Name: A Tale of Two Beacons: Detecting Implants at the Host and Network Levels
Start: 2022-04-04T04:00:00Z
End: 2022-04-04T04:00:22.000Z
Location: BrightTALK

Businesses in 2023 are facing significant and complex challenges. From economic headwinds and increased ransomware threats, to talent shortages and navigating the pressing sustainability situation, it’s more critical than ever that organizations are pairing with the right partners to make sure their IT infrastructure strategy is resilient, green and future-focused. 

Yet while all organizations are achingly aware of this critical need, getting to the point where IT and business leaders can feel secure in their IT set-up and strategy is more challenging than ever. In this Enterprise Strategy Group and VMware discussion, Christophe Betrand - Practice Director at Enterprise Strategy Group, and Martin Hosken, Chief Technologist - Cloud Services at VMware are joining forces to discuss how businesses can cut through the confusion and forge a path forward.

Join them to learn:

- What’s driving the trends leading the 2023 IT spend charge - including cybersecurity, AI and public cloud
- What ‘green’ means from an IT perspective and the impact sustainability initiatives are having on vendor and partner selection 
- Why ransomware attackers are locking up IT infrastructure as well as going after sensitive data
- How to up your resiliency to ransomware attacks by pairing with the right IT partner that can help protect your infrastructure, data and employees
- And more

A Guide to Making IT More Resilient - and More “Green” - with VMware

Dieses Live-Webinar befasst sich mit dem Thema Effizienz und Nachhaltigkeit in Rechenzentren und wie man die Effizienz mittels VMware Aria Operations und vSphere Technologien erhöhen kann, um sowohl Kosten als auch Umweltauswirkungen zu reduzieren.

 

Der Fokus wird auf den Einsatz von VMware vSphere als Basis einer virtuellen Infrastruktur und VMware Aria Operations zur Überwachung und Analyse der Leistung und Kapazitäten von virtuellen Infrastrukturen liegen, um Optimierungspotenziale zu identifizieren und umzusetzen.

 

Im Live-Webinar erfahren Sie von unseren Experten Thomas Kopton, Lead Solution Architect für Cloud Management und Valentin Bondzio, Customer Sustainability Architect:

 

wie VMware Aria Operations dazu beitragen kann, die Effizienz von Rechenzentren zu steigern, indem es dabei hilft, Engpässe und ungenutzte oder verschwendete Kapazitäten in der Infrastruktur zu identifizieren und die Last auf die verfügbaren Ressourcen zu optimieren.

wie man heute schon mit wenig Aufwand, vSphere für Energieeffizienz konfigurieren kann und welche Risiken hinsichtlich Performance oder Verfügbarkeit und zu welchem Grad, man wirklich in Kauf nehmen muss.

wie Sie Daten über den Energieverbrauch Ihrer Rechenzentren sammeln und analysieren können, um energieeffiziente Entscheidungen zu treffen und Ihre CO2-Bilanz zu verbessern.
Im Anschluss an unser Live-Webinar stehen Ihnen unsere Experten zur Verfügung, um Ihre Fragen in einer Live-Q&A-Session zu beantworten. Melden Sie sich jetzt an und lernen Sie wie VMware Aria Operations Ihnen dabei helfen kann die Effizienz von Rechenzentren zu steigern und gleichzeitig sowohl Kosten als auch Umweltauswirkungen zu reduzieren.

Energieeffizientes Cloud Management mithilfe von VMware Aria Operations

La causa n. 1 delle azioni di Disaster Recovery sono gli attacchi ransomware, ma affinché il ripristino sia efficace occorrono nuove funzionalità che spesso non sono disponibili nelle soluzioni di DR esistenti.

Ti aspettiamo per scoprire come affrontare le minacce di eventi disastrosi tradizionali e di attacchi ransomware moderni ovunque i carichi di lavoro sono eseguiti. Scopri i segreti delle 5 funzionalità chiave di cui tutte le aziende hanno bisogno per rispondere al ransomware rapidamente, in modo efficace e senza spendere una fortuna:

- Punti di ripristino immutabili e profondi con ripristino istantaneo
- Workflow guidati per accelerare il ripristino e massimizzare la quantità di dati recuperati
- Controlli continui della compliance e test senza interruzioni di servizio per massimizzare l'affidabilità del DR
- Ambiente di ripristino isolato con isolamento della rete premendo un pulsante
- Antivirus di nuova generazione integrato

Tutto questo con i vantaggi economici del cloud e il provisioning on demand per migliorare il TCO e l'impronta di carbonio.

Le funzionalità indispensabili per un ripristino rapido in caso di ransomware

A día de hoy, el motivo principal para recurrir a la recuperación ante desastres son los ataques de Ransomware, pero para que la recuperación tenga éxito se necesitan prestaciones nuevas de las que a menudo carecen las soluciones de Disaster Recovery disponibles en el mercado.

Acompáñenos para averiguar cómo puede abordar la recuperación ante desastres convencionales y las amenazas de ransomware contemporáneas dondequiera que se ejecuten las cargas de trabajo. Descubra los secretos de las cinco principales prestaciones que todas las empresas necesitan para responder con éxito y de forma rápida y rentable a los ataques de Ransomware.

- Puntos de recuperación inmutables y completos con capacidad de recuperación instantánea
- Flujos de trabajo guiados para acelerar la recuperación y maximizar los datos recuperados
- Comprobaciones de conformidad continuas y pruebas sin interrupciones que maximizan la fiabilidad de la recuperación ante desastres
- Entorno de recuperación aislado con aislamiento de red que se activa con solo un clic
- Antivirus de nueva generación integrado

Todo ello está acompañado de economía de nube e implementación según las necesidades para la reducción del TCO y de las emisiones de CO2.

Las ventajas de VMware Cloud Disaster Recovery

La sostenibilidad en las operaciones IT y de los centros de los datos se ha convertido en uno de los principales retos a los que se enfrentan las empresas. Ser sostenible facilita que las compañías minimicen su huella de carbono, reduzcan sus costes, incrementen su productividad y mejoren su imagen de marca ante unos consumidores cada vez más preocupados por el futuro del planeta. Sin embargo, para ser sostenibles de una forma eficaz y sostenida en el tiempo, es imprescindible contar con el socio adecuado.

En nuestro webinar en directo “Cómo Vmware te ayuda a reducir tu impacto ambiental” descubrirás de la mano de los mejores expertos de VMware, porqué es importante la sostenibilidad tecnológica, qué iniciativas y estrategias está implementando la compañía para reducir su impacto ambiental y cómo puedes utilizar su tecnología para reducir la huella de carbono de tu empresa. ¡No te lo pierdas!

Participantes:

Lluis Altes,
Senior Business Solutions Strategist en VMware

Clara Arbide,
Iberia Regional Business Manager-Cloud Management en VMware

Carlos Carballeira,
Cloud Management Lead Solution Specialist en VMware

Cómo VMware te ayuda a reducir tu impacto medioambiental

Quello della sostenibilità è un tema “caldo”, reso ancora più pressante dalla crisi energetica che l’Europa sta attraversando. In quest’ottica, l’efficientamento energetico delle infrastrutture IT, impone alle aziende la definizione di strategie che portino a un efficace percorso ispirato alla transizione ecologica. 

In questa prospettiva, l’adozione di architetture di nuova generazione, l'implementazione di applicazioni moderne, l’ottimizzazione nell’uso delle risorse e l’adozione di strumenti di monitoraggio fine delle attività su cloud, possono giocare un ruolo di primo piano, impattare in maniera decisiva sul bilancio energetico e offrire un’opportunità di risparmio sia a livello di impronta ecologica, sia a livello di costi.  

Quali sono gli strumenti più efficaci per gestire l’infrastruttura IT in un’ottica che garantisca la sostenibilità ambientale? 
Come sfruttare l’automazione per ottimizzare l’uso delle risorse? 
Quali vantaggi offre un monitoraggio centralizzato dei sistemi ibridi e multicloud? 
Ne parleremo in occasione del webinar del prossimo 25 gennaio dalle 15 alle 16. 

Intervento di Scenario a cura di: 

Stefano Mainetti, Responsabile Scientifico dell’Osservatorio Cloud Transformation, School of management, Politecnico di Milano. 

Partecipano: 

Claudia Angelelli, Senior Manager Solution Engineering, EMEA, VMware 

Modera:  

Marco Schiaffino, Direttore Responsabile, ZeroUno

Risparmio energetico e sostenibilità dell’infrastruttura IT

New analysis from VMware delves deep into the most recent waves of the Emotet botnet, providing never-before-seen insights into the malware delivery mechanism’s malicious components and modules, its execution chains and its software development lifecycle.  

This webcast will reveal key findings and takeaways from VMware’s researchers, who managed to bypass anti-analysis techniques in order to map Emotet’s dynamic infrastructure. This presentation will offer: 

• A review of Emotet’s infection chain process, along with its TTPs and IOCs. Plus, similarity metrics that allow for the clustering of similar infection techniques. 
• An inside look at Emotet’s command-and-control network infrastructure, and its AGILE-like software development life cycle. 
• “How-tos” for creating Emotet sock puppets (for fetching modules) and extracting its recently updated configuration. 
• An analysis of two recently updated modules that differ from previous Emotet attacks – one that steals credit card info from users of Google Chrome and one that exploits the SMB protocol to proliferate. 
• Tips and recommendations for mounting a more ironclad defense.

Emotet Exposed - Inside the Cybercriminals Supply Chain

Enterprises adopting multi-cloud and microservices architectures require modern approaches to application delivery, including load balancing and web application firewall. Our guest speaker, Brad Casemore of IDC, will share his observations on the requirements for a modern application delivery infrastructure and discuss a recent IDC study that shows how the NSX Advanced Load Balancer can help enterprises achieve: 

• 27% higher application developer productivity 
• 90% faster to scale capacity 
• 54% fewer outages 
• 43% lower cost of operations

IDC Insight: Business Value of VMware NSX Advanced Load Balancer

Résumé : La cause n°1 d’une reprise d’activité après sinistre sont les attaques de ransomwares. Cependant restaurer les données et redémarrer rapidement nécessite des fonctionnalités qui manquent souvent aux solutions DR traditionnelles, souvent complexes, coûteuses et ne permettant pas de se protéger efficacement contre les nouvelles menaces.

Rejoignez-nous pour découvrir comment VMware Cloud Disaster Recovery apporte une solution SaaS de reprise à la demande, s’appuyant sur les avantages du Cloud pour garantir :

- Points de récupération immuables et air-gapped
- Mise en service instantanée de la VM
- Réalisation d’itérations rapides des points de récupération
- Sélection guidée de points de restauration
- Isolation à la demande des réseaux IRE
- AV nouvelle génération + analyse comportementale

Optimisez également les coûts grâce à une offre managée et une consommation à la demande des ressources, et réduisez ainsi le coût total de possession par rapport à une solution traditionnelle.

Sinistre, attaque ransomware : comment accélérer la reprise d’activité ?

Der häufigste Auslöser von Disaster Recovery-Ereignissen sind Ransomware-Angriffe, allerdings erfordert eine erfolgreiche Recovery neue Funktionen, die bestehende DR-Lösungen oftmals nicht bieten.

In unserem Webinar erläutern wir, wie Sie sowohl herkömmlichen DR-Anforderungen als auch modernen Ransomware-Bedrohungen begegnen – unabhängig davon, wo Ihre Workloads ausgeführt werden. Lernen Sie fünf wesentliche Funktionen kennen, die jedes Unternehmen benötigt, um schnell, erfolgreich und kosteneffektiv auf Ransomware zu reagieren:

- Unveränderliche, umfassende Wiederherstellungspunkte mit sofortiger Wiederherstellbarkeit
- Geführte Workflows für eine beschleunigte Recovery und maximale Datenwiederherstellung
- Kontinuierliche Compliance-Prüfungen und unterbrechungsfreie Tests für maximale DR-Zuverlässigkeit
- Isolierte Recovery-Umgebung mit Netzwerkisolation auf Knopfdruck
- Integrierter Virenschutz der nächsten Generation

Einschließlich Cloud-Ökonomie und bedarfsorientierter Bereitstellung für TCO- und CO2-Verbesserungen.

Essentielle Funktionen für eine Wiederherstellung nach Ransomware-Angriffen

The #1 cause of invoking Disaster Recovery is ransomware attacks, but successful recovery requires new capabilities that existing DR solutions often lack.

Join us to find out how you can meet conventional DR & contemporary ransomware threats wherever workloads run. Discover the secrets of 5 key capabilities every company needs to rapidly, successfully and cost-effectively respond to ransomware

 
- Immutable, deep recovery points with instant recoverability
- Guided workflows to accelerate recovery & maximise recovered data
- Continual compliance checks & non-disruptive testing maximising DR reliability
- Isolated Recovery Environment with push-button network isolation
- Integrated Next-Generation Anti-Virus

All with Cloud Economics & on-demand provision for TCO and CO2 improvements

Must have capabilities for Accelerated Ransomware & DR Recovery

Freestyle Orchestrator is a revolutionized IT orchestration platform that allows you to design, orchestrate and automate any complex IT task. With a low-code, canvas user interface with drag-and-drop environment resources and granular conditions, the sky is the limit. In this session, you’ll hear about real-world examples of customers who have adopted Freestyle Orchestrator and learn more about what’s coming next.

Gone Wild: Freestyle Orchestrator Success Stories and What's Coming Next

Zero-trust ? Détection des menaces ? UEBA ? Sécurité intrinsèque ? Il est facile de se perdre dans le dédale des termes de sécurité. C'est pourquoi nous avons intégré la sécurité dans chaque partie de Workspace ONE et facilité l'accès en temps réel aux informations sur tous vos appareils, applications et comportements des utilisateurs, tout en automatisant la remédiation aux menaces de sécurité.

Sécurité Intrinsèque

Découvrez comment Workspace One UEM vous permet de gérer et de protéger tous vos appareils dans n'importe quel domaine d'application partir d'une seule plate-forme intégrée. Découvrez comment notre plateforme offre une expérience d'intégration transparente jusqu'aux opérations du jour 2.

Expérience IT

VMware place l'expérience des employés au centre des applications et des périphériques d'entreprise. Découvrez comment l'Intelligent Hub de VMware redonne le pouvoir aux utilisateurs finaux pour qu'ils restent connectés à leur organisation, quel que soit le périphérique utilisé ou l'endroit où ils se trouvent. Découvrez comment l'IT peut superviser l'expérience utilisateur et automatiser la remédiation à l'aide de la solution Digital Employee Experience (DEX) de VMware.

Expérience Employé

Die IT sollte Zugriff auf virtuelle Desktops und Anwendungen gewähren um so einen digitalen Arbeitsplatz bereitzustellen, damit Anwender überall verbunden und produktiv bleiben. Dieses Briefing wird nicht nur die VDI Basics , sondern auch Themen wie VMware JMP und Hybrid Cloud- und Public Cloud-Lösungen abdecken.

Virtuelle Anwendungen und Desktops

Find out how Unified Endpoint Management has brought together EMM and PCLM. Explore how Workspace ONE UEM enables full endpoint management of mobile and desktop device types from one integrated platform. Learn how our platform delivers a seamless onboarding experience through to day 2 operations.

IT Experience

Cobalt Strike, a tool that support red teams in attack simulation exercises, provides several techniques to execute attacks that compromise a target network, establish a bulkhead in the network, and then move laterally to gain additional access to computers, accounts and, eventually, data. While the intention of Cobalt Strike was to provide a framework to test network defenses, the power provided by the tool was not lost on malicious actors. Given its dual nature and wide adoption by both sides of the security battlefield, it is not surprising that Cobalt Strike-related detections account for a substantial portion of alerts in most networks. This presentation discusses how Cobalt Strike’s abused components (especially the Beacon) can be detected at the host and network levels.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Cyber Security

Cyber Attacks

IT Security

Ransomware

Cyber Defence

Threat Detection

Information Security

Cloud Security

Cloud

Network Security

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Presented by

About this talk

VMware EMEA