Hi [[ session.user.profile.firstName ]]

Do You Suffer … from Patch Shaming?

Do you struggle with keeping your software patched and secure? You are not alone! Many industries harbor a dirty little secret … it usually takes the average company more than eight weeks to complete required patching. And that’s just what they admit to! Imagine what the truth might actually be.

But don’t worry – you do not have to do this alone! You don’t have to be ashamed about your patching - or lack thereof. Learn how to overcome common patching pitfalls and employ best practices to ensure you keep your systems secure 24/7/365.
Recorded Nov 19 2020 26 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Virsec
Presentation preview: Do You Suffer … from Patch Shaming?

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Better Ways to Deal with New Security Threats Dec 10 2020 6:00 pm UTC 45 mins
    Virsec & Osterman Research
    As security threats change, security defenses need to as well, both reactively to stop current threats, and, more importantly, proactively to get ahead of future security threats. Virsec is pleased to welcome analyst firm Osterman Research to provide in-depth research into the dynamics of the new threat landscape and to highlight new security solutions and practices that go beyond the capabilities of conventional solutions. This webinar outlines the newer security solutions and practices available to blunt the growing threat arsenal.
  • Protecting Water & Wastewater Utilities from Ransomware and Targeted Attacks Dec 8 2020 6:00 pm UTC 60 mins
    MR Systems, AVEVA, Gwinnett County & Virsec
    As crippling ransomware and cyberattacks continue to hit critical aspects of water and wastewater systems, operators must implement robust measures to fortify their security stance. Water utilities face multiple challenges – from limited IT resources to maintain cybersecurity, to persistent vulnerabilities across various applications, components and services. Sophisticated attacks can hijack critical operations, disrupt business processes, steal or compromise sensitive data, and more.

    To appreciate the importance of an effective cybersecurity defense, look no further than the recent attacks on Israeli water facilities. Bad actors attempted to poison the water supply in residential areas by hijacking the software that controls the treatment pumps. Another thwarted attack aimed to disable pump operations and leave tens of thousands without access to water in the middle of a heatwave.

    Disruption and damage from attacks can impact:
    • Operating systems, website and database integrity, data security and more
    • Treatment and conveyance operations and processes
    • Alarms and other fail-safe and mitigating measures
    • Legal, financial and reputational exposure

    Featuring special guests:
    Sam Paul, Section Manager for Process Automation / SCADA Systems & Projects, Gwinnett County
    Robert Touchton, Chief Technology Officer, MR Systems
    Vishal Mahna, Global Practice Head/Sr.Director, Monitoring and Control BU, AVEVA
    Satya Gupta, Chief Technology Officer & Co-Founder, Virsec

    Learn how to implement self-defending technology that protects against ransomware and other advanced attacks – both known and unknown – and ensure continuous, secure operations.
  • EPP/EDR Tools Don't Work Recorded: Dec 3 2020 43 mins
    Virsec
    Wait, what? You’re telling me my EPP/EDR tools don’t work? What are you talking about? They do work … but for your end points only. But too many people are sticking them on their servers and expecting the same results, and that’s a critical mistake! That’s like putting diesel fuel into a Ferrari and expecting it to win a race. Sure, it’s gas and technically it will power a vehicle, but everyone knows that diesel fuel is made for a diesel engine – and it will ruin a sportscar’s engine!

    It’s the same thing with security – you’ve got to use the right tools for the job. End point protection is designed to protect your end points – and that’s it. Using probabilistic methodologies that “guess” the efficacy of an attack increases latency time and only attempts to contain attacks and not prevent them. And they are not capable of stopping a runtime vulnerability exploitation.

    Effective server workload protection requires a different approach altogether. Your security solution needs to ensure memory and runtime vulnerability protection, application control and system integrity assurance engineered using deterministic techniques to detect evasive attacks at the process, file, OS and memory levels of your systems.


    Learn how deploying the right tools for the job will guarantee your server security performs like a Ferrari, not a dump truck.
  • Weekly Vulnerability Analysis: Episode 8 Recorded: Nov 23 2020 27 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the Top 5 vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.

    This episode discusses: CVE-2020-4003 (VMWare SD-WAN SQL Injection), CVE-2020-19667 (ImageMagick Stack Buffer Overflow), CVE-2020-7754 (Schneider Electric IGSS SCADA Buffer Overflow), CVE-2020-4701 (IBM DB2 Buffer Overflow), CVE-2020-13355 (GitLab CE/EE Path Traversal), CVE-2020-28366 (Golang Arbitrary Code Injection), CVE-2020-28578 (Trend Micro Web Security Virtual Appliance Buffer Overflow)
  • Do You Suffer … from Patch Shaming? Recorded: Nov 19 2020 26 mins
    Virsec
    Do you struggle with keeping your software patched and secure? You are not alone! Many industries harbor a dirty little secret … it usually takes the average company more than eight weeks to complete required patching. And that’s just what they admit to! Imagine what the truth might actually be.

    But don’t worry – you do not have to do this alone! You don’t have to be ashamed about your patching - or lack thereof. Learn how to overcome common patching pitfalls and employ best practices to ensure you keep your systems secure 24/7/365.
  • Weekly Vulnerability Analysis: Episode 7 Recorded: Nov 16 2020 26 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the Top 5 vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.

    This episode discusses: CVE-2020-8897 (AWS KMS & Encryption SDK SSRF), CVE-2020-25538 (CMS Uno Command Injection), CVE-2020-8270 (Citrix VDA/SMB Command Injection), CVE-2020-17084 (MS Exchange Server Buffer Overflow), CVE-2020-17051 (Windows NFS Server Wormable RCE), CVE-2020-17040 (Windows Hyper-V Authentication Bypass), CVE-2020-13769 (Invanti Endpoint Manager SQL Injection)
  • Ransomware Defense for Financial Services Recorded: Nov 12 2020 46 mins
    Virsec & Steve Hunt, Aite Group
    Ransomware is now a big business. It has evolved into an industry unto itself – generating over US$11 billion for attackers in 2019 alone. Ransomware attacks can hit any business, anywhere in the world, and ransoms can exceed US$1 million. Ransomware is here to stay, so extensive preparation is key. It involves implementing layered defenses in and around mobile devices, workstations, and servers.

    Analyst Steve Hunt with the Aite Group performed extensive research with information security executives at midsize financial services organizations, some of the largest banks in the world, as well as leading vendors of defensive technologies, and a sampling of their customers. He offers extensive information about how organizations can put their most critical defenses in place.
  • Weekly Vulnerability Analysis: Episode 6 Recorded: Nov 10 2020 19 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the Top 5 vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.
    This episode discusses: CVE-2020-22275 (WordPress ER Forms Plugin), CVE-2020-22277 (WordPress User Import Plugin), CVE-2020-27955 (Git LFS RCE), CVE-2020-28168 (Axios NPM SSRF), CVE-2020-24407 (Magento RCE)
  • Keeping Healthcare Secure During a Global Crisis Recorded: Nov 5 2020 30 mins
    Special Guest Melina Scotto, GDIT’s Federal Health Chief Information Security Officer
    Cyber criminals have responded to the COVID-19 pandemic with a wave of attacks against the healthcare sector. Their goal is to steal private data, shutdown systems with ransomware and exploit the crisis for financial gain. Even before the pandemic, many healthcare organizations struggled to maintain adequate cybersecurity. Recent research reveals that 83% of healthcare providers are running outdated software. More than 56% of medical devices are still running Window 7, which Microsoft stopped supporting in January 2020, and the FBI recently warned that "continuing to use Windows 7 within an enterprise may provide cybercriminals access into computer systems.”

    Melina Scotto, GDIT’s Federal Health Chief Information Security Officer, joins Virsec to outline best practices for maintaining security in today’s extraordinary times. She will detail how healthcare organizations can deploy cybersecurity solutions that automate protection and make critical applications and devices self-defending, without requiring painful software and platform upgrades. She will also discuss how to overcome the challenge of enabling remote patient and provider access without compromising security.
  • Application-Aware Server Workload Protection Recorded: Nov 5 2020 56 mins
    Virsec & Vinca Cyber
    Today’s advanced cyberattacks can easily bypass perimeter security tools such as EDR/EPP and WAFs. An astonishing 70 percent of attacks are targeted at the server level, and most enterprises have not implemented adequate security to defend against these sophisticated exploits.

    The battleground has effectively moved to the application itself. Businesses must assume that the precursors to your next attack are already inside your network. To truly secure the enterprise against ransomware, malware and other malicious threats, you must implement application-aware server workloads.

    Join cybersecurity experts from Virsec and Vinca Cyber to learn how to fundamentally change your security posture to protect your enterprise across the attack surface.
  • Weekly Vulnerability Analysis: Episode 5 Recorded: Nov 2 2020 24 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.
    This episode discusses: CVE-2020-14882 (WebLogic RCE), CVE-2020-28037 (WordPress RCE), CVE-2020-14864 (Oracle BI LFI), CVE-2020-27995 (Zoho RCE), CVE-2020-26878 (Ruckus vRioT RCE), CVE-2020-16257 (Winston RCE).
  • Ransomware: Cyber Defense Demo Recorded: Oct 30 2020 16 mins
    Virsec
    Ransomware has become an industry unto itself, crippling organizations around the world. Experts say companiesl fall victim to ransomware every 11 seconds. More than 75% of companies infected with ransomware were running up-to-date endpoint protection. But ransomware is hitting the servers, and EPP/EDR tools are not adequate security. It’s time to flip the script on your security stance. Prevention is the only protection. Watch how the Virsec security platform protects the full application stack at the web, memory, and host layers and detects and stops ransomware attacks instantly.
  • Scary Stories: Server Cyberattacks Recorded: Oct 29 2020 35 mins
    Virsec
    The call is coming from inside the server! A frightening 70% of today’s cyberattacks target servers and most businesses are underprepared and outmaneuvered. Learn tips and tricks to think one step ahead of cyber ghosts and goblins trying to steal, hack and exploit the very foundation of your enterprise.
  • Weekly Vulnerability Analysis: Episode 4 Recorded: Oct 26 2020 19 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the top vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.
    This episode discusses: CVE-2020-16898 (Windows TCP/IP RCE “Bad Neighbor”), CVE-2020-16911 (Windows GDI RCE), CVE-2020-13957 (Apache Solr RCE), CVE-2020-26867 (PcVue RCE), CVE-2020-8254 (Pulse Secure Desktop Client RCE)
  • Ensuring Security & Compliance for Global Healthcare (US Audience) Recorded: Oct 22 2020 32 mins
    Virsec & CyberSaint
    It seems every week we hear of another devastating ransomware attack or data breach at a prestigious healthcare system. Defending against attacks while staying compliant with patient and data security regulations is difficult, but not impossible if you have the right tools in your belt. Learn how to beat bad actors at their own game while maintaining system integrity and compliance. Presented by Virsec and CyberSaint.
  • Weekly Vulnerability Analysis: Episode 3 Recorded: Oct 21 2020 21 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the Top 5 vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.

    This episode discusses: CVE-2020-1967 (Open SSL DoS attack), CVE-2020-11996 (Apache Tomcat High CPU DoS attack), CVE-2020-9484 (Apache Tomcat RCE), CVE-2020-5135 (SonicOS RCE), CVE-2020-5142 (SonicOS SSL VPM Web interface)
  • Protecting Critical Infrastructure from Cyberattacks During Global Disruption Recorded: Oct 13 2020 50 mins
    Booz Allen Hamilton, ProtectedIT, Virsec, Moderated by Maria Korolov
    The rapid move to enabling remote access during the pandemic has heightened security concerns, especially in the industrial control space. At the same time, Dark Reading reports that many IT and OT organizations have put new security initiatives “on pause” while they try to manage these rapid changes. As cyberattacks targeting critical applications and infrastructure continue to rise, this is potentially a recipe for disaster.

    Join a panel of experts from Booz Allen Hamilton, ProtectedIT and, Virsec for an interactive discussion on how IT/OT teams can balance increased remote access and automation while maintaining security effectiveness and vigilance. The panel discussion will be moderated by well-known technology and security journalist, Maria Korolov.
  • Weekly Vulnerability Analysis: Episode 2 Recorded: Oct 12 2020 13 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the top vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.
    This episode discusses: CVE-2020-2241 (Jenkins CSRF), CVE-2020-11984 (Apache RCE), CVE-2019-0230 (Apache Struts RCE), CVE-2020-4589 (IBM WebSphere RCE), CVE-2020-24621 (OpenMRS RCE)
  • If You Connect It, Protect It (But Don't Forget About Your Servers) Recorded: Oct 8 2020 22 mins
    Virsec
    In honor of National Cybersecurity Awareness Month (NCSAM), Virsec is highlighting the importance of protecting any system connected to the Internet. It’s easy to think about protecting what you can see – i.e. your end points and devices. But what’s protecting what’s deep inside? To truly protect your enterprise or infrastructure, you need to protect the application workloads that power it all. Learn how effective cybersecurity and defense is generated from the inside – across your servers, the most popular and most likely target for exploits and cyberattacks.
  • Weekly Vulnerability Analysis: Episode 1 Recorded: Oct 5 2020 15 mins
    Satya Gupta, CTO
    Virsec Security Research Lab publishes a weekly analysis of the top vulnerabilities that have a large potential impact, high severity level, and should be acted upon by enterprise security teams. This video series accompanies daily blogs detailing each vulnerability.

    This episode discusses: CVE-2020-1938 (Ghostcat), CVE-2020-2280 (Jenkins CSRF), CVE-2020-19447 (Joomla SQLi), CVE-2020-13166 (MyLittleAdmin RCE, CVE-2020-10714 (WildFly-elytron session fixation).
Security from the Inside
Virsec is the industry leader of application-aware server workload protection. Learn how to improve and optimize your security posture, ensure real-time protection from today's most dangerous cyber threats and attacks, including memory corruption, fileless and zero-day attacks. Hear valuable insights from cybersecurity leaders, experts and influencers, vulnerability analysis and more.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Do You Suffer … from Patch Shaming?
  • Live at: Nov 19 2020 6:00 pm
  • Presented by: Virsec
  • From:
Your email has been sent.
or close