Name: Codefinger: A Ransomware Threat from Within
Start: 2025-01-17T22:51:00Z
End: 2025-01-17T22:51:22.000Z
Location: BrightTALK

At Cloud Storage Security, we pride ourselves on helping organizations across the globe prevent the spread of malware, locate sensitive data, and assess their storage environments in order to extend data privacy, meet compliance requirements, and manage security mandates.
 
Content on this channel is designed for CISOs, SAs, Engineers, MSPs, Auditors and others who are responsible for data security in the cloud.

 Learn more at www.CloudStorageSec.com. 

Attackers target files in cloud storage. Join AWS and Cloud Storage Security to see two exfiltration incidents traced end to end. We will show how native AWS guardrails and telemetry reveal the signals and how DataDefender turns those signals into fast, actor-time-object investigations. We will also cover access trails and bulk download patterns.

Cloud Storage-Layer Defense in Modern Cloud Environments

Recent high-profile data breaches, like the Coinbase attack, highlight a critical gap in cybersecurity: the lack of proactive activity monitoring. Despite significant investments in security resources, organizations remain vulnerable to both internal and external threats. This webinar will explore why activity monitoring is crucial in today's data-driven cloud environments, where data volume and dispersion are rapidly increasing. We'll delve into how activity monitoring works, covering both signature-based detection and anomaly detection, and demonstrate how these methods can prevent incidents like the Coinbase exfiltration and Ingram Micro ransomware attack. Learn best practices for protecting your organization's data and discover how solutions like Cloud Storage Security's DataDefender automate threat detection and mitigation, acting as a vital first and last line of defense.

Preventing Internal and External Data Breaches with DataDefender

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.

In the second quarter of 2025, the lack of proactive activity monitoring, misconfigurations, and the proliferation of ransomware-as-a-service (RaaS) groups were the most prominent threats to organizations that store data in the cloud, resulting in tens of millions of records lost as well as the reputational damage that accompanied it.

Join us for this technical talk, where we will:  
Demonstrate how many attacks could have been prevented by using 
Analyze how leaked credentials and misconfigurations result in severe data loss
Educate viewers on how to prevent similar incidents from compromising their sensitive data stores

Inside Q2 2025’s Most Dangerous Cloud Storage Threats

The vast majority of regulations contained within PCI-DSS v4.0 came into effect on April 1, 2025. In order to better protect payment card information (PAN), the Payment Card Industry council has introduced malware scanning requirements designed to protect data stored within the cloud.

Amazon Web Services (AWS) provides customers with the materials, guidance, and services they need to ensure compliance with regulatory frameworks such as PCI-DSS v4.0. Together with Cloud Storage Security (CSS), joint customers can easily and readily meet the malware scanning requirements detailed in Requirement 5 of PCI-DSS v4.0.

Join us for this technical talk, where you will:  
Learn how to satisfy malware scanning requirements contained within PCI-DSS v4.0 Requirement 5
Learn how to configure the relevant AWS services and controls related to malware scanning in order to keep compliant

Data Security and PCI-DSS v4.0: How Your Organization Can Prepare for Compliance

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.

In Q1 of 2025, botnet malware dominated the charts as the most popular strains of malware detected by our laboratory. However, in April, different manners of threats reared their ugly heads.

Join us for this technical talk, where we will:  
Demonstrate how the most popular pieces of malware operate in a testing environment 
Outline how organizations can adapt security practices to prevent the intrusion and eventual detonation of malware

Top Malware Threats of April 2025: What You Need to Know

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.

In the first quarter of  2025, infostealers, leaked credentials, and misconfigurations were the most prominent threats to organizations that store data in the cloud, resulting in tens of millions of records lost as well as the reputational damage that accompanied it.

Join us for this technical talk, where we will:  
Demonstrate how the most popular strains of malware operate within a testing environment
Analyze how leaked credentials and misconfigurations result in severe data loss
Educate viewers on how to prevent similar incidents from compromising their sensitive data stores

Inside Q1 2025’s Most Dangerous Cloud Storage Threats

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.

In the first two months of 2025, infostealers such as Mirai dominated the charts as the most popular strains of malware detected by our laboratory. However, in March, different manners of threats reared their ugly heads.

Join us for this technical talk, where we will:  

Demonstrate how the most popular pieces of malware operate in a testing environment 

Outline how organizations can adapt security practices to prevent the intrusion and eventual detonation of malware

Top Malware Threats of March 2025: What You Need to Know

The vast majority of regulations contained within PCI-DSS v4.0 comes into effect on March 31, 2025. In order to better protect payment card information (PAN), the Payment Card Industry council has introduced malware scanning requirements designed to protect data stored within the cloud.

Join us for this technical talk, where you will:  
           
Learn how to satisfy malware scanning requirements contained within PCI-DSS v4.0 Requirement 5

Learn how to configure the relevant services and controls related to malware scanning in order to keep compliant

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.

In February 2025, the top two most popular malware strains that Casmer Labs detected were Mirai, a well-known botnet malware that targets IoT devices to launch DDoS attacks, and Prometei, a similarly dangerous botnet malware. 

Join us for this technical talk, where we will:  
Demonstrate how these pieces of malware work in a testing environment 
Outline how organizations can adapt security practices to prevent the intrusion and eventual detonation of malware

Top Malware Threats of February 2025: What You Need to Know

Cloud Storage Security’s internal threat laboratory, Casmer Labs, has been hard at work discovering and identifying the most current and pressing threats to organizations that operate in the cloud.    In January 2025, the top two most popular malware strains that Casmer Labs detected were SnakeKeyLogger, a widely distributed infostealer targeting credentials, and RustyStealer, a sensitive data-harvesting Trojan. 

In this technical talk, put together for Solution Architects, DevOps, Engineers, Cloud Security Personnel, CISOs, CTOs, and CIOs, we: 
  - Demonstrate how these pieces of malware work in a testing environment 
  - Outline how organizations can adapt security practices to prevent the intrusion and eventual detonation of malware

Top Malware Threats of January 2025: What You Need to Know

In 2024, a number of high-profile organizations experienced data breaches due to publicly accessible Amazon S3 buckets and 2025 is shaping up to be no different. The problem that most organizations face is that implementing effective protection for Amazon S3 involves navigating a variety of access control options. Whether you’re managing permissions through IAM roles, Access Control Lists (ACLs), or bucket policies, using the right tools and techniques for specific use cases is essential.

This technical webinar outlines advanced security practices for Amazon S3, helping you choose the best options and ensuring the safety and security of your most important asset: your data.

From Setup to Lockdown: A Complete Guide to Amazon S3 Security Configuration

Year after year, more data moves into the cloud. While the physical state of data remains the same as it did on-premises, the inherent accessibility of the cloud presents a unique set of challenges that require attention, research, time and monetary investment to address. By attending, you’ll learn:
  -  Why security for storage in the cloud is different from security for servers, networks, and endpoints
  -  What a security strategy should include to protect cloud storage
  -  How to evaluate potential solutions

Building a Strategy to Secure Your Cloud Storage

Ransomware strains, cyberattack strategies and threat actors are constantly evolving and 2024 was no different. While there are hundreds of ways your cloud storage resources can be compromised, a few new developments in the last year have resulted in significant data breaches, substantial compliance violations, and tens of millions of dollars in fines and reputational damage. Tune in to learn more about:
  - Major cloud storage security vulnerabilities, attack methods, and strains of malware that became popular in 2024
  - Whether your organization needs to address them
  - Strategies you can implement to protect against the inevitable flow of new threats in the year ahead

The Nastiest Threats to Cloud Storage in 2024 & What to Avoid in 2025

The fallout of a ransomware attack can be complex, costly and time-consuming. Prevention is key. Cloudticity and Cloud Storage Security provide guidance and tooling, enabling you to take action. Tune in for an introduction to:

- How to detect ransomware in cloud storage 
- How to detect ransomware in cloud infrastructure
- How to manage the cybersecurity life cycle

Ransomware Solutions and How We Can Help

For Change Healthcare and other recent victims, critical security protocols were not enabled, making them low hanging fruit in the eyes of attackers. You can do better. A layered defense strategy is critical when it comes to stopping ransomware. Is your organization following these best practices?  

- Enabling cross-region/multi-zone backups 
- Simulated testing
- Scanning the code level

Find out what you can do today to lower your risk.

Best Practices for Ransomware Prevention, Defense, and Mitigation

Ransomware can paralyze a company, halting operations and disrupting its ability to provide care. This talk highlights recent notable ransomware attacks in the healthcare industry and what went wrong, touching on entry points, attack signals, and the cost of not having a plan in place. Join us to learn from the missteps of Change Healthcare and others.

Ransomware Challenges in Healthcare

This episode of Security LIVE! with Rich Vorwaller, Chief Product Officer, and Velizar Demirev, Customer Success Leader, with Cloud Storage Security (CSS), discussed how they help ensure business’ most important information doesn’t get into the wrong hands. with AWS hosts, Ryan Orsi and Himanshu Verma.

Security LIVE! with Cloud Storage Security | S3 E32

A new ransomware campaign dubbed Codefinger is targeting Amazon S3 users.  What's notable about this approach is that the attackers leverage compromised AWS credentials to access and encrypt the victim’s data via AWS server-side encryption with customer-provided keys.  In this session from Cloud Storage Security’s threat laboratory, Casmer Labs, learn how Codefinger works, including a simulation of the steps an attacker could take, and how to protect against it.

Codefinger: A Ransomware Threat from Within

Amazon Web Services

Ransomware

Cloud Security

Threat Analysis

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Codefinger: A Ransomware Threat from Within

Presented by

About this talk

Cloud Storage Security