Name: FIM and System Hardening: Detect and Prevent Cyberthreats in Windows
Start: 2023-06-14T17:00:00Z
End: 2023-06-14T17:01:02.000Z
Location: BrightTALK
Rating: 0

Netwrix empowers information security and governance professionals to identify and protect sensitive data to reduce the risk of a breach. Our solutions also limit the impact of attacks by helping IT teams detect, respond and recover from them faster and with less effort. Over 13,500 organizations worldwide rely on Netwrix solutions to strengthen their security and compliance posture across all three primary attack vectors: data, identity and infrastructure.

In today's rapidly evolving IT landscape, identity systems, especially Microsoft Active Directory (AD) used by over 90% of enterprises, are under consistent threat. As such, safeguarding identity systems is no longer an option; it's a necessity.
Join us for this illuminating session led by Dirk Schrader, VP of Security Research at Netwrix, where he’ll delve into the depths of Identity Threat Detection and Response (ITDR) — a term introduced by Gartner to describe tools and best practices to protect identity systems.

Dirk will uncover the insidious ploys utilized by cybercriminals to exploit identity infrastructure misconfigurations and vulnerabilities. Gain a comprehensive understanding of critical ITDR capabilities you need to prevent, detect, respond to, and recover from identity-based threats.

Also, Dirk will demonstrate how Netwrix cutting-edge solutions empower organizations to efficiently defend against identity-based threats.

Join this enlightening session to:
Understand why identity-based attacks are one of the top security threats today.
Gain insights into the stealthy tactics that cybercriminals use to compromise identity systems.
Learn the multi-layered strategy to prevent, detect, and respond to identity-related threats.

By the end of this immersive session, you will be equipped with actionable insights and advanced strategies to secure your key identity store — Active Directory, effectively navigating the intricate challenges posed by contemporary identity threats in the ever-evolving cybersecurity landscape.

ITDR Masterclass: Mastering the Next Era of Identity Protection

Join the BrightTALK Summits webinar addressing Data Security Risks and Challenges!

Say farewell to the era of weak passwords vulnerable to modern threats. Safeguarding your Active Directory necessitates a robust password policy. Native Windows tools often fall short in tackling today's security challenges and complex compliance requirements. The struggle is real, isn't it?

Introducing the game-changers: Netwrix Password Policy Enforcer and Netwrix Password Secure. Brace yourself for password enforcement that's not only powerful but also incredibly user-friendly. Bid farewell to the headaches and embrace rock-solid security. Your Active Directory will thank you!

Watch this session to discover how to:

- Set up a robust and user-friendly password policy for your Active Directory.
- Prevent the use of weak passwords by customizing dictionaries and cross-referencing against the HIBP database of compromised passwords.
- Simplify password compliance with pre-defined policy templates.
- Enforce the generation of passwords that meet policy requirements.
- Ensure secure password sharing among your employees.

Securing Your Active Directory: The Power of a Resilient Password Policy

Aumenta i profitti rendendo i tuoi clienti più sicuri e conformi.

Distinguersi sul mercato e mantenere, al tempo stesso, al sicuro i sistemi Microsoft 365, i file server e i dati dei propri clienti non è sicuramente un compito facile. Parleremo di questo e molto antro ancora nel nostro prossimo webinar durante il quale presenteremo il nuovo prodotto Netwrix dedicato agli MSP. Con Netwrix 1Secure, puoi aumentare i tuoi profitti, rendere i tuoi clienti più sicuri e differenziarti dagli altri MSP che lottano con una serie di strumenti sconnessi.

Guarda il nostro webinar e scopri di più su:
- Come gestire in modo efficace gli ambienti IT di più clienti
- Come individuare i rischi nell'ambiente IT dei tuoi clienti
- Come  evitare costi imprevisti, che possano incidere sul budget
- Report dettagliati per i parametri di rischio di Active Directory
- Report sulle attività al di fuori dell'orario lavorativo

Netwrix 1Secure: La soluzione Multitenant e totalmente cloud dedicata agli MSP

We've heard time and time again how privilege can be exploited for lateral movement. The challenges are understanding the extent of this commonly exploited attack surface in your environment and finding effective tools to reduce your risk.
 
Join this webinar to learn:
·  The different types of privilege (hint: it’s not just administrator accounts)
·  How easy it can be to discover and measure privilege sprawl
·  The importance of tracking privilege sprawl over time
·  What tools are available to minimize your attack surface

Privilege Sprawl — Yes, It Applies to You!

Network segmentation is widely recognized as crucial to preventing lateral movement, but there is another factor that is frequently underestimated — locking down user access. Imagine the damage that an adversary could do by compromising just one of the user accounts in your environment, especially if that account has privileged access to sensitive data or systems: costly data breaches, downtime, compliance penalties and more.
 
To reduce your risk, it’s vital to gain visibility into all standing privileges in your IT environment, and there is no simpler way than to use Netwrix Privilege Secure for Discovery. Join our webinar to learn about the hidden dangers of standing privileges and an elegant approach to privileged access management (PAM) that will revolutionize your security strategy.
 
In this session, we’ll demonstrate how you can:
·   Gain deep visibility into privileged accounts across your IT ecosystem.
·   Remove unnecessary administrative accounts from all endpoints in one click.
·   Dramatically reduce your attack surface by removing standing privileged accounts.

Standing Privileges: A Growing Concern Your Organization May Be Overlooking

On the second day, we will focus on safeguarding passwords from hackers. Today, security and compliance demand a password policy with real strength. But let's face it, native tools often fall far short.

Enter the game-changers: Netwrix Password Policy Enforcer and Netwrix Password Secure. You’ll discover how these solutions deliver powerful password enforcement that is also remarkably hassle-free. Bid farewell to the headaches and welcome security that's as sturdy as a rock. Your Active Directory will express its gratitude!

Join this session to learn how to:

- Set up a robust password policy for AD that isn't a burden on either users or IT teams
- Prohibit weak passwords by using and customizing a dictionary and checking against the HIBP database of leaked passwords
- Use predefined policy templates to simplify password compliance
- Enforce the generation of policy-approved passwords
- Ensure secure password sharing among employees

Code of Steel: Empower Your AD Security with a Resilient Password Policy

In this electrifying session, Brian Johnson, a master of the digital underworld, will pull back the curtain on the enigmatic world of real hackers, revealing their ingenious tricks, from the stealthy art of password spraying to the creation of DIY password-cracking contraptions.

But the stage is not set for hackers alone; on the front lines of defense, Netwrix Solution Engineer Brendan McNulty a will be your stalwart guardian. He'll rise to the challenge, working tirelessly to preempt, detect, and ultimately outsmart these cunning attacks with Netwrix Auditor and Netwrix Password Policy Enforcer.

Join the session to:

- Explore password spraying techniques, including wordlist creation with tools like Kali's Crunch and Rubeus for Active Directory attacks.
- Discover alternative password sources such as dehashed with practical demonstrations against Active Directory.
- Learn to build your password-cracking rig, create efficient wordlists using "duplicut," and use hashcat for cracking.
- Get an introduction to Elcomsoft Distributed Password Recovery's user-friendly GUI and distributed job capabilities.
- Learn how to detect password spraying attacks and establish a robust password policy for Active Directory without burdening users or IT teams.

QWERTY Unleashed: Exploring Next-Gen Hacker Techniques for Passwords

In today's interconnected and rapidly evolving digital landscape, the security of our identities has become paramount. Join renowned cybersecurity expert Sami Laiho as he delves into the intricate world of identity threat detection and response. 

Sami will uncover the sophisticated tactics used by malicious actors to exploit identity vulnerabilities, ranging from social engineering to advanced malware techniques.  Discover the critical role of behavioral analytics, anomaly detection, and real-time monitoring in safeguarding personal and organizational identities.

In the second part of the session, Kurtis Andersen, a Solution Engineer at Netwrix will demonstrate how Netwrix cutting-edge solutions empower entities to efficiently detect, mitigate, and respond effectively to identity-related threats.

By the end of this session, you'll be equipped with actionable insights to fortify your digital defenses and navigate the intricate challenges posed by identity threats in the modern cybersecurity landscape. 

Join this enlightening session to discover:
- How and why are cyberattacks actually happening in reality
- How to identify threats in a modern world
- How to protect your environment in 2023 and forward

Don't miss this opportunity to gain invaluable knowledge from the foremost experts in the field.

Identity Threat Detection and Response: Safeguarding Digital Frontiers

La protection de votre infrastructure passe aussi par l’Active Directory !

C’est une cible privilégiée des attaquants qui cherchent à accéder à vos données sensibles et à votre infrastructure informatique. En effet, Microsoft estime que 95 millions de comptes AD sont attaqués chaque jour.
 
Regardez notre webinaire et découvriez comment la gamme de solutions de sécurité Netwrix vous aide à sécuriser votre Active Directory de bout en bout :
- identification et atténuation des lacunes de votre sécurité
- gestion de la politique AD et des risques
- détection et réponse aux menaces
- reprise rapide après un incident de sécurité pour minimiser le temps d’arrêt et l’impact sur l’entreprise

Auditez, protégez et défendez votre IT en maîtrisant les risques liés à l’AD

En quoi les accès aux données créent-elles un risque dans votre environnement ?
 
Les permissions peuvent être très complexes, par exemple celles qui sont basés sur l'appartenance à un groupe AD, il n'est pas toujours facile à les démêler à première vue, surtout dans les environnements complexes et de grande taille.
 
En plus de comprendre exactement qui a accès à quoi, vous devez savoir ce que ces permissions permettent réellement à quelqu'un de faire quelque chose afin d`évaluer et d`atténuer les risques de sécurité de vos données.
 
Une élévation des privilèges peut être utilisée de manière frauduleuse par un attaquant pour prendre le contrôle total d'un système.
 
Un programme de gouvernance des accès aux données bien executé  est la solution au problème.
 
Rejoignez notre webinaire et découvrez comment :
 
•  Identifier et minimiser les risques les plus importantes lies aux accès aux données
•  Accorder les accès de manière moins contraignante mais plus sécurisée
•  Rationaliser la gestion de l’accès aux données

La gouvernance des accès aux données : de la visibilité à la gestion granulaire

Avec l'augmentation continue des cybermenaces qui visent à déstabiliser les organisations de différents secteurs et tailles, il est devenu vital pour les organisations d'agir et d'améliorer leurs défenses, à la fois au niveau de la gouvernance et au niveau opérationnel. C'est pourquoi, en janvier de cette année, le NIS2 est entré en vigueur, faisant évoluer la directive initiale de 2016 et marquant une nouvelle étape importante vers la définition complète de la cyber stratégie de l'Union européenne. L'objectif principal du NIS2 est d'améliorer le niveau de cyber-résilience des entreprises opérant dans l'UE.

Mais qu'est-ce que cela signifie réellement pour les organisations et comment seront-elles affectées ? Regardez notre webinaire pour découvrir plus sur :

NIS2 : pourquoi elle est nécessaire, ses principales exigences et comment s'y préparer
- L'impact de la directive NIS2 sur les organisations
- Comment Netwrix peut-il aider à l'adoption de NIS2

NIS 2 : Comment Netwrix aide à relever les défis de la cybersécurité

No matter the type of attack or the initial attack vector, eventually threat actors need access to an endpoint to establish persistence and to serve as the launch point for any privilege escalation and lateral movement. And because every attacker’s capabilities are limited by the operating system they compromise, Windows remains a favorite target, with its’ many means of running code, traversing systems, and elevating privileges.

A recent report showed that as many as 1 in 8 cyberattacks make it past security solutions and reach the endpoint, placing the battle for access to your environment squarely on your Windows’ endpoints. And while organizations like yours have endpoint solutions, not every solution provides the same levels of protection, making it necessary to take advantage of every means to secure the environment – which includes any native lockdown capabilities within Windows.
So, just how well can native management solutions from Microsoft secure the Windows endpoint?
In this Real Training for Free session, 4-time Microsoft MVP, Nick Cavalancia takes my seat as he first discusses:

The reality of attacks reaching the endpoint
Just how insecure is the default Windows endpoint?
What MITRE has to say about the misuse of a compromised Windows endpoint
Next up, you’ll hear from 18-time Microsoft MVP, Jeremy Moskowitz, as he covers the native limitations to consider when using Windows’ built-in policy management tools to secure the endpoint. Jeremy will also share practical strategies to address them. 

The session will focus on the limitations of the following native Windows endpoint management tools:
- Local Administrator Password Service (LAPS)
- USB GPO policy
- Applocker
- And more
Jeremy will also discuss exploring alternative approaches and third-party solutions to optimize policy deployment.

Stopping Attacks at the Windows Endpoint: The Lockdown Efficacy

Every password is a corporate asset (or risk center) that needs to be managed as such. Between accounts on non-integrated internal systems, cloud accounts, vendor sites, customer sites, banking apps and SaaS, users still have a lot of passwords and integration seems like a constant game of catch up. 

Because different departments are constantly implementing new services and applications.

Watch this session to explore the risks of 3rd party passwords and how to secure and efficiently control business assets:

- Common risks of password re-use and leaked passwords
- The value of auditing and monitoring
- The critical role of password policy

Better Password Hygiene in Active Directory

While traditional Identity Governance & Administration (IGA) solutions solve many access management challenges, deployment can be a huge headache. Indeed, adding new applications or users often requires a great deal of costly professional services.

Now there’s a next-generation IGA solution that’s easy to set up and maintain.

Watch this session to learn how it enables you to:
- Easily create onboarding and offboarding workflows from an intuitive modern interface
- Use flexible rules to allocate access rights using RBAC, ABAC or NGAC
- Allocate rights automatically using machine learning 
- Connect to any system or application using configurable connectors — no coding needed

Speed Up Your IGA Deployment With Machine Learning

Are you looking for effective strategies and tactics to improve group and identity management within your organization? Look no further! This insightful on-demand webinar is tailored specifically to address the challenges faced by IT professionals. In this session, we explore best practices and techniques that enhance security, compliance, and efficiency in group and identity management.

Key topics to be covered include:
- Specific ways for efficiently managing groups and identities.
- Automating through problems like group glut, outdated distribution groups, and other challenges that normally require excessive manual labor to solve.
- Strategies for managing scalability and tactics for adapting to change in your environment.
- Real-world case studies highlighting successful implementations.

Watch this recorded session at your convenience as we bring together experts and professionals to discuss the best practices that drive efficient and secure group and identity management.

Enterprise Best Practices for Group & Identity Management

Prepare to be captivated as Brian Johnson, a skilled white-hat hacker, embarks on a daring mission to infiltrate privileged accounts, with intentions ranging from illicit data acquisition to espionage and disruption of critical systems. The burning question lingers: Will he succeed in his audacious endeavors?
 
Secure your front-row seat at the exhilarating Hacker vs Netwrix live cyber battle, where you will witness firsthand the meticulous step-by-step unraveling of various common attacks. Immerse yourself in the revelation of how the implementation of the principle of least privilege across endpoints can emerge triumphant in salvaging the situation.
 
In this spectacle, Netwrix will demonstrate its prowess in defending against a multitude of attacks, including but not limited to:
 
- Exploiting widespread local admin access, often granted excessively, to extract clear-text credentials from memory.
- Performing lateral movement from one compromised system to gain local admin privileges across the network.
- Abusing open RDP access to remotely infiltrate a system with admin privileges, extracting copies of the AD database or exfiltrating sensitive content.
- Leveraging local admin rights.
- Utilizing downloadable malware.
- Exploiting USB devices.
 
Don't miss this extraordinary opportunity to witness the relentless clash between hackers and defenders, unfolding right before your eyes.

Ultimate Cyber Battle: Hacker vs Netwrix

Introducing the highly anticipated replay of our exclusive and interactive virtual PAM Summit! If you weren't able to catch the live event, fret not, because now you have the chance to experience it all firsthand through our replay. Don't miss out on this incredible opportunity to gain valuable insights and immerse yourself in the world of PAM. Grab a front-row seat and watch the replay now!

Day 2 of the event features an insightful opening keynote by Paul Fisher, titled "In the Future Everyone Will Have Privileged Access for Fifteen Minutes". He explores the changing landscape of business and computing, the impact on Privileged Access Management (PAM) vendors, and the need to shift privileged status from identities to resources and data.

Following the keynote, an Interactive Workshop: PAM Cyber Adventure will be conducted by Martin Cannard, Jeremy Moskowitz, and Nurlan Temirbulatov. Participants will have the opportunity to choose their own security adventure, learning about safeguarding against insider threats, preventing unauthorized access, and eliminating local admin rights. The workshop will provide practical insights, best practices, and a demonstration of the Netwrix PAM Solution's potential to revolutionize organizational security posture.

The day will conclude with a Q&A Session, allowing attendees to engage with the speakers and further delve into the topics discussed throughout the day.

Watch the session to explore:

- Changes in business and computing are influencing PAM vendors and bringing new players into the market
- Why standing privileges are not sustainable in the long term
- How we need to shift privileged status from identities and onto resources and data

And you`ll get to see Netwrix PAM Solution in action!

Next-Gen PAM Summit: Implementation & Execution

Whether you use your Windows as your server OS for your AD, DC, SQL or file server or as the go-to operating system for your end-users; each application requires a properly hardened state and continuous control of changes to the setup.

Any unexpected change to a system file can indicate a security breach, a malware infection or other malicious activity that puts your business at risk. File integrity monitoring (FIM) is so critical for data security that most common compliance regulations and security frameworks, including PCI DSS, HIPAA, FISMA and NIST, recommend implementing it whenever possible.

Even more, FIM should always be paired with system hardening, the establishment of a stable base of known good configurations.

Watch our new webinar to discover how to:
- Use hardening benchmarks to start with a best-practice approach for you IT estate
- Tune the achieved to a baseline that fits your needs and risks
- Monitor critical file activity that might indicate an ongoing attack
- Ensure configuration stability while avoiding drift and event noise
- Maintain and audit compliance while validating ITSM roll-outs

FIM and System Hardening: Detect and Prevent Cyberthreats in Windows

Windows

Data Security

Cyber Security

IT Security

Information Security

Cyber Defence

Breach Detection

Breach Prevention

Malware

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

FIM and System Hardening: Detect and Prevent Cyberthreats in Windows

Presented by

About this talk

More from this channel