Name: The Anatomy of the SolarWinds Attack
Start: 2021-03-18T14:00:00Z
End: 2021-03-18T14:00:44.000Z
Location: BrightTALK
Rating: 3.8

CyberArk channel offers you regular insights and latest news on Privilege Access Management from the global undisputed leader in privileged access management. You'll find here live webinars, on demand webinars and videos!

A surge in software supply chains breaches have made headlines and lead to even more compliance mandates and government regulations to review. As risk evolve and technology advances, organizations need to keep pace with comprehensive security policies that include cloud and DevOps environments.

Cloud-Native Container Essentials: Managing Secrets for OpenShift Applications

Robotic process automation (RPA) is a proven way to enhance enterprise efficiency and productivity across all industry verticals. RPA helps accelerate business value, increases process scalability and provides the opportunity to empower the human workforce to focus on higher-value tasks. UiPath offers an end-to-end platform for automation, combining the leading RPA solution with a full suite of capabilities that enables every organization to rapidly scale digital business operations. CyberArk and UiPath have partnered to provide an easy-to-deploy, cost-effective integrated solution to help organizations scale RPA programs more quickly and securely.

Accelerate and Secure RPA Deployments with CyberArk and UiPath

CloudBees, the enterprise software delivery company, provides the industry’s leading DevOps technology platform. CloudBees enables developers to focus on what they do best: build stuff that matters, while providing peace of mind to management with powerful risk mitigation, compliance and governance tools. The joint Conjur Enterprise and CloudBees solution helps automate nearly all security and management tasks related to secrets used throughout the software development lifecycle, including updating, rotating, encrypting and controlling access to secrets.

Conjur Enterprise & CloudBees CI – Secure Secrets in the Software Dev Lifecycle

A surge in software supply chains breaches have made headlines and led to even more compliance mandates and government regulations to review. As risk evolves and technology advances, organizations need to keep pace with comprehensive security policies that include cloud and DevOps environments.

Common challenges and roadblocks security teams run into when implementing endpoint least privilege
How to reduce significant risk while keeping your end-users happy, productive, and secure
Tried and true tactics for flattening the learning curve and simplifying advanced concepts
The CyberArk QuickStart framework, an IFTT of Endpoint Privileged Manager (EPM) which makes managing privilege on the endpoint accessible to the mass endpoint security administrator and significantly lowers the chance of human error

Reduce Risk and Ride the Fast Lane to Least Privilege

Who has access to what in your organizations? How do you consistently secure privileged access to critical systems and data? Join CyberArk’s Global Technology Office for strategies for building a Comprehensive Privileged Access Management program, including:

Protecting administrators and other privileged users with risk-based credential management and session management
Adopting a just-in-time, Zero Trust approach to secure privileged access for external contractors and other third party identities
Implementing least privilege access for all identities, from the endpoint to the cloud
Securely authenticating application accounts and managing DevOps secrets to protect machine identities

Comprehensive PAM: Defending Endpoints, Third Parties, and DevSecOps

Today’s IT environments must be able to balance strong security principles while ensuring operational efficiencies. Learn how a Zero Trust architecture allows for significant risk reduction and security for both human and non-person entities (RPA, DevSecOps, etc). Leverage privilege identities remotely in a secure, VPN-less, user friendly workflow to ensure security no matter where access is needed from.

Zero Trust Architecture: Identity Security

As a security company, CyberArk aims to lead by example with best practices.

Join us for an insider session where we share how our security and R&D teams collaborate to prioritize and mitigate top threats to our CI/CD pipeline and software supply chain. Using real-world use cases, our R&D Director Eran Koifman and DevOps Systems Architect Shlomi Benita will illustrate why it is so important to secure CI/CD pipelines and development environments, and how to overcome these challenges & prevent malicious code injection.

In this session, Eran and Shlomi will give practical guidance on:

-The four areas of the CI/CD pipeline that were closely reviewed for threats – from IP theft to code injection 
-How our teams prioritize & mitigate top threats to DevOps, including applying Zero Trust to Jenkins 
-Looking beyond technology to establish policies and approaches from segmenting the code base to forcing manual review 
-Successfully working with developers to implement least privilege in high velocity environments

Learn the practical steps you can take to secure your software supply chain– register now!

Insider Story: How CyberArk R&D Secures Mission-Critical Software Supply Chain

Watch this on demand webinar to learn how cookies and session IDs can be stolen with ease and how CyberArk Endpoint Privilege Manager (EPM) threat protection can prevent this and many other emerging techniques from being used in the wild.

How to Prevent Cookie Hijacking

Automation is a critical part of improving operational efficiency and time-to-market application development teams. But recent supply chain breaches like the SolarWinds attack demonstrated why it’s important to secure, authenticate, and audit access to sensitive data, containers and microservices early in the software development process. Unprotected secrets (credentials, keys, tokens, etc.) embedded within code, automation scripts, etc., could grant attackers access to additional sensitive enterprise and/or customer data and turn a small breach into a disaster.

While OpenShift gives you a secure platform for your containers, you will still need to manage secrets amongst containers. CyberArk and Red Hat have teamed up to manage secrets on OpenShift. Development, operations, and security teams need to collaborate and implement efficient security practices from the start to achieve and maintain strong, consistent security postures. By shifting security left, your teams become more efficient and more secure

Integrating security into CI/CD pipelines is essential, but it also needs to have minimal application development disruption and integrate into the workflows of sophisticated organizations.

In this webinar, you'll learn:

Best practices for securing sensitive information in the DevOps/GitOps pipeline using OpenShift
The process companies can take to strengthen their security posture
How to achieve centralized secrets management with enterprise self-service workflow for application developers

Shift Security Left: Streamline Enterprise Secrets Management Workflows

Proactive Prevention Starts By Assuming-Breach: Securing Powerful Access From Dynamic Threats

Today’s cyber security strategy must secure access at all layers of the environment: from remote endpoints and devices to core databases and servers deep in the datacenter – whether located on prem, in the cloud, or both. 

Dynamic, increasingly complex environments present rich hunting grounds for bad actors and cyber criminals. Coupled with the proliferation of systems accessed by automated, machine-to-machine applications, bots, and cloud-based components like containers – the concern is immediate. 

From new types of ransomware to advanced supply chain attacks – as cyberattacks become ever-more sophisticated, how do you secure your organization? 

Join this session to start thinking like an attacker as we review how to adopt an “Assume-Breach” mindset to prevent attackers from circumventing access controls to penetrate and propagate within your environments. Through a Defense-in-Depth approach to security, Brandon Traffanstedt, Sr. Director at CyberArk, will explore how you can implement policies and controls that detect and isolate adversaries before they traverse your network and inflict serious damage.

Proactive Prevention Starts By Assuming-Breach

"Shift Left" with security into development workflows

Securing DevOps 101

The first step in the fight against ransomware is to expose it – to explore the different strains, what they have in common and what it is that makes them unique. The team at CyberArk Labs analyzes 100s of new ransomware samples each day and in this webinar, Andy Thompson and Brandon Traffanstedt will disclose their findings of evaluating more than 3 million samples to-date.

Here’s what is covered:

 - The surge and types of ransomware prevalent during the COVID-19 pandemic
 - How ransomware has evolved over the years to become such a formidable threat, including the role of Bitcoin
 - The kill-chain and path to encryption of today’s modern, dynamic ransomware
 - A review of mitigation strategies and recommendations

Ransomware Exposed: Key Learnings from Examining 3 Million Samples

The General Services Administration is a hub for governmentwide IT modernization and acquisition, with best-in-class contract vehicles, in-house tech expertise, a leading role on cloud security and a wide range of digital shared services. GSA’s internal innovations also hold valuable lessons for IT leaders at any government agency.

In this Agency Spotlight webcast, FCW will explore GSA’s tech-related priorities for FY2020, its plans for improving IT acquisition and the services other agencies can leverage for their own modernization efforts.

FCW Agency Spotlight: The GSA Agenda - 2022 and Beyond

In early December 2020, a supply chain attack was discovered which “trojanized” SolarWinds Orion business software updates in order to distribute malware. The campaign successfully infected 18,000 organizations – including a number of government agencies and high-value companies around the world.
 
Attacks of this magnitude and sophistication have a vast and rippling impact. Whether you have been directly affected or not – we are witnessing a new level of attack sophistication that demands a closer understanding.
 
Learn from the team that discovered the Golden SAML attack vector back in 2017 – an innovative technique now seen used for the first time in the SolarWinds attack. What we’ll cover:
• The rise of the digital supply chain attack
•  An attacker’s perspective on Orion
•  An end-to-end review of the attack flow
•  How the attackers managed to trojanize SolarWinds code
•  What the attackers did during months of seeming inactivity
•  A review of the Golden SAML technique
•  The big picture – what ‘Solorigate’ means for attackers and defenders.

The Anatomy of the SolarWinds Attack

Federal Government

Government

Cyber Attacks

Cyber Defence

Cyber Incident Response

Privileged Access Management

Hackers

Malware

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Get powerful end user computing insights from influential EUC experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on effective approaches to get non-programmers to create working applications.

End User Computing

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

The Anatomy of the SolarWinds Attack

Presented by

About this talk

More from this channel