Name: 최신 크리덴셜 스터핑 공격 사례
Start: 2020-10-16T05:00:00Z
End: 2020-10-16T05:00:15.000Z
Location: BrightTALK
Rating: 0

Leading companies worldwide choose Akamai to build, deliver, and secure their digital experiences — helping billions of people live, work, and play every day. Akamai Connected Cloud, a massively distributed edge and cloud platform, puts apps and experiences closer to users and keeps threats farther away. Learn more about Akamai’s cloud computing, security, and content delivery solutions.

Think your site isn't vulnerable to web scraping attacks? Think again. Malicious actors are eager to compromise your webpage scripts to gain access to customer credentials or credit card information. According to Akamai research, 50% of commerce customers use 3rd party scripts, which can be vulnerable to Magecart style attacks. In this session, we'll discuss the latest PCI DSS 4.0 requirements for script protection so brands can better identify, monitor and manage suspicious and malicious script behavior.

Commerce Chats: Make a Fast Break Toward PCI Script Compliance

As ransomware increasingly becomes a global cybersecurity scourge, affecting both public and private sectors, the urgency for effective defense strategies escalates. Identifying an active ransomware attack is essential, but it's only the beginning. The pivotal question we address is: How can you take the teeth out of a ransomware attack before it causes real damage to your organization?

This webinar unveils the power of Akamai Guardicore Segmentation that empowers security practitioners to prevent, respond to, and recover from an active ransomware attack. Under the guidance of our esteemed Solutions Expert, Milton Keath, you will discover how to swiftly and effectively reinforce your cyber defenses. 

We will explore practical, easy-to-implement strategies that enable you to:
- Drastically reduce your organization’s attack surface with just a few intuitive clicks, setting up a robust defense against potential ransomware attacks.
- Respond adeptly to ransomware incidents as they arise in your IT environment, ensuring minimal disruption and maximal security.
- Efficiently recover and restore your systems post-attack, implementing measures to prevent future reinfection.

Ransomware Mitigation in a Couple of Clicks

Join us for a critical exploration into the dynamic world of API security threats, a key concern for the commerce industry in the APAC region.

Delve deep into the tactics of cybercriminals exploiting API vulnerabilities, showcasing the distinct challenges businesses face in this region. This session will arm you with critical insights into: 

Real-World APAC Challenges: Understand the specific API security issues plaguing the APAC commerce industry, backed by regional case studies.

Cutting-Edge Defense Strategies: Learn about the latest protective measures and technologies to secure your APIs against sophisticated attacks.

Proactive Security Posture: Discover how to build a forward-thinking security framework that anticipates future threats, ensuring your business remains resilient and secure

Fortifying Commerce in APAC: Conquering API Security Challenges

The surge in ransomware attacks poses a growing threat to both individuals and businesses. Like most malware, ransomware relies on lateral movement within the network to succeed. Many solutions that claim to protect against ransomware focus their efforts on the perimeter, which is fine until a breach inevitably occurs. Without a proper segmentation solution in place, the scope of the breach can be tremendous.  

Akamai helps businesses remediate and protect against the effects of ransomware by visualizing all assets that are communicating in your environment, quickly implementing policy to limit communications with the infected assets, and securing ransomware recovery efforts.

Learn how you can cut the ransomware kill chain with Akamai Guardicore Segmentation.

Ransomware Protection – Key Actions to Take When Under Attack

Join us for a dynamic webinar focused on strengthening cyber resiliency in the modern digital landscape. 

As cyber threats grow in complexity and frequency, organizations must adapt their defenses to withstand potential attacks. Unlike conventional security measures, which often focus solely on prevention, cyber resiliency emphasizes the ability to anticipate, adapt, and evolve faster from cyber incidents effectively.

In this webinar, discover how Akamai offers innovative solutions to enhance cyber resiliency 

- Understand challenges in the evolving cyber risk and regulatory landscape
- Establish resilience with a holistic security approach covering API security, DDoS, and ransomware mitigation

Cyber Resiliency — Adapt and Evolve Faster Than Threats

APIs are the primary mechanism for driving innovation and growth across the healthcare ecosystem. They facilitate the sharing of patient data while supporting appointment reservation platforms, access to lab test results, and patient-doctor communications. 

APIs are essential for regulatory requirements that give patients access to their own records. But with every opportunity comes challenges, and the volume and complexity of data that’s accessible and by whom, can have immense clinical and financial repercussions if the evolving threat landscape is not managed with appropriate security controls.

Join Akamai leaders Giora Engel, VP of API Security, Steve Winterfeld, Advisory CISO and Carley Thornell, Healthcare & Life Sciences Industry Marketing Manager to discuss prioritizing API discovery, use cases, detecting abnormal access and abuse patterns, and how to keep patients – and their data – safe.

Knowing is half the battle: API discovery's role in healthcare cybersecurity

In an era where data breaches and cyber threats loom large, safeguarding sensitive information within APIs stands as a paramount concern for organizations. Join us as Menachem Perlman, our Director of Solutions Engineering discusses the pivotal significance of secure data storage within API frameworks.

Join us in the first episode of our new monthly series on API Security, Join us to gain actionable insights and practical strategies for enhancing your API security posture through robust and secure data storage practices.

Don't miss this opportunity to fortify your organization's defenses and ensure the integrity of your API-driven operations. Register now for the series.

Ep. 1 - The Importance of Storing Data in Your API Security Strategy

In today’s digital economy, most organizations across Asia Pacific are already entrenched in the hybrid multi-cloud approach to business technology for competitive advantage.

Along with this trend comes challenges arising from the complexity and cost of an ever-evolving cloud infrastructure – and the need to manage endpoint devices, apps and data sprawled across an extensive boundary.

How should organizations in Asia Pacific optimize cloud performance, cost, connectivity, security and visibility in the connected world of apps and data today?

DigiconAsia and Akamai recently put together an e-guide to address these concerns. We invite you to join us in a webinar where Victor Ng, Editor-in-Chief, DigiconAsia, will discuss some of the most salient points raised in the e-guide with Matt Lynn, Senior Director, Akamai Cloud Computing Services and Jay Jenkins, CTO, Akamai Cloud Computing Services.

Overcoming Cost and Complexity Challenges in the Cloud-First Era

Organizations face a major decision about their cloud computing strategy. Should you continue with your current cloud architecture and tools, even if it is not meeting customers’ needs? Or should you adopt a different approach, which is more open and distributed, swapping out a platform-centric approach for one that is cloud native?

In our webinar, three cloud computing experts discuss these topics and others relating to the pros and cons of different cloud computing models.

What to expect:
• Gain valuable insights from the observations on current and future cloud and edge computing trends.
• Learn about where each panelist is on their cloud journey, where they plan to head next in 2024, and why.

Why attend?
• Hear about the benefits of a distributed cloud computing model.
• Discover more about the current and future uses of edge computing.
• Find out about the differences between a platform-centric versus a cloud-native approach.

Join us for a lively and engaging discussion.

Speakers:
• Dolo Miah, CTO, Linebreak
• Mike Kasprzak, Co-Founder, Ludum Dare
• Jay Jenkins, CTO, Cloud Computing, Akamai
• China Martens, Cloud Marketing, Akamai (Host/Moderator)

State of Cloud: 2024

A recent Forrester Consulting study commissioned by Akamai shows that cloud costs, complexity, and regional challenges are still top of mind for media and entertainment leaders. Other concerns include:

• 67% said their organization’s legacy systems are holding them back
• 48% cited concerns with geographical challenges, such as data sovereignty and localization
• 48% said the volume of their online processing needs limit their flexibility

Sign up today for a live webinar on Feb 22 to learn more about the study. The webinar will feature Akamai Cloud CTO, Jay Jenkins and Zeck Lim, Regional Sales Director from Hydrolix

How media companies are adapting to distributed cloud computing

Are you spending a third of your cloud infrastructure budget on observability? Do you have to discard certain data to keep costs down?  Bid farewell to painful tradeoffs.  

Introducing TrafficPeak on Akamai Connected Cloud. A managed observability service powered by Hydrolix software.

With TrafficPeak, you can

•       Ingest and retain all your data, no matter the size, for years
•       Enjoy significant cost savings compared to other observability providers.
•       Optimize your budget while maintaining robust data capabilities.
•       Attain complete visibility into the performance and security of your applications   
        and infrastructure.
•       Proactively address potential issues to prevent them from evolving into business                                                                       
        disruptions.

How Observability Can Proactively Safeguard Your Customer Experience

The debate of prevention vs. response is a tired one in cybersecurity. Both sides have valid (if cliché) points. Yes … an ounce of prevention is worth a pound of cure. And yes… breaches are inevitable, so we must be capable of a timely response. In the rapidly changing digital landscape, organizations are constantly seeking tools that can seamlessly bridge this gap. 

Enter microsegmentation — a transformative approach.

Its innate ability to ward off threats, coupled with the agility to swiftly manage and mitigate breaches, makes it an invaluable asset in any cybersecurity toolkit. As threats grow in complexity and scale, understanding and leveraging the multifaceted capabilities of microsegmentation becomes not just advantageous, but essential.

During our data breach webinar, you will: 

- Discover microsegmentation’s dual role: deterring breaches and enabling rapid countermeasures
- See how this tool minimizes attack fallout, strengthening your defense posture
- Leverage advanced techniques and tactics to minimize MTTR during cyber events
- Grasp the essence of containment, allowing teams to swiftly neutralize threats while ensuring operational continuity

Reducing the Likelihood, Impact and MTTR of Ransomware with One Tool

Dive into the crucial realm of API security with our second live episode, tailored for APAC and global tech professionals. 

We'll uncover hidden vulnerabilities in sophisticated APIs and provide a comprehensive view of the risks and defense mechanisms. This episode is not just an exploration but a practical guide to mastering API security in the digital age.

Join us for a live session for:
-Demo deep dive on Akamai API Security
-Proof-of-concept (POC) insights
-Customer Case studies
-Threat Hunting tactics
-Strategies for enhanced API Protection

For details on the first session of this API security series -https://www.brighttalk.com/webcast/17473/602219

API Security Exposed: APAC's Guide to Advanced Defense

APIs are the backbone of modern software development and data exchange today. As APIs become increasingly vital, so does the need to secure them effectively.
 
Join this live APAC tech workshop session to equip yourself with the knowledge and tools needed to ensure the discovery and integrity of your APIs. 

Learn how API Security:
-Is a critical component for organizations looking for protection from business logic threats and attacks
-Provides enterprise-wide discovery and threat detection
-Provides data rich insights to enable strong and customized responses
-Is easy to deploy, reducing time to value, and resources and time to deploy
-Integrates with your day to day work processes and systems
 
Watch a live demo of data scraping and user account takeover attacks and listen to real stories from the forefront of API attacks seen in the wild in our next session .Register today.-https://www.brighttalk.com/webcast/17473/602221

Live APAC workshop: Mastering API Security

Between hidden Magecart web skimming campaigns, API authentication vulnerabilities, and the continuous assault by malicious bots, 2023 kept cybersecurity professionals busy. 

Researchers from Akamai’s Security Intelligence Group (SIG) and executives from our Security Operations Command Centers (SOCCs) look back on some of the most important developments in cybersecurity of 2023 and weigh in on their top observations.

Join us to learn: 

•        Regional attack trends, including Asia Pacific & Japan
•        Front-line observations from Akamai’s Security Research and Operations Command
•        Looking ahead to 2024’s threat landscape

Don't miss out on our upcoming LIVE API security workshops. Register now!

•         Mastering API Security- https://www.brighttalk.com/webcast/17473/602219
•         API Security Exposed: APAC's Guide to Advanced Defense - https://www.brighttalk.com/webcast/17473/602221

Lessons from 2023 top cybersecurity stories & what’s to come in 2024

It’s no surprise that API adoption is growing rapidly. The reality is that new business innovation and services are powered by APIs. But the rush to innovate is leaving security teams struggling to understand the very real security risks that APIs pose. Today, APIs carry vast amounts of data and are increasingly targets in data breaches. Featuring Forrester’s Principal Analyst Sandy Carielli, this talk will explain the very real risks of APIs and how organizations can improve their security posture. 

Is this webinar you will:
- Learn the latest API Security trends from Forrester
- Understand common API security concerns
- See the importance of API Discovery
- Understand how to use behavioral analytics for APIs

Your APIs Talk Too Much: Understanding API Security Problems

Join Diana Kelley and guests in the 49th episode of The Security Balancing Act as they examine cross-cloud management, and explore the best way to approach cloud management, in a way that allows for secure data sharing across cloud providers.

-  What it means to be cross-cloud
-  Native tools vs. 3rd party for continuous monitoring
-  Normalizing reporting and controls across clouds
-  Managing SIGs, STIGs, and CIS in a multi-cloud world

A Guide To Cross Cloud Risk Management

As financial services from banking to fintech embrace digital transformation and open banking initiatives, the attack surface has grown exponentially. Our latest research reveals a striking revelation - financial services in Asia Pacific and Japan (APJ) stand as the prime targets, bearing the brunt of nearly half of all web app & API attacks across every industry vertical in this region. Join us in this webinar where we will unveil the extensive data collected and analyzed to support the fortification of your defenses. We will explore: 

- Emerging cyberattacks targeting financial services in APJ 
- Prominent attack vectors like web application vulnerabilities 
- Dissection of preferred attack vectors used by adversaries 
- Potential supply chain risks from third-party scripts and aggregators 
- Proactive measures to combat threats 
- from APIs to bots

Presenter:
Reuben Koh, Director of Security Technology & Strategy, Akamai

Moderator:
Alan Chan, CISSP-ISSMP, CSSLP, Member, ISC2 Hong Kong Chapter

Unraveling Threats to Financial Services in Asia Pacific & Japan

정교하고 자동화된 최신 공격 기술이 등장하고 유출된 인증정보가 광범위하게 사용되면서 크리덴셜 스터핑은 많은 기업들에게 리스크가 되었습니다. 크리덴셜 스터핑은 가장 효과적이고 수익성이 높은 웹 사기 중 하나입니다. 또한, 신속하고 정교한 크리덴셜 스터핑 공격은 기업의 매출, 생산성, 평판을 저해할 수 있습니다. 
 
최신 공격 패턴과 이를 방어할 수 있는 방법에 대해 알아보시기 바랍니다.  
 
발표 내용은 다음과 같습니다.
크리덴셜 스터핑 공격의 특징과 기업이 직면한 일반적인 봇 탐지 문제 
현재 아시아 지역의 리테일, 금융, 기타 산업 전반에 걸친 크리덴셜 스터핑 공격 사례
점점 정교해지는 공격을 방어하는 방법
 
발표자는 Akamai Technologies의 한준 부장입니다.

Credential Stuffing

크리덴셜 스터핑

Cyber Security

Cyber Attacks

Data Protection

Threat Detection

Bots

Credential Abuse

Bot Management

Bad bots

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

최신 크리덴셜 스터핑 공격 사례

Presented by

About this talk

More from this channel