Name: LockBit Ransomware Silently Disables all EDR
Start: 2023-07-25T08:00:00Z
End: 2023-07-25T08:00:52.000Z
Location: BrightTALK
Rating: 4.9

Sangfor Technologies is a leading vendor of Network Security, Cloud Computing and Infrastructure solutions. Our Webinar Series are designed to educate current & new customers about the Latest Trends in Cyber Security & Cloud Computing. Stay tuned for more information about our upcoming webinars by visiting our website at www.sangfor.com.

Being forced to use and maintain outdated security technologies in today’s fast evolving threat landscape certainly leaves you vulnerable to the newest attacks. Prioritization as you plan technology upgrades is key.  This session helps you understand how to prioritize adopting new technologies for security operations (SecOps).  Replacing SIEM will be used as an example showing why tradition solutions are no longer enough for robust SecOps.  

We will highlight the shortcomings of traditional SecOps solutions and  present Sangfor Cyber Command (NDR) and Cyber Guardian (MDR service) as powerful alternatives. We’ll explain how our Simplified SecOps solution with Cyber Command at the core  provides better detection and response and simpler operations compared to traditional SIEM SecOps. We will  also explore how Cyber Guardian Managed SecOps expert services ensure a smooth transition upgrading your existing security controls. 

Join us to learn how our next-gen solutions improve your precision and agility in combating modern threats. Don't miss this opportunity to move your SecOps strategy forward to better protect your business.

Moving SecOps beyond SIEM

Cloud repatriation, the practice of organizations moving part or all of their IT infrastructure from the public cloud back to on-premises/private cloud, is on the rise. This trend is driven by the realization of certain challenges after the initial rush to the cloud, including high costs, lack of control, security concerns, and data sovereignty compliance needs. Advancements in hybrid cloud technology have also made cloud repatriation more feasible, allowing businesses to enjoy the best of both worlds.

However, cloud repatriation isn’t a one-size-fits-all solution. Which workloads should remain in the public cloud, and which are better suited to the local environment? This decision depends on multiple factors, including an application’s user, performance, security, resource, and regulatory requirements. Workloads might even alternate between cloud environments at different times.

This webinar offers guidance and solutions to organizations considering or already in the process of cloud repatriation in formulating an effective strategy. It aims to help you find a balance between immediate financial benefits and long-term strategic objectives, ensuring your IT setup is optimized, cost-effective, and compliant.

Cloud Repatriation: Reversing the Side Effects of Going Cloud-First

In recent years, the emergence of Large Language Models has ushered in a new era for AI, elevating it to unprecedented levels of intelligence. Hackers have weaponized this powerful technology, making cyberattacks easier to carry out, more widespread, and more varied in their methods. This scenario challenges cybersecurity vendors to develop AI technologies that are equally advanced, if not more so, to counter these threats. 

But how exactly does AI function in cybersecurity? And with so many vendors promoting their AI technologies, how can you differentiate between them? These are crucial questions for investing in the right AI security technologies and maximizing their benefits. 

This webinar aims to address these important questions. We will clarify the differences between various types of AI, such as Machine Learning, Deep Learning, and Large Language Models, and provide examples of their applications. We’ll also discuss the AI technologies Sangfor employs in its security solutions and explain how they can defend against AI-enabled cyber threats.

A Little Different from Sangfor AI

Done Deal. On February 26, VMware agreed to sell its End-User Computing (EUC) division to the investment company KKR, sparking concern among VMware customers of products like Horizon. “What will be the changes?” and “How will this impact my business?” you might be asking. This latest move, along with changes to the vSphere product lineup and the end of perpetual licenses, have prompted some VMware users to consider alternative solutions.

But what does an industry-leading VMware replacement look like?

We have set up this webinar to guide VMware vSphere and Horizon customers through this critical transition. We’ll discuss key factors to consider when exploring alternatives, covering both technical and commercial aspects such as features, performance, bundle and licensing options, vendor ecosystem, and business alignment. We’ll also compare Sangfor HCI and VDI with VMware vSphere and Horizon, highlighting areas where Sangfor is unique and excels. 

Change can be scary, but with the right tools and insight, you can sail through it. Join us in tackling these challenges head-on, ensuring a smooth and informed switch from VMware.

VMware Sells EUC to Investment Firm KKR: What’s Next for VMware Customers?

SD-WAN offers the most advanced solution to today’s wide area networking challenges. However, unlocking your network’s potential with SD-WAN requires thoughtful consideration. Key questions include: Do I need SD-WAN? What challenges do I need to address? And which is the best solution for my organization? In a vast ocean of offerings and proclaimed benefits, decision-makers can easily find themselves drowned in the abundance of information. 

In our upcoming webinar, we aim to provide clarity on these questions. First, by reviewing what SD-WAN is and how it simplifies network management, improves connectivity, and reduces costs. More importantly, we will unveil the five essential elements for designing your SD-WAN architecture, including your specific business context and security. These elements are derived from our extensive experience in assisting customers with their SD-WAN implementations, and understanding them will streamline your decision-making process. 

Join us to gain actionable insights for your SD-WAN implementation, ensuring that your decision is informed, strategic, and perfectly aligns with your organization’s needs.

Five Essential Elements for Designing Your SD-WAN

2023 was a banner year for cyber-attacks, marked by huge rises in ransomware attacks, DDoS attacks, cyber theft, and attacks on infrastructure. Most pundits agree that 2024 will only get worse. Every pundit seems to think they are the Nostradamus of cybersecurity, spewing predictions of what is to come this year—and most pundits pretty much predict the same things.

Well, guess what? We at Sangfor think we can be Nostradamus too! So come listen as we present a short overview of the biggest incidents of 2023 and how they guided our predictions for the state of cybersecurity in 2024. We promise we might have one or two visions of things you have not heard before! If that does not interest you, come for the lucky draw!

Predicting Cybersecurity and You or I’m No Fool in 2024

2023 has zipped by, and 2024 will be upon us before we know it. This is akin to the speed at which hackers have compromised countless organizations with ransomware, catching them off guard.

The Sangfor Cyber Guardian Incident Response (IR) team has compiled a selection of IR investigations conducted over the past year—shared with you in the Sangfor 2024 Calendar. This calendar offers key lessons learned from each IR case as well as checkboxes for you to mark and track the implementation of security controls. 

Reserve your space in this highly regarded once-a-year webinar, where we dissect the Sangfor 2024 Calendar, highlighting the real-world tactics leveraged by attackers to breach defenses, and how you can counteract their attacks based on our expertise. Share your security challenges and concerns during the Q&A session and gain actionable advice on how to enhance your security in the coming New Year.

Sangfor 2024 Calendar: Incident Response Success Stories

Frost & Sullivan reported Sangfor's impressive 37.7% YoY growth in the SASE space. We will analyze key strategies that led to this success, including targeting mid-sized customers, excelling in specific verticals like manufacturing, BFSI, and technology, and the significance of this growth trajectory for the future of cloud security.

In this webinar, inspired by Frost & Sullivan's insights, we will explore how Sangfor Access Secure is prepared to meet the evolving business needs of our customers, offering comprehensive security capabilities in a rapidly changing digital world.

The Impressive Growth of Sangfor Access Secure: A Frost & Sullivan Perspective

Sangfor is honored to have our esteemed Cybersecurity consultant, Desmond, share his expertise on “The Path to Security for Global Manufacturing Enterprises” during the Fifth International Conference on Industrial Cybersecurity Emergency Response (#ICER). Desmond’s insightful session shed light on the challenges faced by manufacturing enterprises in today’s digital landscape and provided valuable strategies to enhance cybersecurity measures. 

In this presentation, Desmond provides insights into the definition of Cyber Security Internet response and highlights the threat landscape compiled from extensive experience in handling multiple Incident Response (IR) cases within the APEC region. The presentation also delves into intriguing case studies and stories derived from incident response investigations, shedding light on the hackers’ exploitation methods and tactics. 

Watch the on-demand video to learn more!

The Path to Security for Global Manufacturing Enterprises

Bold Statement for a Bold Solution.  Ransomware attacks occur every 11 seconds with 37% of all businesses and organizations having suffered one or more attacks. You need a bold solution to defend against those statistics. Sangfor Technologies’ Solution for Ransomware is that bold.

All next-gen anti-virus (NGAV) are proven to detect and block zero-day advanced persistent threats (APTs) with 99.5% success. Sounds great until you realize that 350,000 new malware variations are discovered every day.  Blocking 350K new malware at 99.5% means 1750 potentially successful malware attacks daily and it only takes one to get through. Once ransomware gets through, it may sleep for weeks before initiating its kill chain.

When an APT breaches, you need to find it and eradicate it.  Sangfor’s Solution for Ransomware, featuring the newly released Endpoint Secure 6.0.2 and Network Secure firewall, recognizes that detecting and blocking is the best effort so it concentrates on threat hunting to find the APT that successfully infected your organization. Each product in our ransomware solution blocks one or more steps in the attack kill chain, making sure you are completely protected.

This webinar will highlight the unique technologies that allow us to make that bold statement.  We will even have a demo to show our solution in action. And there will be a lucky draw for 5 $20 USD gift cards to thank you for your time. Come see for yourself if we really Stop Ransomware in 3 Seconds!

Stop Ransomware in 3 Seconds!

Amid rapid digital transformation, businesses are increasingly compelled to adopt digital technologies to maximize productivity and lower operating costs. In the realm of digital workspace solutions, we are faced with a multitude of options, ranging from traditional PCs to modern Virtual Desktop Infrastructure (VDI) and Desktop as a Service (DaaS) solutions. However, not every solution is suitable for all organizations. 
 
In our upcoming webinar, we’ll highlight the differences and application scenarios of various workspace solutions. We’ll also showcase the unique features of Sangfor VDI and round off the webinar with practical examples for your reference.  
 
Join us to learn how to select the right workspace solution for Your organization to optimize value and maximize user productivity.

Maximize User Productivity with The Right Workspace Solution

Today’s businesses are compelled to undergo digital transformation to improve agility, expedite time to market (TTM), and better serve customer needs. If you haven’t begun your digital transformation journey, it’s not too late. A practical first step is a partial transformation by adopting cloud computing for use cases like disaster recovery and public-facing applications.
 
However, with the move to the cloud, it’s crucial to address the challenges of data protection and compliance with both internal and external regulations. Let’s explore how Sangfor Managed Cloud can help You kickstart Your digital transformation with the help of professional support. We will discuss how this cloud solution, provided by locally based data centers, ensures data sovereignty while offering a comprehensive suite of service options.

Maximizing Data Protection and Compliance with Sangfor Managed Cloud

Ransomware attacks are still on the rise globally and all businesses are at risk. 70% of businesses will suffer one or more ransomware attacks in the next year. Small businesses are especially at risk as many do not have sufficient security protection against APTs like ransomware.

Sangfor Endpoint Secure is the Future of Endpoint Security, and that future is now brighter for businesses of all sizes. Endpoint Secure has innovations designed to protect against all types of ransomware. With a combination of static and dynamic AI-based behavioral detection, Sangfor Endpoint Secure blocks and kills all ransomware in as little as 3 seconds. While we offer best-in-class protection, we know that prevention is the best effort. With 350K new malware samples every day, we must assume we’ve already been breached. Hence innovations in Endpoint Secure include restoration of files and even systems affected by ransomware, ensuring zero data loss and minimal downtime.

Endpoint Secure does not just innovate protection, but asset management as well to better meet organizational operations and compliance requirements while reducing TCO. Improved XDDR integration with Network Secure closes security gaps that APTs exploit by providing accurate and effective closed-loop detection and response unmatched by any other solution today.

Discover how easy-to-use and lightweight Sangfor Endpoint Secure protects Your business against APTs and ransomware, simplifies asset management, and improves compliance all from a single pane of glass, on-premises or in the cloud.

The Future of Endpoint Security is Brighter Against Ransomware

Organizations are moving their Enterprise Applications from complex physical platforms to more modern solutions like virtualization and private cloud platforms. This shift offers several advantages, such as enhanced performance, reliability, and flexibility. However, we're dealing with critical enterprise applications that demand the utmost protection and availability. Can we truly simplify the hosting environment while introducing a host of mechanisms like intrusion detection system, backup, and disaster recovery to maintain security and resilience? And how do we manage the associated costs and technical risks of these additional requirements?

A Simple, Secure, and Resilient Platform for Enterprise Applications

Security operations (SecOps)—defined as the real-time monitoring, detection, and response to cybersecurity threats—has become a top priority for many businesses. However, their efforts are hampered by the constant evolution of security threats and a shortage of cybersecurity talent.

Sangfor’s initial XDDR framework integrated various Sangfor technologies to make SecOps simpler and more effective. However, we recognize that technology alone cannot fill all operational gaps.

Sangfor XDDR 2.0 enhances this framework by combining our best technologies with the human expertise of our Cyber Guardian MDR service. This integration effectively addresses the challenges organizations face in the 3 core pillars of SecOps: People, Process, and Technology.

We invite you to join this webinar to discover Sangfor XDDR 2.0 and learn how it provides all the essential elements to safeguard your organization in today’s threat landscape.

Sangfor XDDR 2.0: Better with MDR

The benefits of cloud computing are now well-established, making it a key element for any digital transformation strategy. However, many organizations proceed cautiously with cloud adoption due to existing legacy systems that can't be phased out quickly. As a result, a hybrid cloud setup serves as an effective starting point for cloud adoption, providing a balanced approach by allowing existing on-premises systems to coexist with new cloud-based applications. Despite its advantages, the hybrid approach comes with its own set of challenges, mostly arising from the use of different infrastructures and technologies between private and public cloud environments.
Sangfor Unified Hybrid Cloud solves this problem by using the same technology stack for both your private and public cloud. This ensures consistent management, operations, and security across your entire cloud environment.

Join our webinar to discover how Sangfor Unified Hybrid Cloud provides a step-by-step approach for your cloud adoption, regardless of where you are in your cloud journey.

Sangfor Unified Hybrid Cloud: A Cloud that Evolves with You

Digital transformation is reshaping the way organizations deliver and manage end-user computing, introducing greater demands for data security, remote accessibility, resource scalability, and more. Meeting these demands often involves using multiple products from multiple vendors, which leads to management complexity, cost inefficiency, and poor support.
 
Introducing Sangfor VDI 5.9.0—Revolutionizing Desktop Delivery and Management.
 
Sangfor's latest HCI hypervisor software combines HCI and VDI capabilities into a single platform. This enables efficient management of both desktop and server virtualization, streamlining business IT operations. With deep integration of Sangfor's cloud and security features, VDI 5.9.0 provides robust data protection and rapid response to security events. Join us for the global launch event of one of the industry's leading VDI solutions, with 2.3 million deployments to date. We will discuss the significant advantages and benefits of our latest VDI version and how it can simplify your operations through a converged architecture.

The Road to Convergence with Sangfor VDI 5.9.0

In an era where data breaches and leaks are a growing concern, it's imperative to fortify your organization's data protection strategies. Join us for our informative webinar to discover how you can improve your data loss prevention (DLP) efforts by securing outbound  data practices.

In this session, we will delve into into challenges that traditional DLP solutions often face and how Sangfor Internet Access Gateway's innovative DLP employs content-aware security controls to ensure protected communication channels while auditing outbound data. 

Don’t miss this opportunity to gain fresh perspective on DLP and take the next step towards a stronger, more effective data protection strategy.

Ensuring DLP with Secure Outbound Data

During a recent incident response investigation of a LockBit ransomware attack, the Sangfor Cyber Guardian IR Team discovered LockBit used TDSSKiller from Kaspersky to terminate EDR agents to evade detection and deploy the ransomware. TDSSKiller is a legitimate tool developed by Kaspersky to detect and remove rootkits. However, our investigation reveals that it can be abused to kill endpoint security software, including Microsoft Defender. This webinar will demonstrate how LockBit disables EDR and what You need to do to protect against this threat.

LockBit Ransomware Silently Disables all EDR

Ransomware

lockbit

TDSSKiller

Cyber Security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

LockBit Ransomware Silently Disables all EDR

Presented by

About this talk

More from this channel