. In today’s rapidly evolving threat landscape, legacy security solutions are no longer enough to keep businesses safe.

Watch this webinar for an exclusive customer panel where small business leaders will share why they’ve invested in modern security solutions. Hear firsthand about the benefits they’ve experienced and gain practical advice to strengthen your own cybersecurity strategy, whether you’re building your security foundation or looking to level up your defenses.

Key Takeaways: 
• Why modern security is essential for small businesses
• What benefits our customers have seen
• What advice they have for small businesses looking to implement modern security solutions

SMB Cybersecurity Leaders Panel

In the fast-evolving world of cloud security, legacy tools can’t keep up. The dynamic, interconnected nature of cloud environments has outpaced the capabilities of traditional security tools. Designed for static infrastructures, these tools struggle to detect and respond to active threats in real time, leaving critical gaps that adversaries can exploit. Cloud detection and response (CDR) bridges this gap, combining cloud posture insights, real-time detection, and automated response to address today’s evolving threats. Join us to explore how CDR is transforming cloud security.

What you’ll take away: 

• Current cloud attack trends and best practices for effectively detecting and responding to cloud-based attacks
• How CrowdStrike is helping to stop cloud breaches for customers
• CrowdStrike’s vision for CDR

2025 Cyber Security Trends: Modernize Cloud Security with CDR: Unifying Cloud Posture and Protection

The attack surface continues to expand—from on-premises Active Directory to cloud-based identity providers and SaaS applications—creating new challenges for organizations to secure their hybrid identity environments. In this session, we’ll discuss the latest trends and techniques used by modern adversaries who target identity environments. 

We’ll reveal our latest advancements, including how combining Falcon Identity Protection and Adaptive Shield enables comprehensive identity protection across on-prem, cloud, and SaaS environments, redefining identity security. 

What you’ll get in this session:

• Why a unified identity security strategy enhances cybersecurity posture while improving operational efficiency and optimizing costs
• How our latest advancements in EntraID, including the integration of Adaptive Shield, enable comprehensive identity protection across on-prem, cloud, and SaaS environments
•See the business value of Falcon Identity Protection with quantifiable benefits and a return on investment (ROI) analysis produced by Forrester

2025 Cyber Security Trends: Future-Ready Identity Security: Innovations for Hybrid Environments

Security teams are drowning in alerts, managing siloed tools, and struggling to separate real threats from the noise. Legacy vulnerability management relies on slow, complex scanners that generate outdated reports, causing blind spots across cloud, endpoints, and unmanaged assets. Adversaries like Operator Panda exploit these vulnerabilities to infiltrate critical industries. The solution? AI-powered exposure management that eliminates inefficiencies and prioritizes real threats.

Join CrowdStrike industry experts and special guest Lisa Brooks, Director of Information Security — Security Operations & Engineering at ETS, for a live session on how to take control of your attack surface before adversaries do.

Register now to learn how CrowdStrike Falcon® Exposure Management helps you:

•Achieve complete attack surface visibility: Expand visibility beyond endpoints to unmanaged assets without additional scanners, agents, or hardware — eliminating blind spots across your attack surface.

•Focus on what matters most: Go beyond outdated CVSS scores with ExPRT.AI that correlates vulnerabilities across endpoints and networks with real-world adversary activity to prioritize the risks that matter.

•Eliminate scanner complexity: Turn on frictionless network scanning with Network Vulnerability Assessment in one click, without the headaches of traditional scanner deployment. No new agents. No dedicated appliances. Just actionable insights.

•Accelerate response with automated remediation: Reduce manual effort with CrowdStrike Falcon® Fusion SOAR workflows, automating remediation across cloud, endpoint, and network exposures.

•Strengthen security while reducing costs: See how organizations have achieved a 98%1 reduction in critical vulnerabilities, reduced their external attack surface by 75%2, and eliminated up to 90%3 of legacy scanning costs by consolidating tools into the CrowdStrike Falcon® platform.

Outpace the Adversary. Take a Proactive Approach to Exposure Management

Since the initial disclosure of Log4j, the OverWatch team, CrowdStrike’s elite team of threat hunters, has maintained around-the-clock vigilance, tracking the evolution of the Log4j threat, and developing techniques to uncover stealthy attempts to exploit it.

Join our OverWatch experts for a summary of the team’s threat hunting insights. You’ll get a real-world view from the experts on the front lines and gain insights you can use to kickstart your own Log4j threat hunting efforts.

Join this CrowdCast to hear more about:

• A look at the Log4j vulnerability through the eyes of elite threat hunters
• Case studies providing insights into how adversaries are carrying out their campaigns in the wild
• Ideas for suggested threat hunting techniques you can put into action in your own environment

Threat Hunting Log4j Exploits with Falcon OverWatch

Cyber Security

Cyber Attacks

Cyber Crime

Cyber Incident Response

Incident Response

Threat Detection

Threat Defence

IT Security

Endpoint Security

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Threat Hunting Log4j Exploits with Falcon OverWatch

Presented by

About this talk

CrowdStrike