Name: A Tale of Two Beacons: Detecting Implants at the Host and Network Levels
Start: 2022-04-04T04:00:00Z
End: 2022-04-04T04:00:22.000Z
Location: BrightTALK
Rating: 0

VMware is a leading provider of multi-cloud services for all apps, enabling digital innovation with enterprise control. We streamline the journey for your organization to become a digital business that deliver better experiences to your customers and empower employees to do their best work. Our software spans App Modernization, Cloud, Networking & Security and Digital Workspace. In this channel, you will find resources to help you build, run, manage and secure your apps across clouds. Visit us at https://www.vmware.com/ to find out more.

In today's digital world, it's clear that we need to be more agile, efficient, and secure than ever. As we navigate these complexities, it's crucial to empower our teams with the right tools and platforms. That's where Workspace ONE steps in.

Workspace ONE is a comprehensive solution designed to manage end user device deployments, creating an engaging and productive experience for employees. It's not just a tool; it's a transformative platform that redefines the way we work.

Navigating the Future of Work with Workspace ONE

SaltStack is a software configuration management tool that automates and enforces desired states in distributed infrastructure systems and remote devices. It monitors systems in real time, responds to changes, and reduces downtime. SaltStack can be integrated with various platforms and tools, improving agility, scalability, and stability for organizations like LinkedIn.

In 2020, VMware acquired SaltStack to enhance its software configuration management and automation capabilities. This led to the development of VMware Aria Automation Config, which combines SaltStack with VMware's expertise in multi-cloud environments.

The webinar will discuss the evolution of software configuration management, VMware's commitment to open source and the SaltStack community, and how LinkedIn utilizes SaltStack for managing their infrastructure. It will also showcase VMware Aria Automation Config, powered by SaltStack.

Power of SaltStack: Enforce Infrastructure Security and Compliance

As cyberattacks and ransomware continue to escalate, it is crucial to fortify your organization's defenses. In this webinar, experts will analyze the evolving risk landscape and provide insights on prevention and recovery strategies. The session will include demonstrations to equip participants with the knowledge needed to protect and recover their enterprises effectively. Participants will learn how to seamlessly migrate from traditional infrastructure to a consumption-based private cloud. Additionally, experts will share tips on bringing the benefits of the public cloud to their private cloud environments. 

Chad Skipper, Global Security Technologist, Networking & Security 
Michael McLaughlin, Senior Technical Marketing Architect 
Chris McCain, Technologist Director, Networking & Security

The Ransomware Defense Mindset: Prevention and Recovery 2.0

Accelerating the journey to the cloud can be an uphill battle when disparate infrastructure stacks and complex IT operations get in the way. So, how do you get the value + ROI with less struggles? With a “Cloud Smart” approach. 
 
Join an interactive, expert-led discussion all about “Cloud Smart”, including a look at how leveraging this approach empowers you to:  
- Adopt a secure multi-cloud architecture that ensures optimal app / cloud placement  
- Enable modern workloads with consistent infrastructure & operations (but less costs) 
- Gain seamless access to public cloud, PaaS, and other services 
 
Whether you’re struggling with cloud migrations, data center extension, application modernization, or multi-cloud management, this is the webcast for you!

Behind the Buzz: How to Put "Cloud Smart" to Work for You

Infrastructure practitioners face challenges with aging infrastructure and complex tools, while limited time, resources, and budgets make it even harder to deliver. Plus, outdated technology stacks hinder scalability and flexibility. 
 
Break down silos and discover the path to an optimal private cloud. Join our expert-led webcast to uncover solutions for infrastructure challenges and practical strategies to move forward. Gain insights into: 
- The importance of a full-stack private cloud for unified operations 
- Smooth migration from traditional infrastructure to a consumption-based private cloud 
- Bringing public cloud benefits straight into your private cloud

5 Infrastructure Modernization Blockers and How to Remove Them

Customers consuming from multiple different cloud face several unique challenges to manage their applications, services, and multi-cloud resources.
They must use multiple tools and depend on different teams of domain experts to gain application visibility across these heterogenous platforms in the context of performance, cost, compliance & risk.
Join this session to learn how VMware Aria portfolio, including VMware Aria Hub and VMware Aria Graph, deliver app-aware management to native public clouds and hybrid clouds that can empower customers to address challenges that span different discipline, tools, and teams.

Deliver app-aware management to native public clouds with VMware Aria Hub

If you can’t see it, you can’t protect it. Considering 44% of breaches perform some sort of lateral movement, that’s a lesson you don’t want to learn the hard way. (Source: VMware Contexa)
 

Today, east-west infiltration by cybercriminal adversaries can quickly turn a relatively minor breach into a damaging data-exfiltration incident or a full-scale ransomware attack. That's why reducing attacker dwell time and curbing lateral movement are essential components to any network security strategy—no matter if you operate on premises, in private clouds or multi-cloud architectures.


Join expert Chad Skipper for eye-opening insights and practical strategies to defend your organization against post-breach lateral movement. You’ll leave the session armed with:
 

Research, statistical analysis, and threat reports emphasizing the threat that lateral movement represents
Key metrics, strategies, and modern solutions for detecting post-exploitation east-west movement
Best practices for an effective response once suspicious activity is detected

Play Network Cop: Detect & Restrict Lateral Movement in Multi-Cloud Environments

Did you know that on average it takes organizations more than three months using legacy load balancers to scale their load balancing capacity? That includes tedious policy management, expensive over-provisioning (or even more expensive under-provisioning), and frustrating supply-chain delays.
 
Join us for a lively, expert-led discussion of application delivery done right. You’ll learn how following the guiding principles of a Cloud Operating Model enables you to get operational simplicity, multi-cloud consistency, pervasive analytics, holistic security, and full life-cycle automation. This means you can spend less time on manual, repetitive tasks and troubleshooting, and more time proactively managing and automating load balancers.

You’ll leave the session with insight into how you can:

- Improve developer productivity by over 27%
- Achieve faster time to scale by 90%
- Lower cost of operations by over 47%

One and Done: Multi-Cloud Load Balancing Done Right

For many frontline organizations today, the same digital tools that empower employees one minute are roadblocks the next, negatively impacting your outcomes and retention rate. That’s why having a strong digital employee experience (DEX) is essential to attract and retain skilled employees, foster innovation, and drive growth.
 

If you’re ready for streamlined workflows and improved customer and employee experiences, join us for a look at how innovations in digital employee experience (DEX) technology can empower you to offer top-of-the-line support that meets business objectives. You’ll leave our session armed with insight into how the right solution can empower your team to:
 

1. Leverage analytics and automation to increase IT, developer, and service desk visibility
2. Provide high-quality, efficient remote worker support including remote view and control capabilities
3. Boost the value delivered to employees and customers

The DEX Factor: Boost Outcomes with Automation and Remote Support

As cybercriminals increasingly target backup files with ransomware, are you confident your organization is protected? To be sure, teams today require explicit validation that recovery points are clean—otherwise, admins risk re-introducing ransomware into the production environment. The challenge is: Modern ransomware recovery requires the integration of multiple, often scattered tools and processes and most companies lack the enhanced capabilities required to address rising threats.

Outplay Cybercriminals: A Managed Solution for Modern Ransomware

As organizations leverage the speed, flexibility and scale offered by a multi-cloud architecture, complexity grows quickly, making it a challenge for IT teams to ensure the security of applications and data, and risking compliance. Meanwhile, an increasing cloud footprint expands attack surfaces. Ever-opportunistic threat actors lurk there, ready to exploit cloud misconfiguration vulnerabilities.
 
Typical barriers to reducing misconfiguration risk across your multi-cloud environment
How attackers can exploit misconfigurations to cause a security breach
Best practices to secure cloud configurations

Cloud Configuration Security: What Public Cloud Users Need to Know

Featured speaker and Senior Analyst at Forrester Research, Tracy Woo, will join Marie Burke, Director of Product Marketing at VMware, to present a deep dive into the top trends influencing the cloud cost management market and key capabilities customers should look for in a vendor. Tracy will also discuss the criteria and methodology for The Forrester Wave™: Cloud Cost Management and Optimization, Q3 2022. Marie will elaborate on why VMware was named a leader in the Forrester Wave™ evaluation.

This Discussion Covers:

Tracy Woo:

Cloud cost management market trends
Criteria and methodology for The Forrester Wave™: Cloud Cost Management and Optimization, Q3 2022
 
Marie Burke:

Key strengths for VMware (CloudHealth)

Deep Dive Featuring Forrester Research: Cloud Cost Management and Optimization

Would you characterize your organization as operating in a state of cloud chaos? If so, you’re not alone. In fact, 81% of companies surveyed by VMware said they are (June 2022). Managing hybrid cloud environments can lead to more complexity, with security a compelling use-case.
 

On April 6, Join Bob Plankers and Hitendar Sethi for an eye-opening discussion about how you can tame the chaos and move forward safely into the cloud. You’ll leave the session with clarity on how you can:

Build and operate a secure hybrid-cloud platform
Secure your migration to the cloud
Speed up regulatory compliance audits

Tame Cloud Chaos: Secure Your Hybrid Workloads with VMware Cloud

If you can’t see it, you can’t protect it. Considering 44% of breaches perform some sort of lateral movement, that’s a lesson you don’t want to learn the hard way. (Source: VMware Contexa)
 

Today, east-west infiltration by cybercriminal adversaries can quickly turn a relatively minor breach into a damaging data-exfiltration incident or a full-scale ransomware attack. That's why reducing attacker dwell time and curbing lateral movement are essential components to any network security strategy—no matter if you operate on premises, in private clouds or multi-cloud architectures.


Join expert Chad Skipper for eye-opening insights and practical strategies to defend your organization against post-breach lateral movement. You’ll leave the session armed with:

Research, statistical analysis, and threat reports emphasizing the threat that lateral movement represents
Key metrics, strategies, and modern solutions for detecting post-exploitation east-west movement
Best practices for an effective response once suspicious activity is detected

Detecting & Restricting Lateral Movement in Multi-Cloud Environments

Does using SaaS to manage VDI, DaaS, and published apps mean you have to start with or move everything to the cloud? Nope. But it’s probably the right model if you want to rapidly scale environments, automate processes through APIs, and gain improved overall visibility and troubleshooting.
 
Join expert Sachin Sharma for a lively discussion on how SaaS can take your VDI deployment to the next level.

SaaS 101: Take Your VDI Deployment To The Next Level

Today real-time visibility into the operation and performance of containerized applications and Kubernetes clusters is very important.  Customers demand to see data from all four pillars of observability i.e. Metrics, Events, Logs and Traces in a single platform to quickly and accurately identify issues, troubleshoot problems, and optimize applications. With VMware Aria Operations for Applications, you can achieve the above easily. Aria Apps provides a unified observability multi-cloud management solution with single-source-of-truth visibility and contextualized information across logs, metrics, and traces for greater business agility while maintaining SLAs. Observability provides answers as to why something is wrong and how to fix it.
 
Key Use-Cases – 
• See metrics, events, logs and traces for an application on k8s come together in a single platform.
• Pinpoint root cause faster to improve uptime, lower MTTR, and enjoy greater business agility.
• How Aria Apps fits into the Aria Hub and Graph multiverse.

Unified Observability for Kubernetes and Applications

With one organization getting hit every 11 seconds, ransomware is top of mind for all IT professionals. In this webcast, we’ll show you how to leverage VMware solutions to defend in depth against ransomware attacks. From networking security with NSX to endpoint protection with Carbon Black and disaster recovery with VMware Cloud DR, you’ll learn how to deliver IT resiliency at scale throughout all the stages of the ransomware protection cycle.

Accelerated Ransomware Protection and Recovery

Hardware-centric and virtual load balancers are, unfortunately, plagued by a trio of pitfalls: they can be expensive, inflexible, and restrictive in functionality—the exact opposite of what today’s high-performance applications require and which lead to troubleshooting difficulty. 

A cloud-ready load balancer like NSX Advanced Load Balancer (Avi), for example, could eliminate these issues for good. 

Tune into this webinar to learn, in just under an hour, how to work with a cloud-based load balancer like NSX and to gain a demo of how this platform:
• Eliminates capacity management challenges and overprovisioning
• Manages traffic spikes with on-demand autoscaling 
• Offers a single platform for data center, cloud, and container-based apps.

Cloud Load Balancers Step in When Hardware Falls Short

Cobalt Strike, a tool that support red teams in attack simulation exercises, provides several techniques to execute attacks that compromise a target network, establish a bulkhead in the network, and then move laterally to gain additional access to computers, accounts and, eventually, data. While the intention of Cobalt Strike was to provide a framework to test network defenses, the power provided by the tool was not lost on malicious actors. Given its dual nature and wide adoption by both sides of the security battlefield, it is not surprising that Cobalt Strike-related detections account for a substantial portion of alerts in most networks. This presentation discusses how Cobalt Strike’s abused components (especially the Beacon) can be detected at the host and network levels.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Cyber Security

Cyber Attacks

IT Security

Ransomware

Cyber Defence

Threat Detection

Information Security

Cloud Security

Cloud

Network Security

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful end user computing insights from influential EUC experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on effective approaches to get non-programmers to create working applications.

End User Computing

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

A Tale of Two Beacons: Detecting Implants at the Host and Network Levels

Presented by

About this talk

More from this channel