Name: Decoding Magecart/Web Skimming Attacks During the Rise in Digital
Start: 2020-05-13T05:00:00Z
End: 2020-05-13T05:01:01.000Z
Location: BrightTALK
Rating: 4.6

Looking for expertise and information to advance your career and tackle your challenges? Subscribe and join us for the educational webinars in APAC time zone. Earn CPEs quickly and at no cost by attending webinars: 1 hour of webinar equals 1 CPE. We welcome members and non members alike.

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: A 'Crash Course' for Security Newbies

CCSP合格者が、合格の秘訣についてディスカッションします。CCSPについて、Webinar内で直接質問いただけます。 
  
より多くの企業がクラウドに移行する中、クラウドセキュリティのプロフェッショナルの需要が高まっています。世界的に認められているCCSPを取得することで、クラウドにおけるデータ、アプリケーション、インフラを設計・管理・保護するための高度な知識とスキルを有していることをアピールできます。 
 
本セミナーでは、CCSP資格についてご紹介した後、ライブQ&AでCCSPに関する質問にお答えします。認定要件、ドメイン、自習用リソース、トレーニング戦略、キャリアパスなどについて解説し、試験当日の準備に自信を持てるようサポートします。 
 
このウェビナーでは、以下を共有します。 
- CCSPはどのようにサイバーセキュリティの基礎的な理解を構築するのでしょうか。 
- ベンダーニュートラルな認定資格が求められる理由 
- どのようなトレーニングツールがあるのか 
  
是非、ご参加ください。

パネリスト：
諸角 昌宏 (保有資格：CCSP)
ISC2 認定講師

末吉 亜樹子（保有資格：CISSP、CCSP）
株式会社NTTデータグループ 
技術革新統括本部 部長

大島 悠司（保有資格：CISSP、CCSP）
ニューリジェンセキュリティ株式会社
クラウドセキュリティアーキテクト

モデレーター：
小熊 慶一郎 （保有資格：CISSP） 
ISC2 Director of Business Development, Japan

CCSP EXAM READY:  CCSP合格者が、合格の秘訣についてディスカッションします

Artificial intelligence developers have made huge strides in recent months, transforming a wide variety of human endeavors. Unfortunately, that includes ransomware. Attend this webinar and get expert insights and forecasts about the trends we can expect to see as ransomware—already a significant and costly threat—gains new, AI-based capabilities, including: 
- Extreme customization of phishing, smishing, and email attacks 
- Relentless, automated attacks that could make current security strategies obsolete 
- Extreme optimization of attacks, from finding vulnerabilities to ransom negotiations 

Plus, see how you can fight back against the coming wave of threats using advanced strategies that incorporate AI. Like all technologies, AI can be used for good or ill. Attend this important webinar to understand how both threats and defensive strategies are being transformed by the AI revolution.

Presenter: Fleming Shi, Chief Technology Officer, Barracuda Networks AND Anastasia Hurley, Principal Product Marketing Manager, Barracuda Networks
Moderator: Yohanna Kho, CISSP

This Changes Everything: Ransomware in the Age of Artificial Intelligence

CISSP合格者が、合格の秘訣についてディスカッションします。CISSPについて、直接合格者に聞いてみましょう。
 
現在、世界中でサイバーセキュリティの安全が脅かされており、専門家が今ほど必要とされている時代はないでしょう。CISSP保持者は世界的に認知され、セキュリティリーダーとして活躍しています。CISSP資格を取得することは、一流のサイバーセキュリティプログラムを効果的に設計、開発、管理するために必要な能力を持っていることを証明することになります。
 
ライブQ&Aでは、CISSPに関する質問にお答えします。認定要件、ドメイン、自習用リソース、トレーニング戦略、キャリアパスなどについて解説し、試験当日の準備に自信を持てるようサポートします。
 
このウェビナーでは、以下を共有します。
- CISSPはどのようにサイバーセキュリティの基礎的な理解を構築するのでしょうか。
- ベンダーニュートラルな認定が求められる理由
- どのようなトレーニングツールがあるのか
 
是非、ご参加ください。

パネリスト：
小林 浩史（保有資格：CISSP） 
ISC2 認定主任講師、
グローバルセキュリティエキスパート株式会社 (ＧＳＸ) 
コンサルティング本部　教育事業部

末吉 亜樹子（保有資格：CISSP、CCSP）
株式会社NTTデータグループ 
技術革新統括本部 部長

三原 千穂（保有資格：CISSP）
株式会社 東芝 
技術企画部 サイバーセキュリティセンター
 
モデレーター：
小熊 慶一郎 （保有資格：CISSP） 
ISC2 Director of Business Development, Japan

CISSP EXAM READY: CISSP合格者が、合格の秘訣についてディスカッションします

Despite the growing awareness of ransomware threats and an availability of numerous tools, the Asia Pacific and Japan (APJ) region continues to witness a significant rise in victim companies. In the latest State of the Internet report, Akamai’s threat researchers meticulously examine the evolving ransomware landscape. Gain deep insights into the ‘who, what, and how’ aspects, especially concerning APJ, alongside Reuben Koh, a contributor to the report. 

Join us for this session to understand: 
- The evolving tactics and prominent trends in ransomware 
- Which ransomware operators are currently dominating the scene in APJ 
- Which industries are bearing the brunt of these attacks 
- The most potent attack techniques employed 
- How to better defend against ransomware

Presenter: Reuben Koh, Director, Security Technology and Strategy, APJ, Akamai
Moderator: Emily Kong, CISSP, CCSP

What’s Changing in Ransomware for Asia Pacific: Who, What and How?

The impact of artificial intelligence (AI) on the cybersecurity industry is among the hottest topics discussed and debated amongst security professionals. From a positive perspective, AI has infused a myriad of threat detection and prevention platforms with newfound methods for uncovering sophisticated threats. It has also helped short-staffed security teams automate complex processes, such as incident validation and response. But AI also comes at a price. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he addresses the good, the bad, and the ugly outcomes of artificial intelligence.

The Impact of Artificial Intelligence on the Cybersecurity Industry

Governance, risk and compliance (GRC) professionals play a vital role in organizations, aligning IT goals with objectives as they manage cyber risks and achieve regulatory needs. Learn how CGRC certification demonstrates that you have the knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within an organization.

Join us to learn more about:
- What is GRC?
- Why is GRC important for cybersecurity?
- What are the core global frameworks?
- How is GRC relevant in every industry?
- What is the pathway to CGRC?

Save your spot today!

Moderator: Brandon Dunlap
Panelists: 
AJ Yawn, Partner in Charge, Product and Innovation
Mohamed Malki, Director, Enterprise Security Architecture
Chris Stanley, Exam Content Developer

Everything You Need to Know about CGRC

Cybercriminals are deploying sophisticated new kinds of phishing attacks that are undetectable by traditional email security solutions—and even by some of the most advanced solutions. Attend this webinar to get a detailed explanation of how these new phishing techniques exploit online tools, special characters, and image-only emails to evade detection and commit fraud or credential theft leading to data breaches and other costly impacts. At the webinar, you’ll see analyses of several real-world attacks uncovered by Barracuda threat teams—and you’ll discover how new strategies and technologies can keep your organization and users safe by spotting and blocking these dangerous threat tactics.

Presenter: Nishant Taneja, Senior Director, Product Marketing, Barracuda Networks; Prebh Dev Singh, Manager, Product Management, Barracuda Networks
Moderator: Sukhdev Singh, CISSP, CCSP, Member, (ISC)² Singapore Chapter

Using AI to Shut Down Sophisticated New Phishing Threats

Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced CISSP Training with AI-driven adaptive learning. Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder, and go into the CISSP exam with confidence.

You’ll learn:
• Why it makes training more efficient busy professionals 
• What makes it a more efficient route to exam readiness
• How artificial intelligence tailors learning to your needs
• And much more

New! AI-Driven Adaptive Learning for CISSP from ISC2

Since 2003, the OWASP Top 10 project has been the authoritative list of information prevalent to web application vulnerabilities and the ways to mitigate them. This year, OWASP are making updates to their API Security Top 10 list, which focuses specifically on the top ten vulnerabilities in API security and provides guidance on how to increase security. The list is available on the OWASP website: https://owasp.org/API-Security/editions/2023/en/0x11-t10/

Join our webinar as we go into detail on: 
- The new updates to the OWASP API Security Top 10 list. 
- The state of API security in 2023 and the reasons behind the OWASP Top 10 list updates. 
- The best form of defense for API security vulnerabilities. 

This session will conclude with a live Q&A where you’ll have the opportunity to ask your API security questions to our Barracuda expert.

Speakers: Tushar Richabadas, Senior Product Marketing Manager, Barracuda Networks; Anshuman Singh, Senior Director of Product Management, Barracuda Networks
Moderator: Cyril Tan, CISSP, Volunteer Outreach Director, (ISC)² Singapore Chapter

OWASP Top 10 API Security Risks For 2023

Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced CCSP Training with AI-driven adaptive learning. 

Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder, and go into the CCSP exam with confidence.

You’ll learn:
• Why it makes training more efficient busy professionals 
• What makes it a more efficient route to exam readiness
• How artificial intelligence tailors learning to your needs
• And much more

Presenters:
Jon Duggan, Associate Director, Learning Experiences, ISC2
Benjamin Grosvenor, Chief of Staff, OBRIZUM Group
Giovanni Bruere, VP of Sales, OBRIZUM Group


Moderator:
Brandon Dunlap

New! AI-Driven Adaptive Learning for CCSP from ISC2

ロシアのウクライナ侵略では改めてハイブリッド戦の実態が浮き彫りになりました。一方、東アジアでも地政学的緊張が高まっており、すでに欧米各国ではサイバーリスクの警戒レベルを一段上げる動きが顕著になっています。本セミナーでは、昨年から日本に対しても繰り返されているDDoS、Web攻撃についての特性をあらためて振り返るとともに、いま把握しておくべき用いられるWeb攻撃の手法の変化や標的の広がりをデータに基づき解説し、それらの変化に対して追加検討すべき打ち手を考察します。

学習の目的:
- DDoS攻撃の手法および標的動向の変化
- Web攻撃の手法および標的動向の変化
- 地政学的リスク

Presenter: 中西 一博, プロダクト・マーケティング・マネージャー, アカマイ・テクノロジーズ合同会社
Moderator: 岡本 裕治, CISSP, (ISC)² メンバー, (ISC)² Japan Chapter

地政学的緊張下で着目すべきDDoS, Web攻撃の手法および標的動向の変化

CISSP合格者が、合格の秘訣についてディスカッションします。CISSPに話を聞いてみましょう。
 
現在、世界中でサイバーセキュリティの安全が脅かされており、専門家が今ほど必要とされている時代はないでしょう。CISSP保持者は世界的に認知され、セキュリティリーダーとして活躍しています。CISSP資格を取得することは、一流のサイバーセキュリティプログラムを効果的に設計、開発、管理するために必要な能力を持っていることを証明することになります。
 
ライブQ&Aでは、CISSPに関する質問にお答えします。認定要件、ドメイン、自習用リソース、トレーニング戦略、キャリアパスなどについて解説し、試験当日の準備に自信を持てるようサポートします。
 
このウェビナーでは、以下を共有します。
- CISSPはどのようにサイバーセキュリティの基礎的な理解を構築するのでしょうか。
- ベンダーニュートラルな認定が求められる理由
- どのようなトレーニングツールがあるのか
 
是非、ご参加ください。

Panellists:
淵上 真一, CISSP, SSCP,  (ISC)² 認定主任講師;日本電気株式会社 サイバーセキュリティ戦略統括部  統括部長
大鐘 博子, CISSP,  GMOサイバーセキュリティ byイエラエ株式会社 高度解析部
稲葉 善典, CISSP ミツイワ株式会社 取締役, サービスエンジニアリング本部 EDAビジネス推進室 担当執行役員 兼 マーケティング企画部 担当執行役員
 
Moderator:
小熊 慶一郎, CISSP, (ISC)² Director of Business Development, Japan

Analyst reports are increasingly emphasizing that NetOps and SecOps teams with little to no integration fall short in areas of operational efficiency and the agility to respond to business needs. Security is challenged by increasingly advanced threats driven by nation-state and organized criminals. And networking teams struggle to fully embrace multi-cloud, hybrid work, and other initiatives. The good news is that these same reports are highlighting how increased communication, cooperation and integration of NetOps and SecOps can address a multitude of challenges, making each organizations more effective and efficient, and supporting a more flexible, agile business environment. Join this Infoblox webinar and discover how NetOps and SecOps teams can align their operations to help each achieve goals more efficiently. 

Discussion topics include: 
- Nine common challenges for NetOps and SecOps 
- Tips to make more efficient use of limited resources 
- 5 key areas where seemingly different objectives connect 
- Making compliance easier to do, and demonstrate to auditors
- How tighter NetOps/SecOps integration improves visibility for all

Presenter: Bob Hansmann, Senior Product Marketing Manager, Infoblox
Moderator: Sukhdev Singh, CISSP, CCSP, Member, (ISC)² Singapore Chapter

Bridging Gaps: Aligning NetOps and SecOps to Uplift Networking and Security

Join us for a live Q&A where our panel of experts will answer your questions about CCSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• Why vendor-neutral certification is in demand
• How CCSP complements vendor certifications
• What training tools are available
• And much more

Bring your questions and join us on Friday, June 9, 2023, at 1:00 p.m. ET

Save your spot now.

CCSP EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about SSCP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How SSCP proves your knowledge, skills and experience as an ISO-accredited certification
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

SAVE YOUR SPOT NOW.

SSCP EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CGRC EXAM READY: Ask the Experts Before You Sit

A record 73% of organizations were compromised by ransomware last year. However, the  percentage of respondents who expect a successful cyberattack in the coming year declined by 4%, from 76% to 72%. Has cybersecurity turned a corner?

CyberEdge’s Cyberthreat Defense Report (CDR) has become the standard for assessing organizations’ security posture, for gauging perceptions of IT security professionals and for ascertaining current and planned investments in IT security infrastructure.

Now in its tenth year, the 2023 CDR assesses the views of 1,200 IT security professionals representing 17 countries and 19 industries. It’s the most geographically comprehensive view of IT security perceptions in our industry.

Join ISC2 (a sponsor of this year’s study) and CyberEdge for highlights and key insights of the results, including:
• 85% of organizations suffered at least one successful cyberattack last year
• Double and triple extortion ransomware attacks are now the norm
• Overall concern for cyberthreats ticked down for the second straight year, the first multi-year decline in CDR history

Key Insights from CyberEdge's 2023 Cyberthreat Defense Report

With most of countries in a lockdown mode from COVID-19, our reliance on the internet is more than ever before. Unfortunately, the cyber threat actors are eyeing this sharp growth in online transactions.
 
The exposure to compromised websites including e-commerce is greater than ever with the uptick in web skimming cases reported in March. Web skimming attacks may worsen as more online services are consumed in the coming months. Through this webinar we will discuss:
 
• Internet and digital ecosystem in the backdrop of COVID-19
• Cyber threats – what have changed during COVID-19
• Growing threats of web skimming/magecart attacks and targeted industries
• Magecart attack vectors
• Attack examples 
• Measures taken in the industry – strengths and weaknesses

Join Akamai Technologies and (ISC)² on May 13, 2020 (Wed) at 13:00 (GMT +8) to learn about decoding magecart and web skimming attacks. 

Presenter: Aseem Ahmed, Senior Product Manager, Web Security (APAC), Akamai Technologies
Moderator: Tony Vizza, CISSP, CCSP, Director of Cybersecurity Advocacy, APAC, (ISC)²

Decoding Magecart/Web Skimming Attacks During the Rise in Digital

Cyber Security

Covid-19

Cyber Threats

Cyber Attacks

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Decoding Magecart/Web Skimming Attacks During the Rise in Digital

Presented by

About this talk

More from this channel