It’s Great to Detect a Breach, but Better to Detect the Attacker

Presented by

Mark Alba, Chief Product Officer, Anomali

About this talk

Focusing on Threat-Based Detection is the Key to Your Ability to Detect Attacks The “cat-and-mouse” game between Attackers and Defenders is as old as the LoveLetter virus. While script-kiddies have matured to become cybercriminals, hacktivists, and state-sponsored adversaries, sometimes it feels like the Defenders are stuck in 1999. We deploy anti-virus solutions, monitor the perimeter, and wait and see. Yes, today’s security technology is “Next Gen,” “2.0,” and “Meta,” but the concept is the same. Set the trap and wait to be attacked. And while the focus has been on stopping the active Attacker in the act, innovations in Big Data now allow us to detect the Attacker targeting your organization and stop them before they strike. To be clear, we are not talking about intelligence feeds managed through a platform, but rather a new approach to detection that harnesses the insights of intelligence to profile the Attacker, pattern the attack, and align the Attacker’s intent with the reality of your security posture. In this presentation, Mark Alba, Chief Product Officer, Anomali, covers: -Profiling the Attacker -Mapping the evidence to the threat actors -Detecting evidence of attacks using indicator-based detection Watch the webinar to understand how your relevant threat landscape helps influence your detection, investigation, and response.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (69)
Subscribers (2444)
Anomali is the leader in intelligence-driven extended detection and response (XDR) cybersecurity solutions. Anchored by big data management and refined by artificial intelligence, the Anomali XDR platform delivers proprietary capabilities that correlate the largest repository of global intelligence with telemetry from customer-deployed security solutions, empowering security operations teams to detect threats with precision, optimize response, achieve resiliency, and stop attackers and breaches. Anomali serves public and private sector organizations, ISACs, MSSPs, and Global 1000 customers around the world in every major industry. Leading venture firms including General Catalyst, Google Ventures, and IVP back Anomali. Learn more at