Name: A Tale of Two Beacons: Detecting Implants at the Host and Network Levels
Start: 2022-04-04T04:00:00Z
End: 2022-04-04T04:00:22.000Z
Location: BrightTALK
Rating: 4

Join VMware for a live webinar to learn:

• How to operationalize DevSecOps across your organization to accelerate innovation securely.
• What it means to "shift left" while "protecting right" and ensure security throughout the development lifecycle.
• Best practices for implementing full-stack container security, from workloads and pipeline to the underlying infrastructure.
• Take the next steps to securely accelerate innovation across your organization.

Securing the Container Lifecycle from Build to Run with VMware Security

Join ESG Principal Analyst Bob Laliberte and Abe Ankumah, VP of VMware’s SASE Business, as they discuss future trends in networking. 
The rise of cloud services, remote work, and operational efficiency has driven organizations to adopt SASE and SD-WAN architectures. 
SD-WAN is essential to provide application delivery from disparate clouds to dispersed users today. But the right SD-WAN architecture is also critical to accelerate future digital transformation projects including connectivity over private 5G networks and edge compute applications which use IoT sensors and AI to convert local intelligence into smarter business decisions.

The Edge of Innovation and Security is Built on SD-WAN

This one-hour session will cover strategies and solutions for hardening Kubernetes environments, protecting users and keeping your data secure. 

Discussion will include how to leverage VMware’s Modern App Connectivity and Security Solution to:
• Protect users, apps, and sensitive data for compliance
• Secure all user-to-app communications
• Secure communication in real-time between every service with API security
• Improve operational agility and streamline DevSecOps collaboration across multi-cloud environments

Zero Trust Security and Compliance for Modern Apps on Multi-Cloud

"In this webinar, you will learn:
- How today's more complex and unpredictable threat landscape impacts you and your business
- Ways you can leverage our expert Managed Detection and Response (MDR) Analyst team to supplement your security team
- How MDR provides critical insight into attacks along with recommendations for policy changes customers can take to remediate the threat
- How you can use the power of VMware's cloud-native Endpoint and Workload protection to secure your environment "

MDR - The Extra Set of Eyes You Need to Protect Your Business

In 2021, businesses spent on average $1.85 million recovering from ransomware attacks, according to Sophos “State of Ransomware 2021”. Ransomware damages are costly, and now increasing attacks are forcing security leaders to re-evaluate their backup and recovery processes. However, there’s an even bigger disrupter to disaster recovery processes: cloud technology, which is changing the way data is protected and how people need to prepare for recovery.

Cloud-based business continuity and disaster recovery have long been hailed as a cost effective, accessible, and safe option for organisations looking to achieve operational resiliency. With increasing cyber attacks, supply chain difficulties, and natural disasters, organizations need to take a deeper look into how Cloud can impact their backup management and disaster recovery plan. 

In this episode, we’ll be looking at how organizations can effectively protect themselves in the age of Cloud. 

Join us to learn:
- How Cloud technology has evolved and impacted security leaders’ disaster recovery and business continuity plans over the past 18 months
- Differences between disaster recovery in cloud computing versus traditional disaster recovery
- Deciding between  on-premise data centers or a migration to cloud and how to incorporate Cloud into your disaster recovery plans 
- And more!

Disaster Recovery and Business Continuity in the Age of Cloud

This webcast covers key innovations in the latest release of NSX enable us to build cloud scale networks with strong multi-cloud network defenses. Discover all the new capabilities in network security, NSX Firewall, multi-cluster policy for VMs and containers, advanced network monitoring, rolling upgrades, and more.

Networking and Security Enhancements in NSX

When it comes to detecting the next cyber breach, would your organization pass the test? SE Labs recently conducted the industry’s first network detection and response (NDR) test against NSX NDR using a range of advanced persistent threats designed to compromise systems and penetrate target networks.

Join two VMware experts: Lead Cybersecurity Engineer Ant Ducker and Chad Skipper, global security technologist in the Network and Advanced Security Business Group, for an in-depth look at the testing results and how NSX NDR provides security teams the visibility and context needed to take decisive action against adversaries and help implement Zero Trust with fewer tools and silos.

Detecting the Next Breach: How to Win the War With NSX NDR

Ashwin Manekar | Product Management, Cloud Workload Protection at VMware

Secure your vSphere Workloads with Built-in Protection

90% of cloud runs on Linux, but current countermeasures are focused on addressing Windows-based threats, leaving multi-cloud deployments vulnerable to attacks. So, is it any wonder that Linux-based malware is propagating in multi-cloud environments under the radar?

Menacing Malware: Exposing Linux Threats Lurking in Your Multi-Cloud

It’s not migration, it’s transformation. Join this session to hear why customers move away from their legacy VDI and app environment and onto the VMware Horizon platform. You’ll hear about all the learnings from the transformation that came along the way, including the good and the bad, so that you can apply towards the modernization of your legacy VDI and app environment.

Virtual Desktop Migration: Real Story Behind an Admin's Move to VMware Horizon

Enterprises are moving to a new approach of delivering applications in a more agile and scalable fashion. The acceleration to multi-cloud and modern applications as well as the increase in the number of cyberthreats and vulnerability exploits have accelerated the transformation around application security. Looking at the standard application lifecycle of design, develop, test and deploy, we tend to focus on the latter two stages. Application security is tested in preproduction staging, and when issues are discovered, this pushes them back to development. Addressing security threats after the fact carries a huge cost and requires additional investment in infrastructure and controls, which prolongs the exposure to threats. In this session, you will learn how VMware can solve the modern application’s security challenges.

Better Secure Your Modern Applications with No Compromise for Speed and Agility

Tom Gillis, Senior Vice President, GM, Networking and Advanced Security Business Group & Patrick Morley, Senior Vice President, GM, and Security Business Unit

Simplify Security Complexity

Too many silos? What if you could reduce your reliance on point security tools and connect your security control points? Too many surfaces to defend? What if you could deliver security from the beginning, distributed with your assets wherever they reside, to better secure more of your technology stack and move faster? Too little context? What if you could see the entire situation, respond with confidence, and enable uptime in the face of risk? Extended detection and response (XDR) helps implement Zero Trust by establishing an end-to-end security posture, allowing better, faster detection and a coordinated response to defend your critical assets. XDR enables transitioning to next-gen systems and modern apps without increasing security complexity, reduces your attack surface, and provides an edge over your adversaries in reducing your exposure.

XDR: The Next Frontier

Application environments today, in public and private clouds, aim to improve end-user experience, developer agility and IT service delivery. However, these distributed environments are more complex, siloed, and prone to app performance and security issues. Also, applications are increasingly moving from monolithic to microservices architectures and hosted in Kubernetes cluster environments. Consistent visibility, control, and security for applications is paramount across any app, any platform and any cloud. Learn how the Modern Network solution comprised of NSX and the Virtual Cloud Network portfolio, adds unique value to VMware Cloud Foundation and VMware Cloud in hyperscalers with enterprise-class network and application connectivity, consistent security policies, advanced threat protection, and visibility across all SDDCs.

Multi-Cloud Networking and Security with the Modern Network

Hair-pinning traffic out to dedicated black boxes puts enormous processing load on firewalls—making it cost prohibitive to monitor and secure every workload in the multi-cloud. VMware NSX firewall reimagines East-West security by using a distributed- and software-based approach to attach appropriate security policies to every workload that works for any workload in any cloud. Gain insights on how to stop lateral movement with advanced threat prevention capabilities via IDS/IPS, sandboxing, NTA, and NDR.

A Modern Firewall for any Cloud and any Workload

Defense in depth is defined as deploying multiple layers of defense across all endpoints, even in the cloud, to protect an organization from cybersecurity events. This session will teach you how to protect, detect, respond to and recover from cybersecurity attacks across all technology stacks, regardless of their purpose or location, with VMware solutions for end users, private clouds, public clouds, and modern applications.

Mount a Robust Defense in Depth Strategy Against Ransomware

Cobalt Strike, a tool that support red teams in attack simulation exercises, provides several techniques to execute attacks that compromise a target network, establish a bulkhead in the network, and then move laterally to gain additional access to computers, accounts and, eventually, data. While the intention of Cobalt Strike was to provide a framework to test network defenses, the power provided by the tool was not lost on malicious actors. Given its dual nature and wide adoption by both sides of the security battlefield, it is not surprising that Cobalt Strike-related detections account for a substantial portion of alerts in most networks. This presentation discusses how Cobalt Strike’s abused components (especially the Beacon) can be detected at the host and network levels.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Cyber Security

Cyber Attacks

IT Security

Ransomware

Cyber Defence

Threat Detection

Information Security

Cloud Security

Cloud

Network Security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Presented by

About this talk

More from this channel