Hi [[ session.user.profile.firstName ]]

RiskIQ Threat Hunting Workshop - Additional Investigations Series

Building on the success of our physical and virtual Threat Hunting Workshops, we are launching a new workshop series designed for previous workshop attendees to help hone their investigative skills. These shorter 30-45 minute sessions will focus on new investigations of current threats using both the PassiveTotal user interface and API.

Attend and Learn:

How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
How to automate and accelerate investigations using the PassiveTotal API

Additionally, you will receive 1 CPE credit for attending the workshop.
Recorded Jul 29 2020 32 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Jamil Mirza, Principal Solutions Architect, EMEA
Presentation preview: RiskIQ Threat Hunting Workshop - Additional Investigations Series

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • EMEA Cyber Threat Workshop Jun 23 2021 9:00 am UTC 120 mins
    Jamil Mirza, Christoffer Sandlund
    For several years now our Threat Hunting Workshops have been helping security practitioners conduct better investigations by uncovering the adversary infrastructure behind indicators of compromise.

    Building on the existing course format,  we are expanding the scope of these workshops to incorporate new techniques such as attack surface intelligence,  reputation scoring and deep dark web search to help you better assess the relevance of a threat based on it's potential impact to your organization.

    Our next free to attend workshop will take place on June 23rd at 10am BST and will cover:

    - An introduction to security intelligence
    - Techniques for cyber threat analysts
    - How to leverage attack surface intelligence for faster threat investigations and response
    - Real-world use cases with hands-on investigation exercises

    All participants will be given a promo code that grants full access to the RiskIQ Illuminate platform so you can participate in the exercises and continue your practice after the event.

    Additionally, you will receive an attendance certificate and 2 CPE credits for attending.
  • Cyber Threat Hunting avec RiskIQ, 26 mai Recorded: May 26 2021 118 mins
    Miguel Battais, Pedro Silva, Agnès Hardy-Vayssière
    Nous avons le plaisir de vous inviter à notre nouvel atelier de Threat Hunting qui se tiendra le mercredi 26 Mai 2021 à 10h00.

    Depuis l’inauguration de ses ateliers de threat hunting virtuels en avril 2020, RiskIQ EMEA a aidé plus de 1800 analystes à développer leurs talents de Threat Hunters, quel que soit leur niveau, grâce à la plateforme RiskIQ PassiveTotal et ses datasets Internet avancés.

    Si vous êtes amené(e) à conduire des recherches sur des menaces venant d’Internet ou sur des cybercriminels et que vous faites partie d'une équipe SOC, de réponse à incident ou de CTI, cet atelier est pour vous.

    Peu importent les méthodes employées, aussi diverses soient-elles, les cybercriminels ne peuvent pas éviter d’interagir avec Internet. Depuis plus de 10 ans, RiskIQ capture ces signaux éphémères et les met à votre disposition.
    Les datasets Internet avancés et complets vous permettent de mener vos investigations plus rapidement et de comprendre l'infrastructure utilisée par les attaquants.

    Durant cet atelier en direct de 2h, vous apprendrez :

    - Des méthodologies de Threat Analysis
    - Comment utiliser les datasets avancés à RiskIQ pour conduire des investigations plus poussées et complètes,
    - Comment tirer profit du portail de Threat Intelligence de PassiveTotal pour vous faciliter la tâche lors de vos investigations et les rendre plus rapides.

    L’atelier inclut également une série d’exercices et de travaux d’investigation. Les participants recevront un code promotionnel leur donnant un accès illimité à PassiveTotal afin de pouvoir participer aux exercices en direct et continuer de s'entraîner après l’événement.

    De plus, vous recevrez un certificat de participation et 2 crédits CPE en fin d’atelier.


    Date : Mercredi 26 mai 2021
    Heure : 10h, CET--
  • EMEA Threat Hunting Workshop - Additional Investigations Series, #5 Recorded: May 5 2021 45 mins
    Jamil Mirza, Principal Solutions Architect, RiskIQ
    We are hosting our next Additional Investigations workshop on the Wednesday 5 May. These shorter 30-45 minute workshops are designed for threat analysts who have attended one of our full Threat Hunting Workshops in the past and focus on all new investigations of current threats using both the PassiveTotal user interface and API.

    Attend and Learn:

    How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
    How you can use RiskIQ's Threat Intelligence Portal to speed up your investigations
    How to automate and accelerate investigations using the PassiveTotal API

    Additionally, you will receive 1 CPE credit for attending the workshop. Register Today.

    Date: Wednesday 5 May
    Time: 10 am BST, 11 am CEST
  • RiskIQ EMEA Threat Hunting Workshop with all new investigations Recorded: Mar 31 2021 122 mins
    Jamil Mirza, Christoffer Sandlund
    After gaining an understanding of the RiskIQ PassiveTotal features and datasets you have at your disposal, we will set you the task of investigating 3 current cyber threats to determine:
    - the nature and extent of the threat
    - whether your organisation is potentially vulnerable or has potentially been compromised
    - the full set of indicators and artefacts that need to be considered in your response
    If you work in a SOC or Incident Response team, or occasionally get involved in researching Internet based threats and threat actors, this workshop is for you. 

    In this free 2 hour virtual workshop you will learn:

    - Methodologies for threat analysis
    - How RiskIQ’s unique data sets can be used to build-out more thorough investigations
    - How to leverage the PT’s Threat Intel Portal to save time and effort in your investigations

    All participants will be given a promo code that grants full access to the PassiveTotal platform so you can participate in the exercises and continue your practice after the event.

    Additionally, you will receive an attendance certificate and 2 CPE credits for attending.
  • Cyber Threat Hunting avec RiskIQ Recorded: Mar 10 2021 108 mins
    Pedro Silva, Miguel Battais
    Depuis l’inauguration de ses ateliers de threat hunting virtuels en avril dernier, RiskIQ EMEA a aidé plus de 1500 analystes à développer leurs talents de Threat Hunters, quel que soit leur niveau, grâce à la plateforme RiskIQ PassiveTotal et ses datasets Internet avancés. C’est avec grand plaisir que nous pouvons annoncer qu’en 2021, notre série d’ateliers de Threat Hunting continuera en français. Premier rendez-vous le 10 mars 2021.

    Si vous travaillez dans un SOC ou une équipe de Réponse aux Incidents, ou que vous êtes de temps à autre amené(e) à conduire des recherches sur des menaces venant d’Internet ou sur des cybercriminels, cet atelier est pour vous.

    Peu importent les méthodes employées, aussi diverses soient-elles, les cybercriminels ne peuvent pas éviter d’interagir avec les composants clé d’Internet. Depuis plus de 10 ans, RiskIQ capture ces signaux éphémères et les met à votre disposition sous forme de datasets Internet riches, avancés et complets afin que vous puissiez les utiliser lors de vos investigations. En tant qu’Analyste Sécurité, plus vous avez de données à investiguer, moins les cybercriminels peuvent se cacher.

    Durant cet atelier en direct de 2h, vous apprendrez :

    - Des méthodologies de Threat Analysis
    - Comment utiliser les datasets propres à RiskIQ pour conduire des investigations plus poussées et complètes,
    - Comment tirer profit du Portail de Threat Intelligence de PassiveTotal pour vous faciliter la tâche lors de vos investigations et les rendre plus rapides.

    L’atelier inclut également une série d’exercices et de travaux d’investigation. Les participants recevront un code promotionnel leur donnant un accès illimité à PassiveTotal afin de pouvoir participer aux exercices en direct et continuer de s’entrainer après l’événement.

    De plus, vous recevrez un certificat de participation et 2 crédits CPE en fin d’atelier.


    Date : Mercredi 10 mars 2021
    Heure : 10h, CET
  • JARM, SolarWinds, and Threat Hunting Recorded: Feb 12 2021 120 mins
    Cory Kennedy and Benjamin Powell, RiskIQ
    In this workshop RiskIQ researchers build-out a full investigation starting from a single, known-malicious IOC and expand the hunt to find all related and similar infrastructure. Our experts then walk through RiskIQ's advanced data sets and how we can use them along with trackers like JARM to accurately expand the investigation to illuminate the attack surface of threat actors.

    In this session, we'll also be hunting for SolarWinds Orion servers on the internet and review all of the ways to find them.
  • RiskIQ & Crowdstrike Virtual Threat Hunting Workshop Recorded: Feb 8 2021 119 mins
    Benjamin Powell - RiskIQ, Brendan Kremian - Crowdstrike
    RiskIQ & CrowdStrike host a joint workshop with integrated use cases leveraging the integration between RiskIQ PassiveTotal and Crowdstrike Falcon EDR and Falcon Intelligence
  • EMEA Threat Hunting Workshop - Additional Investigations Series, #4 Recorded: Feb 3 2021 39 mins
    Christoffer Sandlund, EMEA Solutions Architect, RiskIQ
    We are hosting our first Additional Investigations workshop of 2021 on the Wednesday 3 February. These shorter 30-45 minute workshops are designed for threat analysts who have attended one of our full Threat Hunting Workshops in the past and focus on new investigations of current threats using both the PassiveTotal user interface and API.

    Attend and Learn:

    How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
    How you can use the new Threat Intelligence Portal to speed up your investigations
    How to automate and accelerate investigations using the PassiveTotal API

    Additionally, you will receive 1 CPE credit for attending the workshop. Register Today.

    Date: Wednesday 3 February
    Time: 10 am GMT, 11 am CET
  • EMEA Threat Hunting Workshop, January 13, 2021 Recorded: Jan 13 2021 101 mins
    Jamil Mirza, Christoffer Sandlund
    RiskIQ is kicking off 2021 with a new EMEA Threat Hunting Workshop series beginning with our first workshop on January 13. Since our move to virtual workshops last April, RiskIQ has trained over 1500 security analysts across EMEA in both basic threat hunting skills and advanced techniques, all using RiskIQ PassiveTotal and its rich Internet datasets.

    If you work in a SOC or Incident Response team, or occasionally get involved in the research of Internet based threats and threat actors, this workshop is for you.

    As much as malicious actors change their tactics, they can’t avoid interacting with core components of the internet. RiskIQ has been capturing these ephemeral signals for over 10 years, curating rich Internet datasets you can leverage in your investigations. As a threat analyst, the more threat data sets you have at your disposal, the fewer places they can hide.

    In this live 2 hour virtual workshop you will learn:


    * Methodologies for threat analysis
    * How RiskIQ’s unique data sets can be used to build-out more thorough investigations
    * How to leverage the PT’s Threat Intel Portal to save time and effort in your investigations

    The workshop also includes a series of hands-on exercises and investigations. All participants will be given a promo code that grants full access to the PassiveTotal platform so you can participate in the exercises and continue your practice after the event.

    Additionally, you will receive an attendance certificate and 2 CPE credits for attending.
  • EMEA Threat Hunting Workshop - Additional Investigations Series, #3 Recorded: Nov 18 2020 32 mins
    Jamil Mirza, Principal Solutions Architect, EMEA
    Designed for security analysts that have recently attended one of our 2 hour virtual Threat Hunting Workshops, these shorter format workshops focus on a small number of new exercises based on current threats and highlight more advanced threat hunting techniques.

    Attend and Learn:

    * How you can use the new Threat Intelligence Portal to speed up your investigations
    * How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
    * How to automate and accelerate investigations using the PassiveTotal API

    Additionally, you will receive 1 CPE credit for attending the workshop.
  • RiskIQ Digital Footprint Demo Recorded: Oct 28 2020 33 mins
    JT Wells, Senior Solutions Architect
    Enterprise security programs are being overwhelmed by rapid digital growth, which has only accelerated in the current pandemic. This expansion of the digital attack surface creates hidden risks and threats, mostly outside the firewall and out-of-sight.
    Unfortunately for infosec practitioners trying to keep up, there isn’t an easy way to identify external risks and threats with confidence. Many security teams and analysts still rely on manual data-stitching, spreadsheets, and legacy systems to manage risks. However, there’s a much better way.
    Watch our on-demand RiskIQ Digital Footprint demo to see how you could gain complete visibility into all the assets connected to you beyond the firewall and manage the vulnerabilities and exposures within your infrastructure.
  • FS-ISAC Situation Briefing - Germany Recorded: Oct 7 2020 51 mins
    John Salomon (FS-ISAC), Terry Bishop (RiskIQ), Evan Kohlmann (Flashpoint)
    FS-ISAC in partnership with Risk IQ and Flashpoint is cordially inviting you to its upcoming “Situation Briefing – Germany” on the 7th of October at 2pm CEST. This new series of Intelligence Briefings focuses on current trends in the Threat Landscape from a physical and cyber risk standpoint. It combines the collective expertise and insights from the largest Information Sharing Analysis Center in the world with leaders in the Threat Intelligence industry.



    Agenda:

    10 min, FS-ISAC, John Salomon: Global Intelligence Office most recent briefing.
    20 min, Risk IQ, Terry Bishop: Threat Landscape Update, Covid related threat vectors based on the Scam Nation report, how actors are monetizing the pandemic through partisan content farms and subscription traps. Following on from previous briefings on Magecart, RiskIQ will also present their latest research on the Inter Skimmer form skimmer which can currently be found on over 1,500 sites.
    20 min, Flashpoint, Rob Cook: The Far Right Movement Churns Across Europe. A look at the heightened physical activity in Europe from the far right, including propaganda and online communications.
  • RiskIQ EMEA Threat Hunting Workshop Recorded: Oct 7 2020 96 mins
    Jamil Mirza, Solutions Architect, EMEA
    RiskIQ is hosting another EMEA Virtual Threat Hunting Workshop on the 7th of October. If you are new to PassiveTotal or haven’t attended one of our workshops recently,
    this at-home live training has been designed for you. The 2 hour session includes practical threat hunting advice as well as hands-on exercises using RiskIQ’s unique advanced data set that enable quicker and more thorough investigations.

    Attend and Learn:


    Methodologies for threat analysis
    How RiskIQ’s unique data sets build-out investigations more thorough investigations
    How to use RiskIQ PassiveTotal
    Leveraging the Threat Intel Portal to save time and effort in your investigations
    Use Cases – A series of hands-on Exercises and Investigations
  • EMEA Threat Hunting Workshop - Additional Investigations Series, #2 Recorded: Sep 16 2020 40 mins
    Jamil Mirza, Principal Solutions Architect
    Designed for security analysts that have recently attended one of our 2 hour virtual Threat Hunting Workshops, these shorter format workshops focus on a small number of exercises based on current threats and highlight more advanced threat hunting techniques.

    Attend and Learn:

    * How you can use the new Threat Intelligence Portal to speed up your investigations
    * How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
    * How to automate and accelerate investigations using the PassiveTotal API

    Additionally, you will receive 1 CPE credit for attending the workshop.
  • Can You Find the Threat? Join our Threat Hunting Workshop to find out. Recorded: Aug 12 2020 107 mins
    Jamil Mirza, Principal Solutions Architect, EMEA
    RiskIQ is hosting another EMEA Virtual Threat Hunting Workshop on the 12th of August. If you are new to PassiveTotal or haven’t attended one of our workshops recently,
    this at-home live training has been designed for you. The 2 hour session includes practical threat hunting advice as well as hands-on exercises using RiskIQ’s unique advanced data set that enable quicker and more thorough investigations.

    Attend and Learn:


    Methodologies for threat analysis
    How RiskIQ’s unique data sets build-out investigations more thorough investigations
    How to use RiskIQ PassiveTotal
    Use Cases – A series of hands-on Exercises and Investigations


    Date: Wednesday 12 August
    Time: 10 am BST, 11 am CEST,

    Additionally, you will receive 2 CPE credits for attending the workshop. Register Today
  • RiskIQ Threat Hunting Workshop - Additional Investigations Series Recorded: Jul 29 2020 32 mins
    Jamil Mirza, Principal Solutions Architect, EMEA
    Building on the success of our physical and virtual Threat Hunting Workshops, we are launching a new workshop series designed for previous workshop attendees to help hone their investigative skills. These shorter 30-45 minute sessions will focus on new investigations of current threats using both the PassiveTotal user interface and API.

    Attend and Learn:

    How to leverage PassiveTotal's unique data sets to carry out more thorough investigations
    How to automate and accelerate investigations using the PassiveTotal API

    Additionally, you will receive 1 CPE credit for attending the workshop.
  • Detect & Protect Against COVID-Themed Social Engineering Recorded: Jun 26 2020 57 mins
    Jaclyn Blumenfeld (RiskIQ), Abigail Showman andAndras Toth-Czifra (Flashpoint)
    In the age of COVID-19, the U.S. Justice department has repeatedly warned businesses of an uptick in fraud schemes capitalizing on the global pandemic. Threat actors are impersonating news sources, charity organizations, financial institutions, government entities, medical suppliers, etc. to profit from the hype and confusion surrounding the Coronavirus. Threat actors have also been observed exploiting loopholes in banking systems to commit CARES Act fraud and targeting recipients to steal their personal data.

    Flashpoint and RiskIQ leverage their combined visibility into online illicit communities used for planning and promoting attack vectors, alongside the open web criminal infrastructure used to carry out Coronavirus-related scams. This webinar showcases real-life examples of these scams and highlight the methods that can be used to detect them combining research by RiskIQ and Flashpoint.
  • Can You Find the Threat? RiskIQ EMEA Virtual Threat Hunting Workshop Recorded: Jun 24 2020 109 mins
    Jamil Mirza, EMEA Solutions Architect, RiskIQ
    Given the current pandemic, we’ve had to cancel our planned series of physical Threat Hunting Workshops across EMEA. However, this same pandemic has expanded attack surfaces quicker and more radically than ever before and an organization’s threat hunters are now its front-line defenders against the associated spike in cyber threats.

    While we can’t see you in person we'll be running a virtual 2 hour version of our workshop to fortify your skills. This at-home live training includes brand new hands-on exercises using RiskIQ’s unique advanced data sets. We’ve designed it to introduce security analysts, incident responders, and SOC personnel to brand new methods and threat data sets that enable quicker and more thorough investigations.

    Attend and Learn:


    Methodologies for threat analysis
    How RiskIQ’s unique data sets build-out investigations more thorough investigations
    How to use RiskIQ PassiveTotal
    Use Cases – A series of hands-on Exercises and Investigations


    Date: Wednesday 24 June
    Time: 10 am BST, 11 am CEST,

    Additionally, you will receive 3 CPE credits for attending the entire workshop.
  • Triple Trouble: All Access is Remote Access Recorded: Jun 15 2020 45 mins
    Steve Ginty, Josh Mayfield
    In the wake of the worldwide response to COVID-19, enterprise digital programs are outpacing their security team’s ability to protect them: customers and carts, employees and websites, partners and portals, users and apps.

    The radical shift to a remote workforce is just one part of the story. Everyone, including employees, supply chains, third parties, are all dependent on secure connections and safe data flow.

    Whether you’re exploring billions of web components or millions of exposed services and targeted ports or identifying risky VPNs—the sheer magnitude of the digital attack surface can be daunting.

    Steve Ginty, RiskIQ’s Director of Threat Intelligence, will share how rapid demand for remote access has reshaped the enterprise attack surface.

    In this webcast, you will learn how to:

    Identify remote services: RDP, VPNs, and attacker accessibility
    Spot risky trends in your digital inventory, including third parties
    Calibrate risk and response with minimal user disruption
    Pinpoint threats and risks via internet reconnaissance
    Join RiskIQ’s Steve Ginty and Josh Mayfield as they explore the latest detection trends and what you can do to safeguard your digital enterprise.
  • JavaScript Threats: A Clear and Present Danger for all Online Merchants Recorded: Jun 5 2020 42 mins
    Terry Bishop, VP Technical Services, EMEA
    JavaScript attacks are a top security concern for any organization that acts as an online merchant.

    In the overwhelming majority of JavaScript attacks, threat actors like Magecart hide credit card skimmers deep inside client-side JavaScript to capture and exfiltrate credit card and other payment data from customers. RiskIQ has detected millions of skimmers on websites across the globe, and we’re continuing to detect new ones every hour. The current pandemic has only served to fuel this growth, with newly discovered skimmers up by 30% since March.

    However, most organizations lack visibility into their web-facing assets and the way their users interact with them. As a result, JavaScript compromises can go undetected for weeks or months, damaging customer relationships, brand reputation, and potentially incurring eye-watering fines.

    The good news is that RiskIQ offers a detection solution for these types of attacks that is quick and easy to implement, requiring no agents or web site changes.

    In this webinar, we’ll cover:

    A review of JavaScript attacks and why they’re different from other types of attack
    A closer look at card skimmers and how they work
    Current tactics threat actors are using to hide their injections to avoid detection
    We’ll also show how RiskIQ can enable your organization to be proactive in protecting your customers while avoiding the consequences of large scale personal data theft.
Attack Surface Management
Webinar topics cover securing your public facing web, mobile and social assets, combatting impersonation and rogue digital assets and discovering the digital assets owned by your cyber adversaries

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: RiskIQ Threat Hunting Workshop - Additional Investigations Series
  • Live at: Jul 29 2020 9:00 am
  • Presented by: Jamil Mirza, Principal Solutions Architect, EMEA
  • From:
Your email has been sent.
or close