Name: Log4j: What to Know and How to stay safe
Start: 2022-09-29T04:00:00Z
End: 2022-09-29T04:37:28.000Z
Location: BrightTALK
Rating: 0

Here at Cloudflare, we make the Internet work the way it should. Offering CDN, DNS, DDoS protection and security, find out how we can help your site.

Employees are highly mobile and critical applications have moved to the cloud. While these shifts create new opportunities for businesses, they also create new challenges for legacy security and network models.

Cloudflare One is built for the modern business and its composable architecture meets customers where they are in their zero trust journey. As customers all over the world adapt to hybrid work in the wake of COVID-19 Cloudflare One radically simplifies IT administration, end user burden, and employee onboarding anywhere and everywhere employees need to connect.

Join us and hear from the experts on: 

- How organizations of any size can use Cloudflare One for a natively integrated Zero Trust Edge platform to protect and accelerate the connectivity of devices, applications, and entire networks to keep hybrid workforces secure and productive.
- What do the most successful zero trust deployments have in common?
- What common roadblocks do buyers encounter?

Securing your Business with Zero Trust

Business is driven by APIs. In fact more than half the traffic we see on our network is API-related. What’s more, we now block a greater percentage of API traffic than web traffic, showing attackers have APIs firmly in their crosshairs.  

At the same time, well-meaning internal teams build and deploy APIs fast—often without consulting security.  This requires clear visibility to avoid shadow endpoints, the right layers of security, and API management that includes performance monitoring.

Join this webinar to hear Cloudflare discuss:

- The good and bad behind API growth
- Consideration for how to keep a close eye on all API endpoints—both known and unknown
- Security layers to block OWASP top 10 risks
- Management options once APIs are secure
- And see a live demo walkthrough of API Gateway capabilities

The growing threat to APIs — and how Cloudflare API Gateway can help

With phishing campaigns still proving to be one of the top methods for breaching an organization, threat actors are increasingly targeting individual users through multiple channels of communication (email, web, SMS, and more). These multichannel threats deploy complex and evasive methods that bypass traditional security controls. The goal is simple —  trick users into clicking malicious content, paying fraudulent invoices, or divulging sensitive information. 

Multichannel phishing is emerging as a preferred method for exposing users to a wide range of threats. The rapid adoption of hybrid work has fueled this trend as well, providing additional opportunities for threat actors to capitalize on digital channels that support the productivity of remote workers.

In this webinar, we’ll go in-depth on why multichannel phishing attacks are so dangerous, how users are being exploited through their use of email and web browsing, and what can be done to insulate users from these malicious threats.

Join this session to learn more about:

- Multichannel phishing campaigns
- How attackers are exploiting users through email and web browsing
- Protecting against multichannel phishing attacks – without disrupting user productivity

360 Degrees of Protection: Combating the Rise of Multichannel Phishing

Customers are bombarded with acronyms; security buyers are used to fads and buzzwords; the market for security services is a skeptical one. Longtime attendees to RSA can play buzzword bingo with topics such as “actionable threat intelligence,” EDR, MDR, XDR… anything-DR and so on. Currently, the terms “Zero Trust” and “Edge” – ZTNA, ZTX, ZTE, SSE and SASE – are just as hyped but potentially with a little more substance. Security and networking, long uneasy playmates in the sandbox have to get along better. The security industry, fueled by the principles of “see a problem / buy a box” (aka. “expense-in-depth) has to modernize. 

Whatever you call it, the delivery of a converged set of networking and security services from a single cloud platform sounds like we’re moving in the right direction and that, for once, we should believe the hype.

Is this right? What should security and networking buyers be wary of? Who is doing ZTE and SASE right? It’s such a new movement and major project for many customers that many people we speak to are tentative in their approach, picking one use case as their on-ramp to ZTE. Is this the best way or should IT leaders be thinking more about a composable ZTE deployment.


Key Takeaways for Buyers: 

- What is ZTE/SASE, ZTX/SSE, ZTNA and how should they be thinking about this movement?
- What are some onramps to ZTE and how would a customer decide what is right for them?
- Should networking and security be a common investment or are these separate buyers and domains of expertise?

Five Considerations for Single Vendor Zero Trust Edge Deployment

Improving DNS security, performance, and reliability

A website or mobile application is only as fast as its slowest component. How can you ensure that DNS does not become that chokepoint?

When used and implemented properly, DNS can significantly improve an Internet property’s security, performance, and reliability. However, the DNS infrastructure is highly vulnerable to a wide spectrum of increasingly common cyberattacks that can degrade performance or bring DNS servers down completely. These attacks, along with rising user expectations around website performance and availability, make it risky for DNS to be a single point of failure.

Key Takeaways 
- How to achieving robust site security, performance, and reliability leveraging integrated DNS security that is optimized for performance.
- How to improve DNS infrastructure to combat cyberattacks
- Different kinds of Cyber Attacks targeting DNS

Protecting Your DNS Infrastructure Against Modern Cyberattacks

Cloudflare co-founder and CEO Matthew Prince sits down with special guest David Holmes, Senior Analyst at Forrester, to discuss Zero Trust security, common roadblocks, and what the most successful deployments have in common.

Best Practices for Implementing Zero Trust Security

To achieve cyber readiness, organizations require ways for IT and security teams to not only learn about threat actors, their motivations, and their techniques, but also to build effective internal policies to activate that knowledge.

Join us for a conversation with experts, Robert Wallace, Sr. Director, Mandiant and Patrick Donahue, VP, Product, Cloudflare as they share how the threat intelligence partnership between Cloudflare and Mandiant can help ensure cyber readiness, providing organizations with the specific information on threats and attackers they need to secure their critical assets.

We will discuss the need for threat intelligence that is:
• Relevant to the specific organization/team using the intelligence
• Actionable so that security teams can make informed decisions using threat
intelligence
• Contextual to provide enough supporting data to enable intelligence analysts to
effectively rank and triage a threat.

Threat Intelligence and the Modern Attack

セッションでは、下記についてお話します。 ECサイトにおけるパフォーマンスの重要性 CDNとパフォーマンス Cloudflareのパフォーマンスソリューション

セッションでは、下記についてお話します。

ECサイトにおけるパフォーマンスの重要性
CDNとパフォーマンス

Cloudflareのパフォーマンスソリューション

〜ECサイト担当者向け〜CDNでパフォーマンス向上とコスト削減!?

Two years into the global pandemic, and the stakes for remote work security have never been higher.  Even as ransomware, phishing, and shadow IT reach all-time highs, admins must ensure users stay safe and productive across all devices, apps, and locations.

As work-from-home flexibility settles in as the new normal, Cloudflare has seen organizations start to re-evaluate the temporary IT scaffolding they put in place in early 2020. For many, this has meant taking steps towards more sustainable and secure Internet-native Zero Trust architectures.

In this webinar, Cloudflare and special guest, Colin Henderson, VP of Information Security at OneTrust, will share lessons learned evolving their remote work security over the past two years. Tune in to learn how organizations:

Prioritize starting points to address remote work security problems
Balance user experience with more rigorous security
Motivate Zero Trust initiatives within their organization

Zero trust success stories: Balancing UX with remote security

A new zero-day vulnerability has been discovered that can be exploited to launch disruptive DDoS attacks using UDP amplification. This attack vector is in many ways more severe than memcached, allowing large-scale reflection and amplification attacks to be launched against IP targets. Join this webinar where Cloudflare engineers will discuss the technique and defences to protect your networks against amplification DDoS attacks.

In this webinar, you will learn about:
- Amplification DDoS attacks
- How the zero-day vulnerability can be exploited
- Steps to protect your networks and telephony systems

Proven defense tactics for amplification DDoS attacks

Zero trust security roadblocks & proven best practices

We know a third of web traffic comes from bots with their insatiable appetite for attacks. From credential stuffing, to stealing inventory, to price and content scraping, stopping bots is critical to a strong web experience for customers that is not undermined by bots.

Part of stopping bots has often involved some self-inflicted pain: serving our own web visitors CAPTCHAs to confirm they are not bots. This ruins web experiences, frustrates people, and harms business.

Join us as we discuss today’s bot issues and new innovation from Cloudflare that stops bots like never before—while offering a future free of CAPTCHAs.

The newest approach: Stopping bots without CAPTCHAs

Pre-pandemic, SD-WAN was touted as the critical building block for multi-cloud adoption. Employees returning to the offices are experiencing that their corporate network is much slower than what they've been using at home. Increased SaaS usage, security risks, hybrid workforce, and poor end-user experience are causing CIO to re-evaluate their secured multi-cloud application access strategy. 

Is SD-WAN still critical? Is Zero Trust the new center of the network and network security modernization? How can we provide a cafe-like experience to corporate applications, which are increasingly SaaS? How to gain visibility into SaaS applications, monitor, mitigate threats, and secure access to sensitive data? Let us find out.

In this webinar, Cloudflare will discuss 

- The change in CIO priorities from pre to post-pandemic
- Key architecture and technologies, importance of SaaS security & recommendations for 2023 & beyond 
- The roadmap to Zero Trust architecture

CIO priorities: 2020 vs. 2023 Zero Trust, SaaS security and its impacts

Cloudflareが提供するエッジコンピューティングで開発者がJavaScriptを実行できるサーバレスサービス「Cloudflare Workers」を主にご紹介します。 本セッションではCloudflare Workersで出来ること、活用方法など解説させていただきます。

クラウドフレアによるサーバレスエッジコンピューティング

The Log4j vulnerability has suddenly dominated headlines — and a week of rapid security responses, given its critical nature. Join our brief webinar to learn:
How attacks exploit the Log4j vulnerability
How logging systems are vulnerable
Cloudflare insights into global attacker exploit trends 
How to understand an organization's exposure
Recommended mitigations

Log4j: What to Know and How to stay safe

Cloud

Cloud Computing

Cyber Security

IT Architecture

Network Security

Wide Area Network

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Log4j: What to Know and How to stay safe

Presented by

About this talk

More from this channel