Name: Understanding the Modern Kill Chain: Analyzing Scattered Spider & APT41
Start: 2024-01-23T12:03:00Z
End: 2024-01-23T12:03:35.000Z
Location: BrightTALK
Rating: 0

Lookout is an integrated endpoint-to-cloud security company. Our mission is to secure and empower our digital future in a privacy-focused world where mobility and cloud are essential to all we do for work and play. We enable consumers and employees to protect their data, and to securely stay connected without violating their privacy and trust. Lookout is trusted by millions of consumers, the largest enterprises and government agencies, and partners such as AT&T, Verizon, Vodafone, Microsoft, Google, and Apple. Headquartered in San Francisco, Lookout has offices in Amsterdam, Boston, London, Sydney, Tokyo, Toronto and Washington, D.C. To learn more, visit www.lookout.com.

Data is the lifeblood of every organization today. However, the increasing amount and reliance on data brings more sophisticated threats, making it harder to protect. In fact, 51% of security leaders cite securing data as a top challenge.* As cybercriminals continuously evolve their tactics, these attacks can have severe consequences, including operational disruptions, erosion of customer trust, and lasting financial damage. Traditional security solutions simply can't keep up or protect against the relentless pace of these threats.

That's why it's crucial to choose a security platform that takes a data-centric cloud security approach. This approach provides visibility and control over data usage, activities, and anomalies across all apps, ensuring that your data is protected wherever it goes — from Google Drive and Slack, all the way to internet apps and ChatGPT. 

Register for our upcoming webinar to learn: 
- Why traditional security approaches fall short in the cloud environment
- How data-centric cloud security revolutionizes data protection
- Real-life scenarios on how a typical day exposes your users and IT team to risk — see data protection in action

Secure Your SaaS Applications: Essential Strategies to Protect Your Cloud Data

Scattered Spider: The cybercrime group behind the MGM Resorts data breach costing an estimated $100 million. 
APT41: A notorious Chinese APT that recently developed two mobile surveillanceware tools, WyrmSpy and DragonEgg, to target over 100 public and private sector organizations.

These two groups represent a global shift among threat actors – focusing on mobile devices to quietly compromise credentials, apps, and data. Join Tyler Croak, Principal Strategist at Lookout, and Ken Saganowski, Director of Technical Advisory at MOXFIVE, in this 30-minute session, to learn: 
 
- How the traditional kill chain has evolved 
- What modern tactics are being used to trick your users
- What happens after an attacker gains access - A real-life Scattered Spider example
- How to detect an intruder in your system
- What immediate actions you can take today to protect data in 2024

Understanding the Modern Kill Chain: Analyzing Scattered Spider & APT41

As more and more organizations embrace hybrid work, employees increasingly rely on collaboration through SaaS apps like Slack, Teams, and Google Workspace to get work done. And that’s awesome.
But how do you protect all that sensitive data sharing across users and apps without restricting productivity and creativity?

Join this webinar to discover how Lookout Secure Cloud Access provides a unique approach to data security, by empowering organizations to collaborate and securely share data while improving control and visibility.

With real-world use cases, best practices, and a live demo, the session is designed to help you:
- Understand today’s leading data risks and threats
- Learn how to enhance your organization's security posture
- Discover best practices for enabling more productive collaboration

The Ultimate Balancing Act: Securing Cloud Data in the Hybrid Work Era

Today, businesses need a modern and robust approach to remote access security. One that delivers zero trust, comprehensive visibility, and advanced data protections across hybrid and remote environments. Designed for only traditional network architectures, VPNs simply don’t match up to securely enable access across all multi-cloud environments. In addition, they are difficult to scale, impact performance, and are costly and complex to maintain.

Like all other organizations, Lookout has also faced its fair share of these issues with legacy VPNs. And who better to learn from than someone who's been in the trenches? 

Hear firsthand from Joel Perkins, Lookout’s head of IT, to discuss how he overcame challenges of a legacy VPN with Lookout Secure Private Access, our zero trust network access (ZTNA) solution. Discover why visibility and control over all your private apps and the data within those apps is crucial, and why remote access via a standard VPN alone doesn’t suffice anymore.

Get practical takeaways and strategies for: 
- Understanding of all private apps: Discovering all private apps that need to be migrated.
- Planning migration of apps: Depending on the form factor, whether they are legacy / client server, VoiP or web apps, how can we plan the migration and whether both VPN and ZTNA need to coexist.
- Understanding of all users: Whether they are employees, contractors and using managed or unmanaged devices.
- Consider Protecting data from deliberate or accidental exfiltration: Avoid deliberate or accidental data exfiltration after access is granted. 
- Look beyond ZTNA as an integrated platform: Achieve seamless zero trust access with a single-agent, single console, and single policy engine, and support for a multi-cloud environment.

5 Key Considerations for a Successful Migration from Legacy VPN to ZTNA

Cybercriminals continue to evolve their tactics to compromise your organization's security defenses. The modern approach is to start by targeting users on their mobile devices to steal their credentials. 

Learn how these cybercriminals have evolved their tactics, and how Lookout prevents and protects at each stage of the kill chain. 

For more information, visit: www.lookout.com

How Lookout Protects Against the Modern Day Kill Chain

An estimated 56% of employees are directly using AI to automate or augment job tasks.* Although there are many benefits that come with using these tools — employee enablement, productivity, time and resources saved — they also pose great risk to your sensitive and private data. AI platforms like ChatGPT and Google Gemini, collect the data submitted by end users to train their models. Any proprietary data submitted to these tools becomes publicly available once submitted, putting your most valuable data at risk.

Join our upcoming webinar, where Tyler Croak and Tony Kelly, Lookout’s cloud security experts, will walk you through best practices on your journey to enable your workforce to use GenAI tools safely, and without risk to your organization.

You’ll leave with an understanding of: 
- The risks of unsecured GenAI tools
- Real-world examples of accidental data leaks through AI tools
- Best practices to balance employee enablement with data security
- An actionable 3-step plan for secure AI use in your organization

*Source: UKG

Mitigating the Risks of GenAI: Secure Your Data & Empower Your Workforce

Embark on a focused exploration of the critical areas in mobile security in our upcoming webinar. Let us equip you with the knowledge needed to safeguard your organization’s mobile devices from phishing and malicious content. We’ll share threat intelligence, demonstrate simulated incident response scenarios, and show you how to tighten security with Workspace ONE Mobile Threat Defense integrated phishing and content protection.

See Mobile Threat Defense in Action

Cloud breaches are now happening in minutes, not months. Threat actors are exploiting the fact that mobile devices are more susceptible to social engineering, enabling them to gain direct access to cloud infrastructure and swiftly compromise data.

Join us for this 30-minute webinar with Lookout EVP of Product to learn: 
- How the traditional cyber kill chain has evolved to exploit mobile users
- Why attacks utilizing a mobile device are increasing
- What makes your organization vulnerable to a modern-day attack 
- Why stopping breaches requires the ability to identify anomalous data movements
- The three key capabilities you need to defend against modern breaches

The Modern Kill Chain: How Attacks Have Gone From Months to Minutes

Threat actors are targeting mobile devices more aggressively to compromise employee accounts and quietly gain access to your cloud infrastructure – making it critical to understand emerging mobile threats and how tactics are rapidly changing. 

Lookout invites you to an exclusive briefing on our recent discovery of CryptoChameleon - an active phishing kit that enables attackers to build carbon copies of single sign-on (SSO) pages, then uses a vicious combination of social engineering tactics to trick the target into sharing more than just their username and password. Target organizations have included the FCC, Coinbase, and more. 

Join the researchers behind the discovery, as they dissect CryptoChameleon and dive into:
- A behind-the-scenes look at the phishing kit and insight into its operator functionality.
- The novel tactics used to avoid detection by traditional web analysis tools.
- How social engineering and AI enable the operators to build credibility and trust with their victims. 
- Actions you can take to mitigate the risk of your employees falling victim to socially-engineered attacks on their mobile devices.

Exclusive Threat Briefing: CryptoChameleon Phishing Kit

As the digital age is constantly evolving, the cybersecurity landscape remains in a constant state of change. The year 2023 bore witness to a multitude of cyberattacks and technological advancements, emphasizing the pressing need to stay one step ahead of the ever-shifting digital frontier.

In this webinar, we'll discuss the top cybersecurity predictions for 2024, including emerging threats, trends, and best practices for defense.

Our experts will share their insights on:
- The most likely cybersecurity threats to face in 2024
- The latest cybersecurity trends and how they could impact your organization
- Best practices for defending against emerging threats
- How to build a resilient cybersecurity posture

Cybersecurity Predictions for 2024: Emerging Threats and Best Practices

APTs are often thought of as primarily targeting governments for cyber espionage. However in reality, they could have just as much impact on the private sector. The techniques and tactics used by APTs frequently overlap with financially-motivated cybercriminals, and some APT groups themselves have taken to moonlighting as cybercriminals for profit.

With such advanced and well-funded operations, APTs cause significantly more risk to any organization’s financials, reputation, supply chains, and compliance standing than ever before. 

Join Justin Albrecht, Global Director of Threat Intelligence, and Kristina Balaam, Staff Security Intelligence Researcher, as they dissect: 
- The evolution of APT groups and the overlap with other cybercrime groups 
- Why APT tactics and interests should concern the enterprise 
- Lookout’s recent discovery of WyrmSpy and DragonEgg — two pieces of mobile surveillanceware developed by APT 41

The Dangers of APT Groups and What Enterprise Security Teams Need to Know

Is your data at risk? In the new hybrid world of work, data is in constant motion—moving between countless devices, apps, and users.

When your employees expect to be able to get work done everywhere and on any device, it’s hard to keep track of how their data moves and the full spectrum of risk to which it’s exposed.

But, IT and security aren’t the only teams that need to be concerned about this increased data risk.

When data is the most valuable asset in your organization, every team needs to be aware of data sensitivity, unintentional risks and malicious threats, and how compromised data can impact the entire organization.

Join our panel of experts in data protection, security intelligence, finance, and privacy engineering to learn:
- Data risk and protection in the context of their functions within the organization
- Evidence-based strategies for creating a more security-conscious culture
- How to prioritize threats that target your employees and teams
- Tactical solutions to protect data while enabling workforce productivity

Data Protection Shouldn't Stop at IT: Why Everyone is on the Hook

On this episode, threat researchers Kristina Balaam and Kyle Schmittle show us a glimpse inside the mind of a hacker. They explain the different types of hackers they've seen and what their real motivations are. 

To learn more about our threat lab team, click here: https://bit.ly/3F9Pcdu

-------------------------------------

LinkedIn: https://www.linkedin.com/company/824768/admin/ 
Website: https://www.lookout.com/

Talk Data to Me: Inside the Mind of a Hacker

Is your move to cloud secure? Lookout David Richardson and CEO of the The Global Identity Foundation and Director of Cloud Security Alliance EMEA, Paul Simmonds, discuss best practices for modernizing your security strategy as you move to the cloud. 


Learn more here: https://www.lookout.com/blog/how-to-assess-cloud-security-posture


-------------------------------------


LinkedIn: https://www.linkedin.com/company/824768/admin/ 
Website: https://www.lookout.com/

Talk Data To Me: Modernize As You Migrate

Data is now more valuable than ever. But many organizations don't have a full grasp of what data they actually have, where it’s stored, or who has access to it — and this is especially true with hybrid workforces.

In fact, according to recent research only 54 percent of today’s companies know where their sensitive data is stored, and a whopping 65 percent collect so much data that they’re unable to categorize or analyze it.* This lack of visibility can create major blind spots that expose your organization to unnecessary data risk. The good news is that mitigating this risk is easier than you might think.

 Watch the webinar to discover:
- Tactics on how to identify where your data lives and who has access to it
- What risks you could be exposed due to  lack of data visibility
- Actionable steps you can take to proactively protect your data


*Source: Thales

Where is Your Data? The Blind Spots Most Organizations Don't Know About

Cyber Security

Information Security

Cyber Attacks

Cloud Security

IT Security

Threat Detection

Data Protection

Incident Response

Data Security

Threat Analysis

Get powerful HR legislation insights that will help you safeguard your business and workforce. Connect with thought leaders and colleagues to get the most up-to-date knowledge on legislations you need to be aware of.

Legislation

The legal community on BrightTALK combines the fields of employment law, e-discovery, intellectual property and environmental law to create a thriving ecosystem of legal resources. Attend live and on-demand webinars dealing with employment contract law, e-discovery solutions, intellectual property software and sustainable development from leading lawyers and legal professionals to gain knowledge in a wide range of fields. Join the community and be part of the conversation by attending live legal webinars and connecting with industry thought leaders.

Legal

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Get powerful end user computing insights from influential EUC experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on effective approaches to get non-programmers to create working applications.

End User Computing

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Understanding the Modern Kill Chain: Analyzing Scattered Spider & APT41

Presented by

About this talk

More from this channel