Name: Getting Richer Visibility and Classification of Remote Devices
Start: 2020-04-30T15:30:00Z
End: 2020-04-30T16:06:42.000Z
Location: BrightTALK
Rating: 5

Forescout Technologies is the leader in device visibility and control. Our unified security platform enables enterprises and government agencies to gain complete situational awareness of their extended enterprise environments and orchestrate actions to reduce cyber and operational risk.

Learn more about our products, hear about new cybersecurity trends and see how Forescout helps you address these.

Cybercriminals and the threats they pose are becoming more sophisticated than ever, making it crucial to stay updated on the latest trends and techniques employed. Many organizations face a rapidly expanding attack surface that further exacerbates the increased risk as more devices connect to enterprise networks. Managing this growing attack surface requires adopting measures like passive asset discovery, risk-based vulnerability prioritization, and zero-trust network segmentation, to name a few. Join us as we explore the five steps to combating emerging threats with network security. 

Join Joe Thibault, Forescout Solutions Marketing Manager, as he covers: 

◾ How to improve asset discovery and fill in the blind spots of your attack surface.

◾ Going beyond authentication to perform post-connect access control for unmanaged assets. 

◾ How to fight ransomware and extortion with least privileged access controls. 

◾ What your cybersecurity team must do to combat burnout and alert fatigue.  

◾ How to fight fire with fire using automated cybersecurity controls.

5 Steps to Combating Emerging Threats with Network Security

Forescout Vedere Labs recently disclosed three new vulnerabilities on a popular Border Gateway Protocol (BGP) open-source implementation. These vulnerabilities highlight message parsing as an often-overlooked aspect of BGP security and they could be exploited to achieve a denial of service on vulnerable peers, thus dropping all sessions and routing tables.

Recent BGP incidents show that it might take only a malformed packet to cause potentially large disruptions since software suites implementing BGP are used by major networking vendors and found in ISPs and large data centers. Therefore, organizations should not rely only on their ISPs to handle BGP security.

This research shows that modern BGP implementations still have low-hanging fruits that attackers can abuse. Learn how we found the three new vulnerabilities, what their risk is, and what to do to mitigate these risks.

Speaker: Daniel dos Santos, Head of Security Research at Vedere Labs

Finding and mitigating the risk of vulnerabilities in BGP implementations

The year 2022 was quite eventful for cybersecurity. Cyberattacks grew in intensity, sophistication, and frequency, with malicious actors benefitting from growing geopolitical conflicts, economic uncertainty, and rapid digitization. As a result, threat actors have started blurring the lines between traditional IT attacks and emerging OT/IoT threats.

With 2023 bound to accelerate the adoption of new devices into organizations and pose even greater challenges for cybersecurity professionals across the globe, Forescout’s Vedere Labs has analyzed data gathered in 2022 about millions of attacks, hundreds of exploits, and thousands of malware samples to share with the community insights that can help organizations to prepare.

Tune in to understand where attacks are coming from, their top targets, vulnerabilities they exploit, what attackers do after initial access, the most common type of malware dropped, trends in malware evolution, and forecasts for the future.

Most importantly, learn strategies and actions that you can take to prepare for this evolving threat landscape.

2022 Threat Roundup – The Emergence of Mixed IT/IoT Threats

Threat detection and response has become increasingly important, and increasingly difficult, even for seasoned and large SOC teams. Current approaches, including traditional extended detection and response (XDR) solutions, don’t adequately convert the mountain of daily alerts into high-fidelity detections of true threats, nor do they enable SOC teams to automate response processes across the extended enterprise (IT, OT, IoT, IoMT). 

Forescout XDR, combined with other Forescout solutions, uniquely addresses these challenges. In this 30-minute webinar, you will: 

◾Learn how to truly extend detection to every managed and unmanaged connected device across your enterprise 

◾Discover how advanced data science enables 450x better detection 

◾See how you can better respond to threats through real-time control of your network and devices

◾Explore key use cases for improved SOC efficiency, risk reduction, and enhanced visibility  

Speakers: Justin Foster, Chief Technology Officer; Virendra Bisht, Director of Data Science; George McTaggart, Chief Marketing Officer

Improving SOC Efficiency by 450x with Forescout XDR

Threat detection and response has become increasingly important, and increasingly difficult, even for seasoned and large SOC teams. Current approaches, including traditional extended detection and response (XDR) solutions, don’t adequately convert the mountain of daily alerts into high-fidelity detections of true threats, nor do they enable SOC teams to automate response processes across the extended enterprise (IT, OT, IoT, IoMT). 

Forescout XDR, combined with other Forescout solutions, uniquely addresses these challenges. In this 30-minute webinar, you will: 

◾Learn how to truly extend detection to every managed and unmanaged connected device across your enterprise 

◾Discover how advanced data science enables 450x better detection 

◾See how you can better respond to threats through real-time control of your network and devices.  

◾Explore key use cases for improved SOC efficiency, risk reduction, and enhanced visibility.  

Speakers: Justin Foster, Chief Technology Officer; Virendra Bisht, Director of Data Science; George McTaggart, Chief Marketing Officer

Despite a number of advanced security tools on the market, ransomware, extortion, and other related threats continue to dominate the cybersecurity landscape of 2023. For organizations with siloed security solutions, outdated processes, and ineffective threat detection practices, an expanding attack surface is almost guaranteed – and will leave the door open for attackers to exploit, disrupt, and cost you millions. 

In this exclusive webinar, Forescout’s Rik Ferguson, VP Security Intelligence, will take a deep dive into:  

◾How the threat landscape of 2023 might be impacted by the developments of 2022 
◾An in-depth analysis of trending threat attacks and how organizations are being targeted 
◾Best practices to avoid falling victim to ransomware, identity-based attacks, extortion, and more.  

 Speaker: Rik Ferguson, VP of Security Intelligence

Threat Intelligence: 5 Cyber Attacks to Watch for

Several events in 2022 shaped the current threat landscape for critical infrastructure, such as the OT:ICEFALL vulnerabilities highlighting how insecurity by design affects critical devices, new OT/ICS-specific malware showing state-sponsored actors' inclination to cause cyber-physical damage via this insecurity, ransomware groups attacking critical infrastructure for financial gain, and several hacktivists attacking unmanaged devices for their own political agenda. 

We expect this threat landscape to continue expanding in 2023, with even more attacks on critical infrastructure, state-sponsored actors expanding their arsenal with new sophisticated malware, ransomware groups diversifying their extortion campaigns, and more hacktivists adopting OT as a target to spread their message.  

How is this all relevant for asset owners? Tune in to understand: 

• What does the current threat landscape for critical infrastructure look like and what could change in 2023 

• Strategies and actions that asset owners should take to prepare for this evolving threat landscape

The Critical Infrastructure Threat Landscape and How to Prepare for 2023

Like many other healthcare organizations, Northeast Georgia Health Systems understood the need for visibility into their IoMT environment, but they didn’t want to stop there. To gain complete 360 visibility and experience more control over both managed and unmanaged medical devices, they needed the ability to profile, classify, and segment across the board.  

In this “Lessons from the Trenches” webinar, Kristien Kramer, Manager of Network Engineering, Telecommunications, and AV at Northeast Georgia Health Systems, discusses how he and his team searched for and found a platform that brought complete visibility and an effective Zero Trust architecture to their IT, IoMT and IoT environment.  

During this webinar, you’ll get insight into: 

-The benefits of complete medical device visibility and effective Zero Trust segmentation for implementing cybersecurity automation   
-How they leverage their Care Traffic Control Center to enhance visibility and create more efficient patient care  
-Why Forescout was the clear choice for applying continuous monitoring and enforcement of both IT and IoMT devices  
-The future and vision of Northeast Georgia Health Systems 

Speakers: 
Tamer Baker, VP of Global Healthcare at Forescout
Kristien Kramer, Network/Telecom/AV Manger at Northeast Georgia Health Systems

Lessons from the Trenches: Moving Beyond Visibility to Control for IoMT

How do you get your IT and OT security teams to come together? Hear from Kyle Oetken, Director of Cyber Defense and Andrew Plunkett, Technical Lead from energy company, AES as they share how they operationalized their OT security program with Forescout.

You will learn:

- How Forescout helps IT and OT teams work together.
- OT Security best practices and lessons learned.
- Why it is important to develop a risk management plan that works across all OT sites.

Featuring Kyle Otken, Director of Cyber Defense, AES, Andrew Plunkett, Technical Lead, AES, and Christina Hoefer, VP of Global  Industrial Enterprise, Forescout.

AES & Forescout Roundtable Nov 8, 2022

As today’s threat landscape continues to expand, security teams are being forced to defend against motivated adversaries with new and improved tools, tactics, and procedures to exploit vulnerabilities and unmanaged risks. But the fight doesn’t end with attackers. Analysts, engineers, and SOC teams are also grappling with the disconnect and lack of usability between the products and services they rely on to drive detection, response, and protection capabilities. 

During this exclusive webinar, speakers Justin Foster, Rik Ferguson, and guest speaker Allie Mellen will take a deep dive into rising trends of tool convergence, the security analysts experience, and the historic disconnect between risk and threat-based tools to give an overview of today’s changing threat landscape and how you can manage various tools and skillsets to remain ahead of the curve. 

In this session, you’ll get the latest insight into: 
• Today's threat landscape and the skillset needed to manage the future of security 
• The impact of tool convergence on productivity and security analysis
• The disconnect between risk and threat-based tools for security programs
• The emerging analyst experience (AX) trend for improving SOC

Speakers: 
• Allie Mellen, Senior Analyst, Forrester  (Guest Speaker)
• Rik Ferguson, VP of Security Intelligence, Forescout  
• Justin Foster, CTO & Co-Founder, Cysiv (a Forescout Company)

The Future of Security: Merging Tools with Analyst Experience and Intuition

With the rapidly evolving threat environment, and the pressure to improve compliance and reduce risk, healthcare delivery organizations (HDOs) increasingly recognize the importance of having an up-to-date, accurate inventory of all medical devices connecting to their networks. But getting this data, and archiving and querying it for historic analytics, has been a challenge. And hiring in-house expertise to monitor these devices, around the clock, for threats that could ultimately impact patient safety, or cause an expensive and damaging data breach, is beyond the reach of most HDOs.  

Forescout addresses these challenges. In this 30-minute webinar, you will: 

Gain a deeper understanding of the importance of, and challenges associated with, real-time medical device inventories 

Learn how Forescout can more accurately discover and inventory all medical devices across your digital terrain 

Discover how Forescout provides 24/7 security monitoring, threat detection, investigation, hunting and response for HDOs 

Explore key use cases for compliance, incident investigation and risk reduction

24/7 Healthcare Security & Compliance, with Forescout

With the rapidly evolving threat environment, CIOs and CISOs now recognize the importance of in-depth device and network visibility for their OT/ICS environments to support effective, real-time identification and management of operational and cyber risks. But getting a comprehensive view of managed and unmanaged devices, and archiving and querying this data for historical analytics, has been a challenge. And building and managing a 24/7 team with the domain-specific expertise required to effectively monitor these devices and investigate and respond to threats, can be prohibitive for many enterprises. 

Forescout addresses these challenges. In this 30-minute webinar, you will: 

Gain a deeper understanding of the importance of, and challenges associated with generating a complete OT asset inventory of connected IP and serial devices. 

Learn how Forescout can more accurately discover and inventory all OT assets across your digital terrain, and monitor network communications to assess security and operational risks 

Discover how Forescout provides 24/7 security monitoring, threat detection, investigation, hunting and response 

Explore key use cases for compliance, incident investigation and risk reduction

24/7 Cybersecurity for OT/ICS

A First Health and Forescout Partnership 

Advancements in technology-enabled healthcare have led to explosive growth in the interconnectivity of IoT, OT, IT, and medical devices, increasing the attack surface and vulnerability of critical-care systems.  

As digital systems, devices, and data continue to support this increasingly borderless healthcare environment, healthcare entities will require highly skilled expertise to operationalize programs, execute ongoing device assessments, and enable complete visibility across their digital terrain. The First Health and Forescout partnership takes an innovative approach to connected device risk management by automating the technical data collection, mitigation, and risk reduction measures for a healthcare system’s entire connected asset ecosystem.  

Join speakers Tamer Baker, VP of Forescout Global Healthcare, and Matt Dimino, CSO of Clinical and OT at First Health Advisory, as they discuss this innovative partnership and how it can enable complete control over your healthcare enterprise system for a more secure future.  

Tamer Baker is a professional with nearly 20 years of experience helping organizations achieve their security and business goals through technology. Tamer is responsible for assisting HOs with their cybersecurity, medical device security, and zero trust projects by optimizing their technology and translating regulatory compliance into policies that align with NIST, CIS, the DoD’s Comply-to-Connect program, zero trust, and other frameworks.  

Matt Dimino is a professional with over 16 years of experience helping the nation’s public health sector and critical infrastructures prepare for tomorrow’s IoMT cyber threat landscape. Matt’s unique clinical, HTM/BioMed, Security, and leadership experience bring unparalleled depth to the Clinical & Operational service line of First Health where he has developed multiple security programs, risk assessments, and integrated complex architectures.

An Innovative Approach to Connected Device Risk Management

In manufacturing and critical infrastructure networks, the risks stemming from the increased use of Industrial IoT devices for process measurements and control and the connectivity of OT and IT systems for efficiency and automation makes critical process networks more exposed. Without proper visibility into OT networks and devices, it is impossible for OT organizations to determine the extent and impact of a breach on the IT network to critical processes, and may cause preventive and very costly shutdowns like in the case of Colonial pipelines. 

The recent OT:ICEFALL report demonstrates that attackers don’t even need to rely on zero-day vulnerabilities to compromise IoT/BAS/OT devices, they can simply rely on their “insecurity by design”. These devices need an increased level of visibility and monitoring, to ensure they remain secure and potential intrusions do not impact business and operational continuity. 

  

In this webinar, Daniel Trivellato, Forescout VP Product and Engineering, analyzes the risks posed by these exposed and unmanaged devices connected to your critical processes.  

Find out:   

 - Which devices may be a threat to your operational continuity 

 - How Forescout can help you reduce operational and security risks in IoT/BAS or OT/ICS environments 

 - How to get a quick demonstration of this value

Building Cyber Resiliency for Your OT Network

The growth and exposure of IoT devices and their connectivity with Building Automation Systems (BAS) devices offer attackers alternative ways to compromise business continuity for a financial institution: attackers do not need to reach and compromise critical servers directly, they can exploit IoT/BAS to compromise the infrastructure around them, by e.g. shutting down power or cooling of server rooms; they can compromise physical access control systems to gain unauthorized to buildings or rooms, or to prevent authorized personnel from accessing them; or they can disrupt HVAC or elevator systems on a hot day causing health and safety concerns.
In this webinar, Daniel Trivellato, VP of Product and Engineering at Forescout, analyzes the risks posed by these exposed and unmanaged devices connected to your critical processes.  

Find out:   

 - Which devices may be a threat to your operational continuity 

 - How Forescout can help you reduce operational and security risks in IoT/BAS or OT/ICS environments  

 - How to get a quick demonstration of this value

Expose Unmanaged Devices Across Your Digital Terrain

Threat Intelligence and Hunting Nation-State Actors and Threats: A Closer Look at Russian Cyber Activity 

The Russian invasion of and war in Ukraine has been marked by persistent attacks from Russia and Russian-sympathizer hacking groups on Ukraine and supporting entities.  

In this webinar, we’ll give:  

A breakdown of the current state and past timeline of Russian cybersecurity attacks
The step-by-step process cybercriminals use to exploit access and attack corporate networks 
A look into the recent evolution of ransomware as the leading cybersecurity threat of 2021 
The benefits of Forescout Frontline and how our security analysts assess an organization’s baseline risk exposure to cyberattacks.
 
Speaker: Shawn Taylor, Forescout Vice President, Threat Defense

Threat Intelligence and Hunting Nation-State Actors and Threats

Forescout's Vedere Labs announced on June 21 the disclosure of "OT:ICEFALL": 56 vulnerabilities related to insecure-by-design functions affecting devices from 10 major operational technology (OT) manufacturers.
 
Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, change the logic, files or firmware of OT devices, bypass authentication, compromise credentials, cause denials of service or have a variety of operational impacts.
 
The products affected by OT:ICEFALL are known to be prevalent in industries that are the backbone of critical infrastructures such as oil and gas, power generation and distribution, manufacturing, water treatment and distribution, and building automation. Many of these products are sold as 'secure by design' or have been certified with OT security standards.
 
Tune in to understand:
• Why the lack of basic security controls, which has been exploited in the past by real-world malware, is the biggest issue facing OT security
• The impact of OT:ICEFALL on OT certification, risk management, supply chains, and offensive capabilities
• Strategies and actions that asset owners should take to mitigate risk
 
Speakers:
Daniel dos Santos, Head of Security Research, Vedere Labs

OT:ICEFALL – How to Tackle a Decade of Insecure-by-Design Practices in OT

Organization are quickly adapting to support a global remote workforce and preparing for this to become the new norm. This shift has left IT security teams scrambling to sustain cyber hygiene and bolster cybersecurity to address escalated risk. 
Nick Duda, Principal Security Engineer of HubSpot, shares what he and his peers have learned during this time and what actionable steps you can take to improve visibility and control of VPN-connected devices.
In this webinar, you will learn how to: 
•Increase network admission data to better secure remote devices
•Update device classification policies to improve controls
•Leverage third-party technology integrations to strengthen endpoint defenses

Getting Richer Visibility and Classification of Remote Devices

Devices

IoT Security

ForeScout

Remote Access

IT Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Getting Richer Visibility and Classification of Remote Devices

Presented by

About this talk

More from this channel