Name: 3 Lessons to Learn from Drupalgeddon 2
Start: 2018-07-20T22:30:00Z
End: 2018-07-20T23:02:41.000Z
Location: BrightTALK
Rating: 0

NSFOCUS provides a Complete Service Provider DDoS Mitigation Solution that protects both customers and infrastructure; while enabling providers to deliver Managed DDoS Services with a multi-tenant Platform that produces the lowest operating costs in the industry.

Spam, ransomware, ataque DDoS… ¿Busca una solución eficaz para proteger su infraestructura de las botnets? ¡Actúe ahora mismo! Deje que los expertos de NSFOCUS le presenten nuestro conjunto de herramientas de seguridad líder, únase a nuestro seminario web para aprender cómo garantizar un entorno seguro para sus dispositivos e infraestructuras.

Protegiendo tu infraestructura de las Botnets con NSFocus

The first half of 2020 witnessed the COVID-19 pandemic spreading rapidly and DDoS attacks taking place most frequently. Every organization should prepare for potential DDoS attacks and know how make your business immune to DDoS attacks and its effects...

What is a DDoS Attack and How NSFOCUS protects you against it

Botnets, one of the oldest threats on the internet, are still the most popular weapon in a hacker’s arsenal.  They offer ease of use, flexibility, and high availability, traits ideal for launching large-scale lethal cyber-attacks around the world. This webinar will present highlights from the NSFOCUS 2018 Botnet Trend report including an overview of botnet activity and insight into the four most prominent botnet families active today. The attendee should be able to better identify botnet activity based on the recommendations provided.

Botnets-They Keep Going...and Going....

NSFOCUS Security Labs research has seen a dramatic decrease in DDoS attacks between 2017 and 2018. We are in consensus with other TI vendors as to most of the driving factors behind this large scale reduction, except one. This webinar will show why NSFOCUS is breaking from the pack on one of the key factors leading to the significant decrease in DDoS attacks in 2018.

The DDoS Attacks Go Up and Down

JSA TV is proud to share the April installment of its 2019 Virtual CEO Roundtable series, "Blockchain & AI: The Next Gen Battleground for Cybersecurity". The roundtable is moderated by Gerry Christensen of Mind Commerce, and panelists include top industry executives, Guy Rosefelt of NSFOCUS, Mayande Walker of OpenCryptoTrust (OpenCT) and Dominic Steil of Dapps Inc.

With the onslaught of IoT and the growing reliance on AI-driven processes, networks and machines, cybersecurity is a critical concern. Enter blockchain, a distributed ledger that allows for public, decentralized transactions without the need for third-party intervention. Since the interaction is public, blockchain technology is often described not just as ‘reliable’, but also as ‘incorruptible infrastructure’. Is blockchain the next battleground arena for preventing cyberattacks? 

Watch the roundtable to learn what the latest developments and deployment timelines are and what we can expect in the year ahead in network security, blockchain and AI developments.

Blockchain and AI the Next Gen Battlefield for Cyber

Over the last few years, container technology has grown rapidly among many enterprises from large to small.  According to the RightScale 2018 State of the Cloud Report, over 50% of the enterprises has now adopted some kinds of container technologies. As with any other new technologies, containers have brought new security risks into those organizations’ infrastructure. What are these new risks, and how to asses and mitigate them have become some of the important questions in many of CIO and CISO’s mind. 

Recently, NSFOCUS and NeuVector jointly published the “2018 NSFOCUS Technical Report of Container Security” to address these questions. In this webinar, we will discuss some of the highlights from this report, focusing on the new attack vectors introduced by the container technology and the general way to protect against them. We will also discuss how to build security into your pipeline and introduce NeuVector’s run-time contain security solution.

Do you Know the Risks Contained in Your Container?

NSFOCUS showed in our “2018 H1 Cybersecurity Insights” report that "Recidivists are responsible for 40% of the attacks we saw on the internet, most of which are botnet activities and DDoS attacks". Since botnet activities and DDoS attacks are usually launched from multiple sources in a collaborative way, it's not surprising to see that many of these recidivists are working together as a group in these attacks.  We call these groups "IP Chain-Gangs" as most people had trouble pronouncing "recidivists”. Opening a new area of research, NSFOCUS recently published our “Behavior Analysis of IP Chain-Gangs” report documenting how, by using innovative techniques, we identify "IP Chain-Gangs" and study the behavior of the chain-gangs using DDoS attack data collected by NSFOCUS since 2017.  In this webinar, we will provide insights into this intriguing new research, explaining how we identify IP Chain-Gangs, how we characterize IP Chain-Gang behavior, and how future research can be used to improve botnet and DDoS mitigation.

That's the Sound of DDoS Working from an IP Chain-Gang

Recent evidence shows that a surprisingly high portion of vulnerabilities incorporated into malware or exploit kits are ranked low or medium severity. Counter to commonly-accepted practices, focusing only on high-severity vulnerabilities and setting a ‘cut-off’ point for lower scored issues, is not a safe or effective strategy. More importantly, proof-of-concept (POC) code for lower priority vulnerabilities is appearing more quickly after 0-day announcement leading to leading to widespread attacks equally as quickly.  NSFOCUS and Nopsec will delve into this recent trend, discuss some of these lower level vulnerabilities being quickly exploited, and provide some thoughts how to better protect against these in the future.

Low to High: Risk Adverse May Not Make the Most Risk Sense

According to observations from the NSFOCUS Threat Intelligence Center (NTI), nearly 20% of attack source IP addresses have initiated more than one type of attack. That and other attack type trends such as DDoS, malware and web intrusions  are only on the rise.  The NSFOCUS 2018 H1 Cybersecurity Insights Report shows how bad the threat landscape was for the first half of this year and predicts what it will be like for the remainder. This webinar shows the driving forces behind these trends and what you can do to prepare for them.

Worse than Pests: Cyber Attackers Keep Coming Back

Dado que los ataques dirigidos a las aplicaciones web son cada vez más frecuentes, es más importante que nunca que las organizaciones comprendan cómo protegerse contra los atacantes que apuntan a todos los niveles de la infraestructura. Los malintencionados están utilizando tecnologías, herramientas y conocimiento para explorar dónde eres más susceptible al ataque. Aunque eres susceptible de atacar, no tienes que ser vulnerable.
Si usted es como la mayoría de las organizaciones, ya tiene una solución DDoS implementada, pero eso podría no ser lo suficientemente bueno. Cada vez más, los expertos recomiendan alejarse de los puntos únicos de falla, duplícalos o a veces triplicar, las soluciones de mitigación DDoS.
Al adoptar una estrategia de mitigación DDoS híbrida (capacidad local y nube), las organizaciones tienen la mejor ruta hacia la resiliencia y eficiencia operativa en el evento de un ataque DDoS.

Consideraciones adicionales
• ¿Cómo estás definiendo la mitigación?
• Si está utilizando una compañía de mitigación DDoS, ¿cuál es el mejor momento de mitigar?
• ¿Tiene solución de nube como opción de failover?
• ¿Estás haciendo todo lo que puedes para proteger a tu organización contra el próximo ataque?
• NSFOCUS Holistic Hybrid Security
• NSFOCUS Threat Intelligence

Reserve su asiento hoy mismo para comprender cómo proteger y consolidar su negocio cibernético frente a los ataques DDoS

[SPANISH] Cómo proteger y consolidar su negocio cibernético de los ataques DDoS?

As attacks targeting web applications are becoming more frequent, it’s more important than ever for organizations to understand how to protect against attackers targeting all levels of the infrastructure. Attackers are using technologies, tools, and reconnaissance to scout where you are most susceptible to assault. Although you are susceptible to attack, you don’t have to be vulnerable.

By adopting a two-solution DDoS mitigation strategy – employing one mitigation downstream to defend at the point of attack and the other upstream to provide protection closer to the attacker before it reaches your network – organizations have the best path to resiliency and operational efficiency in the event of a DDoS attack.

Additional considerations
•How are you defining detection?
•If you’re using a DDoS mitigation company, what’s the time to mitigate?
•Do you have cloud solution as failover option?
•Are you doing all that you can to protect your organization against the next attack?
•NSFOCUS Holistic Hybrid Security Solutions
•NSFOCUS Threat Intelligence  

Reserve your seat today to understand how Protect and Consolidate Your Cyber Business from DDoS Attacks

Protect and Consolidate Your Cyber Business from DDoS Attacks

In the past few years, with the proliferation of IoT devices,  IoT security becomes a hot topic. Earlier this year, researchers at NSFocus put together a “2017 Annual IoT Cybersecurity Report”, surveying the IoT landscape and the new threats from them. In this webinar, we will highlight the important findings and opinions in this report. Topics include:
•Survey of the exposed IoT devices. 
•Various vulnerabilities in these IoT devices. 
•Threat analysis from these IoT devices. 
•How to protect the IoT devices.

What and Where Were the Top IoT Cyber-Threats in 2017?

This is an opportunity for all Fintech security professionals to take a deep dive into the current and future threats targeting the technology that drives the financial sector.
This briefing will present highlights of the joint NSFOCUS and Ping An Financial Security Research Institute authored report “2017 Fintech Security Analysis Report”. Topics include: 

•An analysis of Fintech from the perspective of the Internet
•The development history of and current trends in Fintech
•Typical Fintech cybersecurity threats, data security threats, and business security threats
•The current security posture of Fintech institutions and the security trends that they should be aware of. 

Reserve your seat today to learn how to better arm yourself against the next generation of threats against Fintech.

FinTech Security: Cyberthreats Today and Tomorrow

Abstract:  Can you afford not knowing how bad your provider's IP reputation is?  How likely are IP addresses adjacent to you of being infected with malware or participating in botnets?  

NSFOCUS has been tracking the reputation of IP addresses globally by ASN for over a year and recently released the August 2017 Global IP Reputation report.  Some interesting patterns have emerged worldwide as the number of IP addresses added to reputation lists continues to increase due to Mirai, WannaCry  and other malware infecting the Internet of Things.

NSFOCUS SecLab is tracking IP reputation across 9 categories, including SPAM, DDoS, botnets, and web attackers.  This talk will present global IP reputation trends and rank the countries with the worst IP reputation…and it may not be China.

Adventures in TI: What is your IP Reputation?

This year the cyber-security realm has experienced a few dramatic emerging trends to include a couple of the largest denial-of-service attacks and ransomware outbreaks in history. Follow NSFOCUS as we take a deeper look into these DDoS attacks and some of the processes that now seem to be tied to the overall attack-chain. Additionally, we will learn how protective measures such as Threat Intelligence and cloud-based DDoS defenses are adding value to circumvent and mitigate attack efforts from various threat actors.

Emerging DDoS Trends 2017: Empty Threats & Real Attacks

The ‘Shadow Brokers’ have recently released a new cache of malware exploits into the wild in which our NSF Threat Intelligence Researchers were able to reverse engineer and ‘sandbox’ for analytical purposes. With this noted, very sophisticated malware strains developed at the ‘State-Sponsored’ level by such entities as NSA are now readily available and primarily targeting vulnerabilities identified in Microsoft OS’s and MS applications. 

This will be the second installment to my previous BrightTalk presentation that will take a deeper look into specific exploits released by the Shadow Brokers and their attributed TTP’s (Techniques, Tactics, Procedures) and how NSFOCUS’s Threat Intelligence can assist in securing your security posture.

Join NSFOCUS in this event to discuss:

•What are the exploits Fuzzbunch, Dandersprit, and OddJob and their associated campaigns?

•How can NSF’s Threat Intelligence Portal and Reputation Feeds protect you and your company against these recently released malwares?

•Gain a better understanding of TI components to include ‘Strategic’ and ‘Tactical’ information and how knowledge of these exploits will help protect your company from future compromise.

NSA Hacking Tools Exposed Pt 2: Are You Protected?

• An in-depth analysis of the Drupal vulnerabilities: CVE-2018-7600 & CVE-2018-7602
• NSFocus & NopSec's research findings about the Drupal Vulnerabilities
• Common themes with php vulnerabilities & how to protect your organization from them

3 Lessons to Learn from Drupalgeddon 2

Drupal

Drupalgeddon

Cyber Security

Vulnerability Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

3 Lessons to Learn from Drupalgeddon 2

Presented by

About this talk

More from this channel