State of the Phish 2020

With October's Cybersecurity Awareness Month approaching fast, it’s important to get security awareness and training top-of-mind with your users. Given that 80% of organizations only allocate two hours or less per year for security awareness, how can you maximize your time with users to ensure behavior change?

In this webinar, we’ll go over proven ways to plan and execute a successful program such as:

· Focusing your program on the riskiest users
· Keeping users engaged and on-your-side
· Benchmarking against top-performing organizations
· Reporting up to key stakeholders

New semesters bring new cybersecurity threats. As new students and staff receive their new college emails, the more opportunities there are for attackers to strike. Even today, most cyberattacks still start with phishing emails because their tactics continue to evolve and work. So how can you better protect your institution?

Join our guest speaker Mike Manrod, CISO at Grand Canyon Education, and Ryan Witt, Managing Director at Proofpoint, for this webinar as they focus on higher education’s evolving threat landscape and the increasingly sophisticated tactics cybercriminal are using to target academia. In this session, we will examine how to you can:

- Harden your email security to stop phishing, ransomware, and BEC attacks
- Stop email spoofing and spot look-alike domains
- Protect sensitive data with an integrated DLP platform

Did you know 99% of all threats are human-activated, and 96% of all data breaches start with people? [ Source: Gartner.]

Despite this reality, most organisations rely on traditional cybersecurity tools that focus more on data and systems than on people. Whether the intent is negligent, malicious or criminal, it’s time to protect your business against data loss and brand damage. The best, most modern security solutions are designed to be people-centric.

Join Rob Bolton, Senior Director and and Julian Mauss, Technical Expert at Proofpoint Insider Threat Management, to learn about the four best practices to manage insider threats. Learn why it’s critical to blend people, process and technology to detect, investigate and respond to insider risk in today’s new [work] reality.

In this talk, you will learn:

• How distributed workforces and third-party workers access systems and data
• The unique risks of insider threats
• How to protect against data loss
• Why a people-centric approach is key to mitigating insider risk

What are the best practices for building a people-centric cybersecurity strategy and where should your organization start? Proofpoint has revamped our three-phase cybersecurity maturity model to help you elevate your advanced email security, stop business email & account compromise, and protect your cloud applications.

Join us for a live demo to learn how you can continue your people-centric security journey and see the tools in action. In this second phase of three phases, we’ll demonstrate how to:

- Protect your people from impostor email attacks, like business email compromise (BEC)
- Investigate and respond to the risks of email account compromise (EAC), including internal email threats sent from compromised accounts
- Prevent risks associated with personal webmail and risky websites sent via corporate email

Nearly 90% of organizations experienced business email compromise (BEC) and email account compromise (EAC) attacks in 2019. According to our researchers, there’s a 45% jump in these email scams overall. The average attack nets the attacker approximately $130,000. A traditional Secure Email Gateway (SEG) that only relies on malware detection, static rules matching, and sandboxing technologies, fails to protect against these new forms of email threats that prey on human nature. So how can you better protect your users and company?

Join us for this session to learn more about:

- The common tactics used in a BEC/EAC attack
- A framework that helps you identify potential gaps
- The techniques for addressing email spoofing and credential phishing
- How automation and visibility play a critical role in resolving incidents

As the scope of data migration projects increases from Terabytes to Petabytes, data imports include more than just messages. When you couple this consideration with customer expectations for speed and compliance needs, it’s imperative supporting professional services evolve with greater agility and innovation.

Proofpoint indeed has evolved its Compliance and Archiving professional services, from migration to intelligent supervision to e-discovery analytics, to best meet the expectations of organizations migrating to its leading, cloud-native archive. Attend this webinar to learn:

- What a typical data migration project entails, from extraction to import
- What legacy migration options should be considered
- What attributes are characteristic of a modern migration program

Insider threats come in all shapes and sizes and affect organisations across all industries and geographies. Understanding the motives behind them is key to defence. One of the best ways to do this is to study some of the bold, headline-generating insider threats that have taken place recently, like the big Twitter debacle of July 2020. This is just one example of what has become a very common problem.

Join us for a live talk with Rob Bolton and Lee Duff, Proofpoint’s Insider Threat Management Senior experts as we reveal the stories behind the biggest and boldest top 10 insider threats of 2019 and 2020 to date.

You will learn:

● What happened in each incident?
● Practical security tips inspired by these real-world breaches
● How to mitigate your own insider risk

Today’s employees and customers generate a lot of communications data, in a lot of formats and in a lot of locations, from computers and on prem servers to mobile devices and the cloud. And present circumstances—with huge swaths of the population working remotely and stuck inside their homes—have only made digital communications more critical. Employees are using chat and collaboration apps to communicate and keep projects moving forward. And they are using chat, text messaging, social media and more to keep in touch with clients.

While chat and collaboration apps, text messaging, and social media have made it possible for employees to continue doing business, they can also put the firm at risk. During this time of upheaval, regulatory requirements have not gone away. As they adopt new communication tools, firms must ensure that they continue to comply with regulations and corporate policies. It all starts with capturing and managing your content.

In this webinar, we will take a deep dive into the challenges that firms face with capturing and managing content as digital communications sprawl. And we’ll also cover strategies for adapting and staying compliant.

Join us to learn:
- How the business communications landscape is evolving
- How to identify your communications data
- Key considerations for capturing and managing your content
- How to set yourself up for efficient supervising and eDiscovery

With the shift to work from home, cloud security is a bigger concern than ever. As the network perimeter is replaced by a user-defined security perimeter, enterprises need a people-focused approach to threat detection and data protection in the cloud. Organisations have adopted or plan to adopt Cloud Access Security Brokers (CASBs) to help them.
Join Proofpoint experts as they discuss the findings of a newly conducted research among security professionals to determine the needs of enterprises from CASBs, and whether or not their expectations are being met.
In this session, they will explore:
- Where is CASB on the adoption curve?
- How security professionals use CASB for visibility, compliance, data security, threat protection and access control
- Effectiveness and next evolution of CASBs

What are the best practices for building a people-centric cybersecurity strategy and where should your organization start? Proofpoint has revamped our three-phase cybersecurity maturity model to help you elevate your advanced email security, stop business email & account compromise, and protect your cloud applications.

Join us for a live demo to learn how you can begin your people-centric security journey and see the tools in action. In this first phase of three phases, we’ll demonstrate how to:

- Protect your people from the no. 1 threat vector that attackers use today: email
- Gain visibility into which people are being attacked, how they’re being attacked, and whether they’re compromised
- Build a robust security awareness training program

Insider threats come in all shapes and sizes and affect organizations across all industries and geographies. Understanding the motives behind them is key to defense. One of the best ways to do this is to study some of the bold, headline-generating insider threats that have taken place recently, like the big Twitter debacle of July 2020. This is just one example of what has become a very common problem.

Join us for a live talk with Josh Epstein, VP Marketing and Sai Chavali, Sr Product Manager at Proofpoint Insider Threat Management as we reveal the stories behind the biggest and boldest top 10 insider threats of 2019 and 2020 to date.

You will learn:

- What happened in each incident?
- Practical security tips inspired by these real-world breaches
- How to mitigate your own insider risk

The 2020 Verizon Data Breach Investigation Report (DBIR) concluded that email is the initial point of compromise for cyber-attacks 96% of the time. For healthcare, cybercriminals have used email to launch phishing attacks particularly using COVID and PPE lures, or malware infections that could lead to continuity of care problems through attacks like ransomware. As healthcare workers are clearly being targeted, how do you best protect your people and educate them about how to spot and fend off the continuous stream of cyber-attacks? Join this live demo to see Proofpoint Security Awareness Training in action, and how it safeguards against advance threats and compliance risks.

Register and you’ll learn:

- The most common attacks in today's healthcare threat landscape
- A people-centric approach to helping you protect patient data
- Healthcare specific awareness materials to reinforce your security training initiatives

製品デモンストレーション
プライバシーを守りながら、ユーザ―の行動を可視化する内部脅威対策
Proofpoint | ObserveIT Insider Threat Management

情報漏えいの原因は、内部からの情報漏えいが約半分を占めており、その被害額は過去3年で倍増しています。
IPAでも2020年の10大脅威で内部不正は２位にとりあげられており、特に日本では内部犯行による被害が他の国よりも多いというデータもでています。
Withコロナで在宅勤務も広がる中、遠隔から仕事をする従業員「個人の信頼性の確認」が重要視されています。
人々が分散環境で働く中、従来の境界防御だけでは組織を守れなくなりました。むしろゼロトラストベースで、内側からの脅威にも対応しなければなりません。
本ウェビナーでは、すでに1,200社以上のお客様にご利用いただいているObserveITをご紹介します。ObserveITで、どのようにユーザーの行動からリスクを特定し、リアルタイムに抑止をかけ、データの漏えいを防ぐことができるかをご覧いただけます。

http://go.proofpoint.com/subscribe.html ですべてのマーケティング通信をオプトアウトすることができます。
詳細については、https://www.proofpoint.com/us/privacy-policy のプライバシーポリシーをご覧ください。

Die größte Bedrohung für Ihre Daten sind keine Fehler, die im veralteten Code Ihres Servers verborgen sind, keine Zero-Day-Exploits, die im Dark Web weitergegeben werden, und auch keine alten Laptops, die noch mit Windows 7 laufen. Ihre größte Bedrohung sitzt wahrscheinlich im Büro neben Ihnen, begrüßt Besucher an der Rezeption oder vielleicht sind es sogar Sie selbst. Cyberkriminelle haben erkannt, dass gerade private Webmails, die am Unternehmenslaptop gelesen und beantwortet werden eine Schwachstelle darstellen, für die viele IT-Sicherheitsteams noch keine wirklich effektive Lösung haben.

In unserem Webinar möchte Ihnen Markus Pauly von Proofpoint eine Isolierungstechnologie vorstellen, die DSGVO konform ist und Sicherheitsprobleme im Zusammenhang mit privaten E-Mail- und Webaktivitäten löst.

Behandelt werden:
- Bedrohungsvektor E-Mail – wenn Cyberkriminelle per Social Engineering die Schwachstelle private E-Mail Nutzung im Unternehmen ins Visier nehmen
- Die Fallstricke bisheriger Lösungsansätze
- Der beste Ansatz: Adaptive (Web)-Isolierung – inklusive kurzer Demo

According to Gartner, “Business Email Compromise attacks increased by nearly 100% in 2019 and resulted in substantial financial losses in some cases.” Is your business prepared to defend against them?

Join Adrian Covich of Proofpoint to discover how to keep pace within this rapidly moving threat landscape and best practice ways to protect your people and data from email attacks, the number one threat vector.

In this session, you will learn:
- The latest threat data and trends for email cyber attacks
- How best to defend your people and data with Proofpoint Targeted Attack Protection
- How to streamline your incident response process for emails

Join us as we go deep and show you how to better protect against email, the number one threat vector for your business

In financial services, health care, and other highly regulated industries, specific rules govern marketing communications and advertising practices when communicating with the public. So how can you better manage the process and stay compliant? Learn how to solve for complex social compliance pain points with ease using Proofpoint’s solution.

Join this demo and listen to product expert Shane Sauer, who will demonstrate how Proofpoint:

- Finds accounts associated with your firm, including rogue adviser accounts
- Automates reviews and approvals of social profiles
- Supervises social media activity in real time and notifies you of compliance violations
- Removes non-compliant social media content
- Provides detailed reporting and proof of compliance