What Happens in an Attack?

Pierre-Marc Bureau, Malware Researcher at ESET
Most Internet users have been in contact with malicious software (malware) and most of us understand these threats should be avoided. Far less people understand what happens when a computer is attacked, more precisely, what are the objectives of the attackers and how these attacks could affect your business?
We will present various attacks that have been recently witnessed which illustrate the different motivations of malware creators and operators. We will also show how banking trojans such as Win32/Gataka can attack on alternative operating systems such as OSX/Flashback. Finally, we will cover cases of cyber espionage with the case of ACAD/Medre.
Join Pierre-Marc Bureau, Mallware Researcher at ESET as he shows what happens in an attack and how to protect your business.
Jul 23 2012
60 mins
What Happens in an Attack?
Join us for this summit:
More from this community:

IT Security

  • Live and recorded (5260)
  • Upcoming (140)
  • Date
  • Rating
  • Views
  • Join Tom Kellerman, Chief Cyber Security Officer for Trend Micro, in an informative webinar specifically tailored for corporate executives and directors who need to develop and implement a comprehensive cyber security strategy. Tom will highlight critical information including 2015 cyber threat trends and how risk management strategies have changed.

    During this live webinar, you’ll learn:
    • How to identify, classify, and protect your valuable data assets
    • How to assess your organization’s vulnerability to attack
    • How to measure and mitigate cyber risks cost-effectively
    • And more...
  • A new category of threat is emerging – a threat designed to evade traditional signature-based technologies such as Anti-Virus and Intrusion Detection. Attempting to meet the challenge is a new class of technology, “Advanced Malware Protection” or “AMP,” which is an industry term for technology designed to continuously monitor for, offload and detonate files in a sandbox - safely away from the main environment - to observe and detect malicious objects.

    If a security device produces an alert in the forest, who’s there to hear it?

    The challenge is these next generation advanced malware detection solutions produce so much detail about the suspicious activity that most organizations do not have the resources to thoroughly investigate/analyze. The best technology means nothing if you don’t have the right expertise to react to the alert, quickly decipher complex reports, investigate the threat, and determine the right response. And meanwhile, the threat actors aren’t standing still – they’re developing measures to circumvent controls in some traditional sandbox environments.

    You will learn:
    1.How the threat is evolving and how actors are employing evasive practices to overcome traditional and even some more sophisticated security defenses
    2.Why next generation sandboxing and full-system emulation are the keys to combatting evasive malware threats
    3.The expertise needed to accurately identify and diagnose the threat once the alert is received
    4.How to ensure your organization has the ability to respond effectively to the incident and close all the backdoors a threat actor may have opened
  • 2014 could have easily been called, “The year of the biggest security breaches since the beginning of forever.” But given current security practices and technologies, many of the breaches could have been prevented. So why weren’t they?

    Many of the affected companies fell into a very common trap, thinking that if a company goes to the trouble to be legally compliant then it will be effectively “secure.” Unfortunately, as with many kinds of regulations, legal compliance really represents the absolute least amount of effort required. If companies want to give themselves the best chance to avoid the very severe consequences that come with a major breach, there are five practices they need to put in place now.

    Join Adrian Sanabria, Senior Security Analyst at 451 Research, and Amrit Williams, CTO of CloudPassage, on this webinar to learn
    · Possible gaps left by the compliance-first approach to security
    · How to limit vulnerabilities across traditional, virtual and cloud infrastructures
    · Five best practices to avoid a major security breach in 2015
  • The bring-your-own-device (BYOD) movement has been a huge boon for businesses that put a premium on productivity. File sync and share solutions have emerged to help employees work from anywhere, at any time, on any device. In this BrightTALK exclusive, eFolder explores the top seven features that business should consider when adopting a file sync and share solution. Learn what is required for a file sync and share solution to improve collaboration, maximize productivity, and ensure security.
  • Join Tom Kellermann, Chief Cyber Security Officer for Trend Micro, in an informative webinar specifically tailored for corporate executives and directors who are ready to take the reins of a real and effective plan to secure their organization, their data, and their careers against targeted attacks.

    During this live webinar, you’ll learn:
    • How to identify, classify, and protect your valuable data assets
    • How to assess your organization’s vulnerability to attack
    • How to measure and mitigate cyber risks cost-effectively
  • The Internet of Things (the new buzzword for the tech industry) is increasing the connectedness of people and things on a scale that was once beyond imagination. Connected devices outnumber the world's population by 1.5 to 1.It is expected to eventually touch some 200 billion cars, appliances, machinery and devices globally, handling things like remote operation, monitoring and interaction among Internet-connected products.

    In combination with the fact that there are almost as many cell-phone subscriptions (6.8 billion) as there are people on this earth (seven billion), we have all the ingredients for a Perfect Cyber Storm.

    Join me for an informal discussion of the challenges for our profession, and some possible solutions.
  • Do you feel alone? No resources? No help? If you are like many security practitioners faced with a mountain of tasks each day and a small (or non-existent) team to help, prioritization and efficiency are key. Join Joe Schreiber, Solutions Architect for AlienVault for this practical session outlining habits to get the most out of your limited resources.

    In this session, you'll learn how to develop routines to efficiently manage your environment, avoid time-sucks, and determine what you can do by yourself and where you need help.

    In this practical session, Joe will cover:
    - How to work around the limitations of a small (or one person) team
    - Tips for establishing a daily routine
    - Strategies to effectively prioritize daily tasks
    - Benefits of threat intelligence sharing
    - Critical investigation & response steps when the inevitable incident occurs
  • Do you feel alone? No resources? No help? If you are like many security practitioners faced with a mountain of tasks each day and a small (or non-existent) team to help, prioritization and efficiency are key. Join Joe Schreiber, Solutions Architect for AlienVault for this practical session outlining habits to get the most out of your limited resources.

    In this session, you'll learn how to develop routines to efficiently manage your environment, avoid time-sucks, and determine what you can do by yourself and where you need help.

    In this practical session, Joe will cover:
    - How to work around the limitations of a small (or one person) team
    - Tips for establishing a daily routine
    - Strategies to effectively prioritize daily tasks
    - Benefits of threat intelligence sharing
    - Critical investigation & response steps when the inevitable incident occurs
  • Cutting down on the time taken to complete complex document review cycles allows the modern lawyer to operate at the pace required by their industry.

    Join our webinar to learn top tips for shortening these review cycles without losing document integrity and risking corruption. We’ll also cover what technologies are available to provide a quick and accurate way to improve document review efficiency.
  • FireEye recently released a new report that documents how and why governments around the world are turning to the cyber domain as a cost-effective way to spy on other countries, steal technology, and even wage war.

    Whether it’s sensitive military, diplomatic, or economic information, governments depend on the integrity of their data. If that data falls into the wrong hands, the consequences could be severe.

    In the wake of two apparent state- and government-sponsored attacks, APT1 and APT28, government agencies must understand why they are in attackers’ crosshairs, what attackers might be seeking, and how they can protect themselves.

    Join us for a dynamic discussion with subject matter experts where you will learn:

    •What makes your government-related organization an appealing target – whether you’re a political opponent, business, agency or vendor
    •Why it’s important to determine who could be planning an attack, their motives, and how they might carry out their goals
    •How to assess your level of preparedness and how to protect yourself if you are not ready for this new era of cyber warfare
  • Channel
  • Channel profile
  • Planning for anything: business continuity and disaster recorvery Apr 22 2015 5:00 pm UTC 60 mins
    Is your business prepared for a disaster? Join ESET and industry expert, StorageCraft, for a research overview presentation of modern business disasters. We'll look at the difference between back up and recovery and discuss best practice for building a recovery plan. Mike Kunz, VP of Sales with StorageCraft, will also look at specific solutions to quickly get your business up and running when disaster strikes.
  • Looking Forward to HIMSS 2015: What are the latest trends? Apr 8 2015 5:00 pm UTC 60 mins
    ESET security researcher Lysa Myers discusses developments in healthcare IT system security that you may see at the HIMSS conference in Chicago next week. Find out what is being done to better protect patient data privacy and more.
  • APTs: How to protect your business through multi-layered detection Mar 18 2015 5:00 pm UTC 60 mins
    Advanced persistent threats (APT) are a growing concern to the world's companies and networks. This presentation will give an overview on how they work and examine real-world data breaches resulting from APTs. We’ll also look at how multi-layered proactive detection can combat this threat and offer a product overview of how ESET’s powerful endpoint solutions respond to APTs.

    Category: Research overview and ESET product presentation.
  • Endpoint Security Just Got Simpler Recorded: Mar 4 2015 37 mins
    From unobtrusive advanced malware detection technologies to automated threat response and actionable mobile-friendly dashboard – manage security from any device, any time, ESET will present new solutions for securing your endpoints and new ways to manage them.
  • 2015 Cybersecurity Legislation: Implications and opportunities Recorded: Feb 11 2015 58 mins
    Cybersecurity legislation and related issues received unprecedented attention in President Obama’s 2015 State of the Union address, but what does this legislative agenda mean for businesses? Will your organization’s IT security strategy be impacted? Ahead of the Summit on Cybersecurity and Consumer Protection at Stanford on February 13, security expert Stephen Cobb offers answers to these questions and his perspective on cybercrime deterrence.

    Category: Research Overview
  • CES 2015: A security insider take on this year's new technology Recorded: Jan 21 2015 53 mins
    What were the biggest takeaways from the annual CES Conference this year? Join Security Researcher, Cameron Camp, as he examines the new technology presented at the show and offers an insider take on the associated security concerns including Internet of Things, privacy security, wearables and more.
  • 2015: Examining the threatscape for the year ahead Recorded: Jan 7 2015 58 mins
    How is the landscape changing for cyber security and what do businesses need to know to protect themselves? From large scale data hacks to credit card breaches, Sr. Security Researcher, Stephen Cobb, looks at the major trends in cyber security for the upcoming year and discusses the tools and resources available to protect against them.
  • Why the mHealth Security Challenge is Way Bigger than HIPAA Recorded: Dec 17 2014 59 mins
    The potential benefits of mobile medical technology and telemedicine are enormous, from to better quality of life to saving lives, not to mention controlling healthcare costs. Yet keeping data safe when it is beyond the confines of hospitals and clinics is a serious challenge, one that cannot be met merely through regulatory compliance, as ESET Security Researcher Stephen Cobb explains.
  • Make 2015 More Secure: Lessons from 2014 Recorded: Dec 3 2014 60 mins
    Will 2014 be remembered as the year of the mega-breach or will we all just try to forget the drumbeat of criminal hacks? In this webinar ESET Distinguished Researcher Aryeh Goretsky takes a positive approach and examines the lessons that can be learned from the year’s events in IT.
  • Protect Your Data and Devices While Traveling Recorded: Nov 19 2014 43 mins
    Whether it is business travel during the busy conference season, or heading home for the holidays, taking our digital devices beyond the relative safety of home or office creates more security challenges than we may realize. ESET Security Researcher Lysa Myers talks about how you can protect your data and devices on the road or wherever you roam.
  • Keeping Wearable Technology Secure Recorded: Nov 5 2014 54 mins
    From bodycams to fitness gadgets and life-saving medical devices, wearable technology is coming on strong, but are there risks involved? As standalone devices or a sub-category of the Internet of Things, wearable technology raises security and privacy concerns that need to be addressed sooner rather than later, as ESET Security Researcher Cameron Camp explains.
  • What are the Top Topics during National Cyber Security Awareness Month? Recorded: Oct 22 2014 56 mins
    October is National Cyber Security Awareness Month and in 2014 it will be bigger than ever, surfacing the concerns of both companies and consumers. From the Twitter hashtag #NCSAM to events in your region and this webinar, this is a good time to get expert perspective on the hot topics in cyber security.
  • How do Open Source Tools Stay Secure? Recorded: Oct 8 2014 56 mins
    The Heartbleed flaw alerted the world to the security aspects of open source code which is now widely used everywhere from big enterprises to small businesses. ESET Security Researcher Cameron Camp draws on his many years of experience working with open source tools to the urgent and important issue of how to keep them secure.
  • How Can You Protect Sensitive Data in Education? Recorded: Sep 17 2014 38 mins
    Review the latest survey findings about the IT security challenges faced by educational institutions and the real world responses that are being deployed to protect systems and the very valuable data they process.
  • How Secure is Global Commerce Today? Recorded: Sep 3 2014 56 mins
    Act local but think global applies to IT security and data privacy as well as many other aspects of doing business. How does adding an international dimension to your business impact privacy and security? What does it mean if your business continuity depends on a global supply chain? This webinar will help you answer these questions and more.
  • The Evolution of Cybercrime Recorded: Aug 20 2014 57 mins
    Successfully defending IT systems and the valuable data they contain requires an up-to-date understanding of the scale and nature of security threats. For many organizations, the greatest IT security threat is cybercrime, the nature of which is evolving. This webinar explores the changing cybercrime threat and the use of layered defenses to defend your systems and data.
  • Mobility in Healthcare Recorded: Aug 13 2014 43 mins
    Explore how the use of mobile digital devices impacts efforts to ensure the confidentiality, integrity, and availability of medical data. Is there a way to BYOD safely? And can mobile devices help, rather than hinder, IT security.
  • Cloud vs. Virtual Environments: Which one Should you Trust? Recorded: Jul 9 2014 56 mins
    Today's companies face a confusing array of choices when it comes to IT services, from public to private clouds and different types of virtual environments. ESET Security Researcher Cameron Camp explains your options and the security pros and cons of each.
  • Mid-Year Threat Review: Do you know the Latest Threats out There? Recorded: Jun 25 2014 60 mins
    As 2014 passes the half-way mark, ESET Distinguished Researcher, Aryeh Goretsky, reviews the new threats that have emerged this year, as well as the perennial favorities that continue to cause security incidents and data breaches.
  • The ABC's of Authentication: What Should you know? Recorded: Jun 4 2014 44 mins
    From passwords to fingerprints to iris scans, there are now more choices than ever for authentication to systems and services.
Keeping you and your business safe from IT security threats
ESET's Cybersecurity series is designed to connect you with the experts. As an IT Security professional you will gain access to analysis and commentary from industry experts on the Cybersecurity front. Join ESET's channel now >>

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: What Happens in an Attack?
  • Live at: Jul 23 2012 5:00 pm
  • Presented by: Pierre-Marc Bureau, Malware Researcher at ESET
  • From:
Your email has been sent.
or close
You must be logged in to email this