Name: Everything you need to know about the SIGRed Vulnerability on Windows DNS Server
Start: 2020-07-16T08:25:00Z
End: 2020-07-16T08:25:36.000Z
Location: BrightTALK
Rating: 5

Check Point Software Technologies Ltd. (www.checkpoint.com) is a leading provider of cyber security solutions to governments and corporate enterprises globally. Its solutions protect customers from cyber-attacks with an industry leading catch rate of malware, ransomware and other types of attacks. Check Point offers a multilevel security architecture that defends enterprises’ cloud, network and mobile device held information, plus the most comprehensive and intuitive one point of control security management system. Check Point protects over 100,000 organizations of all sizes.

According to a report from ESG, adopting a Zero Trust Segmentation can save more than $20 million in app downtime, averts 5 cyber disaster and accelerates 14 digital transformation projects. As organisations struggle to do more with less, and build their security architecture with the post COVID world in mind, there is increased focus on delivering a Zero Trust environment, and doing so cost effectively while consolidating vendors. 

In this discussion, we will explore how your organization can: 
1) Implement a Zero Trust architecture 
2) Improve Governance, Risk and Compliance while focusing on cost control.

Defining the modern Cyber Security Architecture and Business Model

The Security of Critical Infrastructure Act from 2018 has seen recent amendments that places a greater importance on how organisations are securing their critical assets and infrastructure.

In a nutshell, critical infrastructure has become a broader term and encompasses more of Australia’s digital footprint than ever before. Join us as we take a deep-dive into what it means for your organisation and how you can ensure your organisation is remaining compliant.
1) A quick look at the amendments to the Critical Infrastructure Act and impacts on additional organisations now impacted
2) How should organisations be collaborating around their digital assets? What does this look like?
3) Building a cyber aware culture. What your business needs to know. 
4) Insights from Check Point's Cyber Incident response team. A look at relevant use-cases and their responses

Critical Infrastructure (CI) Act

Zero Trust and SASE/SSE have become key agendas for many organizations globally in the past year.   In this webinar, see how Check Point can help you consolidate your network security and protect your remote workforce in these challenging times!

Redefining SASE - Securing Your Remote Workforce

During times of conflict in the physical world, there is a significant increase in attacks in cyberspace too. With "Hacktivists", unofficial IT armies, and official cyber warfare teams establishing their allegiances, every organization should be empowered to understand the evolving threat landscape.

Join Check Point's Cyber Threat Intelligence & Research Experts as they explain recent trends in cyber warfare and emerging attack trends from Eastern Europe

Cyber Attack Trends In The Midst of Warfare

Software Development LifeCycle practice has seen a radical overhaul in the last two decades, mainly to address the need to produce quality software within shorter time lengths. This radical overhaul includes the adoption of DevOps principles, tools, and techniques. But rapid software development comes with a greater risk of producing insecure code, so the DevOps principles further evolved to include security, i.e., DevSecOps.

As part of this webinar, we will cover
• Basics of Software Development LifeCycle
• Why DevOps is needed?
• Where does security fit in?
• What is DevSecOps?

The Story DevSecOps

The Apache Log4j vulnerability exploit can be extremely dangerous for organizations. Log4j is the most popular Java logging library with over 400,000 downloads from its GitHub project and the Log4j library is embedded in almost every Internet service or application we are familiar with, including Twitter, Amazon, Microsoft, Minecraft, and more.

Exploiting this vulnerability is simple and allows threat actors to control java-based web servers and launch remote code execution attacks. We’ve subsequently seen new variations of the original exploit being introduced rapidly - over 60 in less than 24 hours. Check Point’s Infinity architecture provides zero-day protection for our customers and prevented hackers from exploiting this vulnerability in our customer deployments.

Watch this webinar to understand: 

1. How to identify log4j attacks
2. Who is vulnerable to this exploit
3. How to keep your organization secure from this attack and future zero-day attacks

The Log4j Vulnerability - Everything You Need to Know

As businesses press on during this time of challenge and change – securing the digital workplace has become more important than ever. Apps and services are being hosted and consumed. Data and workers are hyper distributed. BYOD is on the rise. Use cases are becoming more diverse. The internet and home networks are now vital infrastructures.

In this hyper-dynamic context, businesses have seen a sharp increase in cyber threats.
Amongst this sea of challenges, businesses are being forced to manage competing demands;

• Continue Productivity,
• Increase Security,
• Reduce Cost.

This webinar will cover how Check Point provides a simple yet powerful security solution for the digital workplace in all its forms.

Preparing for 2022: How to Secure Your Hybrid Workforce?

Implementing a DevSecOps strategy - Automating security in application development 

Security is no longer an add-on in the new DevOps world. Rather, it must be implemented and tested early on. If you implement security from the earliest stages of the development cycle, you can minimize the likelihood of vulnerability remediation in the production stage. 

In this session, Nils Ujma, DevSecOps Architect, APAC & Japan, Check Point will share the challenges in applying security into DevOps environments and how Check Point's unique automated full lifecycle security platform can secure your modern-day applications. 

Topics Covered:
• How Developers work and their challenges?
• How to build security in from the start ?

Implementing a DevSecOps strategy

As more organizations migrate to the cloud, protecting containerized workloads is both a challenge and a risk to the business. Containers are not inherently secure and provider-based security is not enough to ensure adequate protection for workloads spanning across multiple clouds. Join us to learn more about CloudGuard's unique application-first approach to workload security. Get a glimpse into the only end-to-end cloud-native security platform. With protection for every layer of the application workload, from CI/CD to runtime, CloudGuard empowers security teams and DevOps teams to deploy simultaneously, with a zero-trust approach to security.

Cloud Workload Protection for the Modern Cloud Application

Enterprises need to evolve in today's cybersecurity landscape. In this session, Gary Gardiner, Head of Security Engineering, APAC and Japan, together with Clement Lee, APAC Solution Architect talks about the common challenges enterprises face today and the benefits of Quantum Security Gateway™ line up can deliver.

Secure The Network: Why Enterprises Need to Evolve?

The sudden swift transition of the global workforce to the home has forced organizations to make significant changes to their infrastructures. Despite the fact that 97% of organizations have faced mobile threats, 77% of remote employees are still using unmanaged, insecure BYOD devices to access corporate systems. In this presentation, we will discuss the mobile threat landscape in the new world.

Mobile Threats Evolution - What You Need To Know For 2021

Just within a year, Check Point Research has witnessed a whopping 168% YoY increase in the number of cyberattacks in APAC compared to May 2020. In this session, Ashwin Ram, Check Point Software Evangelist from ANZ, discusses some emerging and existing cloud attacks. These are the lessons from the Check Point Incident Response team who worked these cloud incidents for organizations that were attacked.

Tales From The Cloud

With the shift to the cloud, businesses are also shifting their responsibility; relying on traditional SIEM solutions and analytics tools to understand their cloud activities. But analyzing cloud big data is not an easy task, and existing solutions provide only limited visibility with no context to shed light on malicious cloud activity.

In this webinar, Check Point Regional Cloud Security Architect, Sammo Li, will share the latest Cloud Intelligence and threat hunting techniques to stop advanced attacks by using CloudGuard.

What’s lurking in your cloud environment?

The final part of the Harmony series. Email is the most fundamental tool for business collaboration these days, and as such it is also one of the most exploited attack vectors. With huge surges in phishing and ransomware attacks, it is essential that no malicious email reaches your employees. Find out how Harmony Email & Office can help you ensure your users remain productive while securing their email and productivity apps environment from all imminent threats.

Securing Mailboxes and Productivity Apps with Harmony Email & Office

These days, your employees are increasingly accessing sensitive corporate assets from their smartphones, so business data is constantly exposed to potential data breaches.
IDC predicts that by 2024 mobile workers will account for nearly 60% of the total U.S. workforce.

At the same time, the attacks are on the rise. 46% of organizations had at least one employee download a malicious mobile application, which threatens their networks and data in 2020.
Mobile Threat Defense (MTD) solutions must now play a critical role in addressing those challenges.

Join our live webinar on 23 April to learn how Harmony Mobile, the industry-leading MTD solution, delivers complete mobile security that is friendly to both security admins and employees.

Session highlights:
• Top mobile threats to the enterprise in 2020 discovered by Check Point Research
• Key considerations for choosing the right MTD solution
• Harmony Mobile in action-live demo covering multiple use cases and new features

Defending against the Dangerous Wave of Mobile Threats

Securing your data with security compliance

Over 90 % of data in the world today was created in the last 2 years, and any information stored digitally needs to be protected.

Nowadays, more and more organizations have moved their data to the cloud environment, and at the same time, they have to meet different industry compliance standards and requirements.

Lack of visibility, the dynamic nature of the cloud and lack of certainty regarding the location of the payload, all make compliance a challenging task.

Come and join our webinar to understand how Check Point  CloudGuard CSPM solution helps you provide real-time scores of the compliance level, re-conform the compliance with auto-remediation features, and to fulfil the compliance requirement in the simplest way.

The Cloud Compliance: Simplest way to fulfil your compliance needs

Threat actors have stepped-up their activity to prey on remote workers, who may not be as careful of what they click while they browse the internet from their homes. In the second quarter of 2020 alone there was a 3,900% increase in phishing attacks.

Join Check Point Threat Prevention Business Manager, Kendal Cole, to learn how the web security landscape has evolved and how remote workers can securely browse the internet and remain productive. You’ll learn:

• The three major threats impacting internet browsing
• The limitations of traditional web security solutions
• How Harmony Browse provides secure, fast and private web browsing

The Revolution in Web Security: Keep Remote Workers Safe and Productive

The accelerated shift to work from home has turned endpoint devices into one of the organization's biggest vulnerabilities, making complete endpoint protection a necessity.
In late 2020, nearly half of all ransomware incidents involved the threat of releasing data stolen from the target organization. On average, a new organization becomes a victim of ransomware every 10 seconds worldwide.

Join our live webinar on March 24 to learn how Harmony Endpoint provides complete endpoint protection while keeping remote workers productive.
During this live session we’ll cover:
• Most notable cyber threats to the endpoint in 2020 identified by Check Point Research
• Top principles of the modern endpoint protection
• A demo of all the Harmony Endpoint capabilities around anti-ransomware, threat hunting, and EDR

Modern Endpoint Protection - Best Practices to Secure Endpoints in 2021

Check Point Research recently discovered the SIGRed vulnerability in the Windows DNS server affecting Windows Server versions 2003 to 2019.

SIGRed (CVE-2020-1350) is a wormable, critical vulnerability with a maximum CVSS base score of 10. An attack can be triggered by just a malicious DNS response. As the service is running in elevated privileges (SYSTEM), if exploited successfully, an attacker is granted Domain Administrator rights, effectively compromising the entire corporate infrastructure.

Join this webinar to hear from the researchers who discovered this vulnerability and learn all that you need to protect yourself from SIGRed.

*This is a pre-recorded webinar, no live questions will be answered

Everything you need to know about the SIGRed Vulnerability on Windows DNS Server

Cyber Security

Cyber Attacks

Vulnerabilities

Vulnerability Intelligence

Microsoft

Researcher

Threat Intelligence

Cyber Threats

Exploit

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Get powerful life science insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on strategies and initiatives to accelerate the transformation of U.S. and global health care from a volume- to value-based marketplace.

Life Sciences

Healthcare

Get powerful emerging technology insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on technologies like 3D printing, pervasive robotics, natural interfaces, connected everything and cognitive systems.

Emerging Technologies

Get powerful manufacturing insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on strategies and techniques to accelerate production cycles while increasing efficiencies and improving profitability.

Manufacturing

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

Effective financial management strategies can help organizations meet their business objectives. The financial management community on BrightTALK is made up of engaged finance and accounting professionals. Find relevant webinars and roundtable discussions featuring financial planning advice from industry thought leaders and insights into optimizing financial reporting, accounting, risk management and value measurement.

Financial Regulation

Get powerful finance management insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge that will help you to determine which financial factors build or erode value in your organization.

CFO Strategy

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Everything you need to know about the SIGRed Vulnerability on Windows DNS Server

Presented by

About this talk

More from this channel