Name: Decoding Magecart/Web-skimming Attacks
Start: 2020-07-08T12:50:00Z
End: 2020-07-08T13:51:34.000Z
Location: BrightTALK
Rating: 5

Akamai secures and delivers digital experiences for the world’s largest companies. Our intelligent edge platform keeps apps and experiences closer to users — and attacks and threats far away. Top brands globally rely on Akamai so their businesses can be fast, smart, and secure.

Security leaders regularly have to conduct a cost/benefit analysis of the solutions in their stack to make intelligent investment decisions. While there are many tools in the marketplace that can aid with calculations, such as cost of downtime calculators, understanding the true economic impact of a solution is much more complex and nuanced.

Guardicore commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study, interviewing Akamai Guardicore Segmentation customers on their experiences, to understand the wider impact of this solution.

Join this webinar to hear the economic considerations our guest speakers from Forrester Consulting uncovered, including:
● The impact on security operations productivity
● Typical hardware cost reductions
● Upfront costs for the organization
● A 3 year ROI calculation

Building the Business Case for Microsegmentation

In our previous session, we discussed how Akamai’s App and API protector streamlines the protection of your web applications and API in a dynamic and automated fashion.
  
In this workshop, we will take a closer look at how to gain visibility into which parts of your application you can protect, and how these controls are implemented.
 
Join us for a hands-on look at a streamlined approach toward integration and configuration workflows. We’ll also look at the power of Akamai’s security analytics and dashboards to help you investigate, mitigate and triage attacks.
 
We’ll walk you through how to:
• Discover and gain true visibility of API endpoints, to reduce your API attack surface
• Leverage Akamai’s automated self-tuning capabilities, or configure advanced controls for greater flexibility
• Manage security controls with a simple and intuitive GUI, or automate the process with Akamai’s Terraform provider, APIs, or the Akamai CLI
• Detect and mitigate malicious activity or unwanted bot traffic in real time

Next generation cloud security – A deeper dive into application and API security

SaaS companies need to be agile and efficient to innovate and grow, but cloud costs can hurt the bottom line. To succeed, SaaS companies require high performance, security, and ease-of-use without the high costs. Akamai Connected Cloud offers a trusted infrastructure for SaaS companies to build, deploy, and secure applications closer to users and devices.

Join us to learn how Akamai Connected Cloud can help you achieve your SaaS app building and scaling goals while maintaining cost-effectiveness. You will learn about the benefits of a secure, reliable, and flexible infrastructure, such as improved user experience, full-stack application security, extensive infrastructure location options, and easy operation with open-source technology.

Whether you're building distributed apps, looking to reduce egress costs, or seeking predictable pricing, this session is for you. Join us to explore how Akamai's cloud computing services can help you build and scale your SaaS apps cost-effectively, without compromising on performance or security.

Cost-effective SaaS at Scale with Akamai Connected Cloud

Media streaming workflows are increasingly complex and audience demands are increasing.

To keep up, streaming operators need to deliver ultra-low latency streaming reliably while keeping the cost under control. This requires seamless integration between the media data plane pipeline and the delivery network. However, with unpredictable viewership patterns, planning for capacity and estimating cost can be challenging.

Join this session to learn how to handle anything your viewership demands, reduce comparable egress costs and gain transparency into (predictable) pricing with Akamai Connected Cloud. Discover how our award-winning developer support, backed by the enterprise-scale consulting and service reliability can empower you to build innovative, viewer-centric workloads on the world’s most distributed cloud.

You’ll learn about:
- Akamai Cloud Computing services for media encoding and packaging
- Options for cost-effective egress and distribution
- How to attain ultra-low latency, improve reliability, speed to market and performance on a global reach and scale

Staying competitive in media streaming without breaking the bank

In today’s connected world, securing web applications and APIs from a wide range of threats is critical for business success. These threats include web app business logic attacks, API abuse, and even sophisticated bot attacks.
 
Securing digital properties amid cloud journeys, modern DevOps practices, and constantly changing applications and APIs also introduces new complexities and challenges.
 
The next generation of cloud security must tailor its defenses against the latest threats, while dynamically mitigating any vulnerabilities from legacy frameworks and technologies. 
 
In this webinar, we will discuss how Akamai’s App and API Protector:
• Automatically adapts to evolving attacks, including application DDoS attacks
• Protects against OWASP top 10 threats 
• Provides unparalleled bot visibility and mitigation strategies  
• Supports simplicity in onboarding and maintenance through automated updates, self-tuning, and Akamai’s advanced API capabilities
• Empowers both developers and security teams with deep attack visibility

Next generation cloud security – Streamlining your application and API security

IT teams responsible for mission-critical applications are often charged with the challenge of ensuring traffic spikes do not impact their service. 

This has been a challenging act as load testing with application environment is often inaccurate, and overprovisioning infrastructure without understanding capacity and performance can result in unnecessary costs. However, these issues can be overcome with better load testing set-up. Combined with cost-effective compute and egress, it is possible to perform extensive testing without increasing costs. 

Learn how to use Akamai CloudTest to validate performance at scale from hundreds to millions of virtual users, in both test and production environments. We'll also share how to deploy popular open-source load testing tools like JMeter and Locust on Akamai Cloud Computing services. You’ll learn how your key business functionality behaves under heavy loads and if your infrastructure scales well under stress.

Join this session and discover:
- How to optimize your application performance 
- How to reduce overprovisioning costs 
- Best practices for load testing in both test and production environments
- How to achieve distributed testing while keeping cost low

Cost-effective Distributed Load Testing using JMeter and Akamai

Organisations have now been building in the cloud for years. They have migrated existing workloads and most organisations have started to modernise applications to take advantage of the flexibility that cloud can offer and to deliver best of breed services and differentiation that each cloud offers. These cloud-smart organisations are incorporating distributed and edge cloud capabilities that multiply redundancy, improve end user performance, and reduce costs.  

However, clouds have failed to deliver on lower costs and applications remain siloed in a single cloud. What’s the next step? Are there opportunities to create future forward applications that will save costs and provide better user experiences?

Discover how Akamai Connected Cloud brings together the world’s most distributed platform for cloud computing, security, and content delivery.

From Cloud Native to Native Clouds – Scaling your Business to the Edge

When Forrester Consulting contacted hundreds of enterprise cloud strategy leaders for a new study, commissioned by Akamai, the responses showed that multicloud only achieves its potential with a workload-first strategy. The study, The Great Cloud Reset, describes the key issues those tech leaders face in implementing multicloud today and in the future, including:

• 41% struggle to find a cloud services provider that can meet data sovereignty requirements
• 88% said they have six or more applications that need to run in multiple regions
• Two-thirds are prioritizing architecture that supports workloads across the core and edge
• More than two-thirds said placing workloads in the right clouds optimized performance, reliability, and resilience

For more of Forrester’s findings, join our webinar on June 14 at 10 AM ET. Register today to reserve your place.

The Great Cloud Reset

The cloud is the optimal environment for most workloads, with many organizations using multiple cloud providers to reduce risk, maximize agility, and control costs. With these benefits, comes security risks. Join this keynote session to explore the latest threats to multicloud environments and effective strategies to improve your security posture.

During this session, you will learn: 
- How to secure endpoints, dev/test environments, tools/monitoring, and more
- Strategies for de-coupling security from compute
- Best practices to minimize sprawl and improve security posture

Multicloud Cybersecurity Trend: Supercharged Strategies for Supercharged Threats

It has been established that microsegmentation is a fast-growing essential business building block - from gaining visibility into your applications and workloads, developing your security posture, and enabling Zero Trust - microsegmentation represents exciting advancements for operational security.

But there are many approaches organizations have at their disposal, and understanding the tools and solutions that suit your business needs and requirements is essential for longevity and success.

In this session, we’ll be reviewing the solutions and tools available today, the mistakes to avoid, and how to set your business up for success.

Join Akamai and Enterprise Strategy Group Analysts as we discuss:

- Considerations before assessing Microsegmentation vendors
- Where historical microsegmentation tools have fallen short in the past, and the tools available today
- How you can gain visibility into your network using Microsegmentation
- AI and machine learning in the microsegmentation space
- And more!

Join this webinar to get an exclusive first look at our white paper.

Stopping Threat from becoming Breaches with Micro-segmentation & Threat Hunting

Application Security for Billions: Lessons Learned from Securing Web Apps and APIs at Internet Scale

Whenever you hear people talking about web and application security, you’ll often learn about the latest way to make sure you’re not ingesting user supplied input the wrong way, or how to write secure code to prevent cross site scripting, etc. 

But, have you ever wondered what it’s like to secure business critical websites, and the ever-evolving growth of API’s and bespoke applications that are developed every day across thousands of websites in dozens of countries around the world?

In this webinar, Tony Lauro, Akamai’s Security Technology and Strategy Director, will cover:
- What defenders are doing at scale to defend the evolving threats targeting websites 
- Methods for cutting out the noise of benign, but annoying vulnerability verification requests
- Best practices for managing large scale security configurations
- Some of the ways that defenders are winning against these unimaginable odds, as well as how attackers are targeting these very same applications hoping to bypass security by obscuring their attack techniques

Lessons Learned from Securing Web Apps and APIs at Internet Scale

It’s no shock that organizations understand the inherent value of microsegmentation. Despite only 36% of organizations using microsegmentation today, 91% anticipate using microsegmentation in the next two years. This gap is in part due to the use of the wrong tools, but also confusion as to where to start with a microsegmentation project. While many businesses plan on using microsegmentation to support their Zero Trust goals, the breadth of these projects can lead to unforeseen challenges.

Exploring Key Use Cases for Microsegmentation

Zero Trust represents a real opportunity for business growth, for greater operational security, and for organizational alignment. But understanding where Zero Trust fits into your security strategy, and how to prioritise ZTNA, is key to setting you apart from the crowd.

Making Zero Trust a Priority for Your Cybersecurity Strategy

APIs make up the fabric of the financial services industry - they bridge the customer to the product. 

However, according to recent research by Akamai, as of June 2022, there have been over 9 billion web application and API attacks across the globe. This is three times more than we saw in 2021. Given the value of APIs to the modern organisation, it’s no wonder that they have become a pathway for attackers to infiltrate the network. This talk will cover lessons learned from analysing data across our platform and customers’ best practices. 

Leaders must act now to ensure security is consistent and applied across their entire estate, including web apps and APIs. But what can you do specifically to secure your APIs and how has digital transformation impacted API security? Join us in the third and final episode of Actionable Insights from Akamai as we discuss:

- Best practices for securing your APIs
- How to leverage the cyber kill chain to evaluate your API risks  
- Insights from global Threat Intelligence to enhance your API protection 
- And much more!

Protect Your APIs: Invest in Securing Your Digital Innovation

Scalemates.com, the largest scale-modeling website in the world, reached a breaking point with regards to their data center in Germany. The company serves a global audience, handles translation into 16 languages, and has 6 million pageviews. Most of this traffic previously routed through this data center, resulting in significant performance degradation and bottlenecks.

In this interactive workshop, we will uncover the design choices, challenges, and best practices when migrating Scalemates.com from a single data center to a distributed, automated cloud architecture on Akamai and Linode. 

We then explain how your company can utilize these migration tactics, and the Scalemates.com success story, to facilitate your own distributed cloud journey. The conversation includes:
• How to understand the problem (speed of ultra-dynamic content)
• The various design options
• Future improvements based on the Linode roadmap

Tech Workshop: Distributed Cloud Migration Tactics & Success Story

In our previous webinar, we discussed building out your Zero Trust roadmap. But what about segmentation? If Zero Trust achieves security measures by leveraging segmentation, what can you do to get started on your segmentation journey and ensure success for your Zero Trust initiatives?

Segmentation does not have to be cumbersome or costly. The key is to protect your critical assets and grow from there. But what is your first step to getting started with segmentation, and what are the critical processes involved?

Join us in this webinar where you will learn:
• How to gain visibility through segmentation
• How to get started on your segmentation journey
• Why it’s okay to start small with segmentation
• And more!

Get Started with Segmentation

Zero Trust is no longer just a buzz phrase. It has become a business staple. Zero Trust represents a move away from “trust but verify” to “never trust, always verify.” And with your attack surface growing and threat landscape shifting, it’s no surprise that you are beginning to consider Zero Trust as a business must-have.

But how do you get started with your Zero Trust roadmap? What are the key considerations and the potential challenges you could face?

Join us in this webinar as we discuss:
• Best practices for creating your Zero Trust roadmap
• How Zero Trust helps to facilitate digitization and cloud migration efforts
• How does Zero Trust enable the hybrid workforce?
• The value of proactive protection, and why it’s important

How To Achieve Zero Trust

The increase in usage of third-party JavaScripts have seen an exponential increase in security vulnerabilities, wherein over 80% of web pages contain at least one known third-party library security vulnerability (CVE).

Watch this fireside chat and webinar where we share the latest threat research data on vulnerabilities arising from third-party scripts, industry use-case and a deep dive on Akamai’s Page Integrity Manager solution.

Decoding Magecart/Web-skimming Attacks

Magecart

Web Skimming

security vulnerabilities

Javascript

Cyber Attacks

Cyber Security

Cloud Security

Malware

Threat Detection

Threat Defence

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Decoding Magecart/Web-skimming Attacks

Presented by

About this talk

More from this channel