Name: Travel & Loyalty Reward Program Vulnerabilities
Start: 2017-05-11T18:00:00Z
End: 2017-05-11T18:00:42.000Z
Location: BrightTALK
Rating: 5

Grown and shaped by market demand, Hold Security is a Cyber Security and Threat Intelligence company helping businesses of all sizes to stay secure.

Powered by the brightest security experts, Hold Security works with companies around the world to enhance their security posture. We play leading roles in discovery and investigations of major security breaches, with a proven track record of success.

Our new installment of threat intelligence techniques of learning from mistakes of others before making your own. We will discuss the most common mistakes companies still make leading to aggravating their security posture from bad to worse. We will dissect examples like ransomware attacks and negotiations, data exposures, and developers’ mistakes.

The Fine Art of Stepping on the Same Rake, Next Chapter.

With the US elections still months away, history indicates that they will be targeted by cyber attacks from various sources. Safeguarding the integrity of our election process is a complex task, with much of it falling within the purview of cybersecurity.  From potential disinformation campaigns to cyber attacks, impersonations, and large-scale outages, almost every imaginable threat vector could come into play during the upcoming election year. In our session, we will examine past and present patterns to chart a course for minimizing cyber interference in the 2024 elections.

Securing Elections 2024

Rather than relying on crystal ball predictions, we will examine patterns of evolution of cyber threats and cyber defenses over the recent past. We'll explore significant shifts in the threat landscape, spanning from hacktivism and ransomware to the advancement of AI and increase of insider threats. Join us as we look forward to the foreseeable future of cybersecurity.

Forward to Cyber Security 2024

Is it enough to be preoccupied with monitoring our perimeter and fending off attacks against our systems? No! This focus overlooks the root cause of these attacks originating from the Dark Web, where malicious actors congregate. By intelligently monitoring the Dark Web, we can strengthen our defenses and better address the evolving threats. It's crucial to extend our vigilance beyond our own organization and encompass our supply chain and cloud by gaining visibility into the Dark Web. While breaches and leaks are inevitable, a swift response and effective remediation can save your organization from a disastrous breach. By keeping a watchful eye on the Dark Web, we can enhance our organization's security and the overall effectiveness of our security program. Join us in this webinar to learn how.

Getting ROI from monitoring the Dark Web

One may argue that the difference between a cyber security professional and a cyber criminal is a set of ethical beliefs. Over time our ethics change for the best, but we also get tested by circumstances. Is it ethical to pay ransom? Is it ethical to disclose a vulnerability? Are all pen tests ethics correct? In this presentation we will dive into modern challenges with ethics in cyber security.

Cyber Ethics

Before the war in Ukraine if a large group of hackers would attack US financial systems, military suppliers, airports, or healthcare providers, this type of an event would basis for a serious conflict and sanctions. Yet, over the past year these events became normal with little coverage and advice from law enforcement to brace for impact. We will examine who is behind the Russian Hacktivist collective and how it functions. Its targets and goals. Its weaknesses and strong points.

Russian Hacktivism Unmasked

At the beginning of the year, many people make their predictions of what the new year would bring to cyber security, and usually they are more wrong than right. In this presentation, we will try to look at the past and present to predict the future. While we still won’t be able to predict everything, we can rely on history to predict what tomorrow would bring. We will focus on ransomware reality, cyber warfare, vulnerabilities, and technology advancements, as well as AI and quantum computing.

Cyber Security: Past, Present, and Future – 2023 Edition

In light of the current war escalated by Russia against Ukraine, the cyber threat landscape is taking a significant change. Join me to discuss the following topics as the situation intensifies.
- Change of general threat landscape
- For-profit Dark Web commerce changes
- Hacktivism flares and setbacks
- Cyberwarfare impact and expectations
- Disinformation and war-profiteering.
We will also try to answer audience questions based on available intelligence.

Cyber Warfare - Get Ready!

The conflict between Russia and Ukraine moved into cyberspace almost a decade ago. Now the things are just getting worse. In a war of stolen or ransomed data and in a war of disinformation, any weapon can work. We will take an exclusive inside look into the current developments as well as at a history of the conflict.

Cyber War Without Rules – Russia vs Ukraine

Pen Testing is a vital part of a company's cybersecurity defense strategy. Still, many companies rely on tools to do the testing often missing the critical techniques used by cybercriminals. We will discuss tips and tricks for effective Pen Testing as well as common mistakes and how you can avoid them.

Pen Testing for NOT Dummies

When dealing with Ransom and Ransomware there are a lot of considerations that are vital yet rarely discussed in preparations and defenses. Having worked with many incidents in the past, we want to discuss the common mistakes, caveats, and considerations that you should make before you are faced with the crisis. This essential knowledge may be the difference maker for your ability to successfully resolve even the most difficult situation. This is a common sense advice to advanced topics from practical experience.

Ransomware Crisis - Advanced Common Sense Advice

When you go on the Internet you are surrounded by fraud. Detecting fraud is not easy and losses to sophisticated schemes are soaring. We will tackle a number of currently potent fraud techniques to show you the emerging trends and give you skills to detect and combat fraud with corporate defenses.

Cyberspace of Fraud

Let’s do something unusual, let’s go to the Dark Web and navigate it to see what are the practical threats are emerging every single day from the cyber criminals. We will take a step-by-step journey to introduce you to the current threat landscape using very specific recent examples. You do not need to be scared or impressed. You need to be informed. Let’s go!

Practical Lessons – A Journey into the Dark Web

There is an invisible war that we have been slowly losing to cyber crime on several fronts. Dynamics of ransom and ransomware changed significantly along with exploitation of the supply chain. If you think that we have threats figured out, think again. Join us for this in-depth review of emerging threats and innovative defences.

Emerging Threats 2021

COVID-19 impacted us all in different ways. In certain ways it made us stronger and more resilient but in some cases it highlighted our weaknesses. In my world of cybersecurity, I see cybercriminals prospering and cyber security professionals are struggling to stay abreast. I want to share my experiences and advice on how to keep your cyber security team strong so it can rise to an occasion in times of crisis.

Staying Together Apart – Cyber Security Culture in Times of COVID-19

Every year tens of thousands of individuals are getting recruited by cybercriminals for legitimately looking jobs of reshipping clerks, accounting specialists, and many other positions. This year, due to the pandemic, these work-from-home jobs got a new level of legitimacy and unprecidented demand. We will examine current schemes for stolen goods re-shipment, charity scheming, money laundering, and more. What your organization should be aware of, how you are impacted, what you should be doing to stay ahead of this ever-changing networks of money and goods mules.

Dissecting Cybercrime – Mule Networks- unwitting accomplices in cyber crime

Many years ago we decided that protecting our data just behind username and password authentication is a bad idea. Yet today, we are still heavily relying only on this technology. And, in turn, cybercriminals rely on stolen credentials to enter our realm to wreak havoc. Let’s take a look at how your credentials are valued today, how they are stolen and abused. Then let’s discuss available safeguards including not only MFA but other viable defenses for our society that still holds on to its P@ssword1!

Dissecting Cybercrime – Credentials – (still) keys to your kingdom

After the recent Twitter account compromise many questions come into focus about security of our social media and events leading to account takeovers. Our investigations of similar cryptocurrency schemes show a pattern of abuse of people’s trust. However, the current Twitter incident is significantly more than meets the eye. The magnitude and impact do not match the financial gains. Sophistication of the breach of high-profile accounts pales in comparison to a sophomoric monetization scheme. Let’s examine what we know and what else to expect next.

...Tweet No Evil

Join this webinar to learn the top 10 vulnerabilities within your travel and loyalty reward program abused by hackers. What do hackers see as an easy profit? Learn what to do to defend your customers’ benefits.

Takeaways:
Understanding of the current threat landscape of travel industry and loyalty reward programs.

About the Presenter
Alex Holden is the founder and CISO of Hold Security. Holden is credited with the discovery of many high profile breaches including Adobe Systems, initial vendor breach that led to the discovery of the JPMorgan Chase breach, and the independent discovery of the Target and Yahoo breaches. Considered one of the leading security experts, he regularly voices his professional opinion in mainstream media.

Travel & Loyalty Reward Program Vulnerabilities

travel

loyalty

reward

hacker

cyber crime

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Travel & Loyalty Reward Program Vulnerabilities

Presented by

About this talk

More from this channel