Name: Securing ICS Workstations: Vulnerability Identification with OVAL
Start: 2023-10-10T05:00:00Z
End: 2023-10-10T05:00:49.000Z
Location: BrightTALK
Rating: 5

Large language models (LLMs) are used in an increasing number of applications that handle more critical tasks and are granted greater degrees of autonomy. While such agentic applications are powerful and versatile, LLM-based applications remain brittle and vulnerable to LLM-specific security threats.

Join this webinar AI Agents vs. Prompt Injections, Vladislav Tushkanov from Kaspersky AI Research Center will introduce one of these key vulnerabilities, prompt injection. He will examine the most recent and notable cases, such as EchoLeak, where prompt injections in production LLM applications led to significant privacy breaches. Finally, we will implement a demonstration agent to explore how these attacks function under the hood.

Highlights
• a concise overview of the recent cases of attacks on LLMs
• an in-depth look into the underlying mechanics of the attacks
• a Q&A session with the speaker

Additionally, Vladislav will present a newly released Kaspersky online training program on Large Language Model Security. This course covers both the theoretical foundations of how LLMs are trained to resist attacks and why this training may fail, while also providing extensive practical guidance for testing LLM application security and implementing effective safeguards against real-world attacks.

AI Agents vs. Prompt Injections

Quantum technologies are no longer just theory — they’re evolving fast. And while they promise breakthroughs in science, medicine, and technology, they also carry a serious warning: the power of quantum computers could undermine today’s most trusted security systems. Experts believe a fully fault-tolerant quantum computer might appear within the next decade — and when it does, the cybersecurity landscape will never be the same.

Join this webinar The Quantum Threat: Preparing for Next-Generation Cyber Risks as Sergey Lozhkin, Head of Kaspersky’s Global Research & Analysis Team for META and APAC, to explore:

•            The current state of quantum computing: how advanced are quantum technologies today?
•            The key cybersecurity risks of quantum breakthroughs: what threats should we expect?
•            Preparing for the quantum future: what steps can cyber community take today?

The Quantum Threat Preparing for Next-Generation Cyber Risks

Modern cars are no longer just a means of transportation. Their built-in services can manage everything for drivers and passengers alike from seat heating, to using voice-controlled GPS to find a coffee, or make theater ticket reservations. Along with the development of consumer services, driver safety services have also been developed – distance sensors to neighboring cars, speed limit recognition and the eCall safety system, to name a few.

These hi-tech solutions designed to improve the user experience and make your journey safer, are architecturally based on algorithms and technologies that in themselves carry threats to information security. The wider the user experience, the wider the attack surface for an attacker. 

In this webcast, Cyberthreats to modern automotive industry, Sergey Anufrienko and Alexander Kozlov, security researchers at Kaspersky ICS CERT will discuss:

• Threat landscape: how has changed and evolved over the last 10 years
• Top threats the automotive industry is exposed to
• Standards of automotive security
• Trends in automotive security

Cyberthreats to modern automotive industry

From web portals and email gateways to cloud platforms and local storage, modern businesses depend on a multi-layered IT environment. But each layer can also become a potential entry point for cyberthreats. That’s why having a unified, robust security solution across your entire infrastructure is critical.

Kaspersky Scan Engine is designed precisely for this challenge. Whether your systems are on-premises, in the cloud, or somewhere in between, it delivers powerful threat detection wherever you need it—ensuring consistent protection across your environment.

Join our upcoming live webinar to go beyond product specs and see how leading organizations are using Scan Engine in real-world scenarios. We’ll walk through integration examples, explore common deployment patterns, and share success stories that show how seamlessly the solution fits into complex ecosystems.

In this session, you’ll learn:

- How Scan Engine fits into today’s diverse IT architectures
- Ways to integrate it with tools you already use
- Real-life case studies showing its flexibility and effectiveness

Discover how one powerful engine can secure every part of your digital landscape.

Kaspersky Scan Engine Built to integrate, engineered to protect

In the ever-evolving threat landscape of cybersecurity, true expertise is the key of robust protection. In 2023 alone, Kaspersky products thwarted over 437 million cyber attacks, while detected 411,000 new malicious files daily. What powers these formidable defenses?

Join Oleg Gorobets, Security Evangelist at Kaspersky, and Alexander Liskin, Head of Kaspersky's Threat Research, as they unveil the inner workings of Kaspersky’s five Centres of Expertise (Threat Research, Global Research and Analysis Team, AI Research, Security Services and ICS CERT). Discover their pivotal roles in safeguarding businesses and individuals, and explore real-world case studies demonstrating the impact of Kaspersky's expertise in defending against most complex cyber threats.

Whether you're a cybersecurity professional, a decision-maker, or simply interested in the dynamics of cyber defense, this webinar will provide valuable insights and practical knowledge.

The Cybersecurity Buyer's Dilemma Hype vs (True) Expertise

As the frequency of cyberattacks continues to rise, the ability to swiftly and effectively reverse-engineer malware is paramount. To equip you with the skills needed, we are re excited to invite you to our webinar that delves into the depths of Ghidra – an indispensable tool for InfoSec professionals widely used for malware analysis.

The experts will showcase Ghidra's capabilities through the analysis of the Calypso malware. Throughout the session, our Kaspersky Global Research & Analysis Team (GReAT) experts, Igor Kuznetsov and Georgy Kucherin, will share practical tips and tricks, emphasizing effective analysis of functions utilizing structures and function pointers.

Here’s what our experts will cover during the webinar:
Introduction to Ghidra and its significance in reverse engineering.
Live demonstration: Analyzing the Calypso malware with Ghidra.
Tips and tricks for efficient reverse engineering.
Overview of our newly released online training course “Advanced malware reverse engineering with Ghidra”.
Advanced topics: API function hashing, decompiler scripting, and extending Ghidra's capabilities.
Don't miss out on this opportunity to elevate your reverse engineering skills and gain insights from our experts.

Take Your Reverse Engineering to Another Level with Ghidra

Cybercriminals tend to be secretive and act without disclosing their identity. However, when it comes to ransomware negotiations, the victim and the attacker have to “meet” face-to-face. Moreover, by the time the two sides meet to discuss the price, the attackers have already gained control of a company’s data or network – that puts the victim in a weak position.

What is it like to negotiate with someone who is trying hard to get a ransom whilst remaining in the dark? What can you expect from such negotiations? In this webcast, Insights to Ransomware Tactics and Negotiation, Marc Rivero, senior security researcher, GReAT at Kaspersky will observe various tactics used by ransomware groups, explain how the companies are trying to negotiate with these cybercriminals, and what outcome such negotiations may have.

- What Ransomware as a service (RaaS) model is
- What a data leak portal in RaaS terms is
- About ransomware negotiations: stages, means of communication
- What to do if you have been contacted by a ransomware group

Insights to Ransomware Tactics and Negotiation

Despite all the technological advancements, human factor remains one of the most significant vulnerabilities – as the evolution of the threat landscape is less about sophisticated code and more about ingenious scenarios. The problem is even more acute as there is a significant shortage of qualified cybersecurity specialists in the market. Our latest insightful webinar explores the critical role of human factors in cybersecurity and share strategies to mitigate these risks effectively.

Join Kaspersky expert Oleg Gorobets, as he shares valuable insights and practical advice on enhancing your organization’s defenses and will delve into the following topics:

● Human vulnerabilities: the most common non-IT and IT/InfoSec professionals’ errors and intentional information security policy violations that led to security breaches and how they can be exploited by cybercriminals;
● The impact of InfoSec professionals’ shortage on an organization’s cybersecurity;
● Monotonous work and burnout of InfoSec professionals as the obstacles to reliable company's cyber protection;
● Breakdown of common cyber incidents that occurred over the last two years due to human factors in companies around the world;
● Finding a fitting solution: attention turns to tech and automation.

Don’t miss this opportunity to enhance your cybersecurity knowledge and learn how to effectively mitigate human risks!

Cybersecurity's human factor – more than an unpatched vulnerability

In today’s digital world, securing your customers’ smartphones is absolutely essential. Malware infections, scams, and financial fraud erode customer trust.

Join this webinar Fortify Your Mobile Protection: Building Customer Trust with Advanced Security to discover how the Kaspersky Mobile Security SDK provides powerful protection. We will demonstrate key security features to safeguard user data and stop scams. You will also see how our partners from diverse industries successfully integrate Kaspersky’s technology with their own apps.

Learn to build a truly secure application that your customers can rely on to keep their devices safe, strengthening both security and brand loyalty.

Fortify Your Mobile Protection Building Customer Trust with Advanced Security

Hardly a day goes by without yet another organisation falling prey to a cyberattack or data breach that has led to reputational and financial losses. The security landscape will get even more tumultuous, with APAC organisations expected to continue facing tough security challenges arising from the shortage of talent, new cloud vulnerabilities and the proliferation of surreptitious malware. Against this backdrop, security operations have become more challenging, driving organisations to consider new approaches that improve the timeliness and accuracy of threat detection while automating response actions. 

Hear from the panel experts in Cybersecurity Frontiers: Crafting Future-Ready Defenses in a Connected World as the panellist shares how you can build a resilient culture and prepare for future challenges.

Cybersecurity Frontiers: Crafting Future-Ready Defenses in a Connected World

As cyber threats continue to evolve in complexity, organizations are seeking integrated, proactive, and intelligent ways to protect their IT environments. In this exclusive session, Kaspersky experts and industry leaders come together to explore how a holistic cybersecurity strategy — anchored by Kaspersky’s Cybersecurity Framework and powered by modern SIEM technology (KUMA) — can address today’s security challenges. Learn how to build visibility, automate detection, and future-proof your enterprise’s defences.

Strengthening Cyber Defenses: A Practical Look into Kaspersky’s SIEM & Framework Approach

With the rapid expansion of cloud adoption, security teams are encountering ever-more intricate challenges. While securing the cloud is a critical first step, the focus must now extend to safeguarding workloads. Modern applications and services, frequently developed using containerized solutions, provide developers with enhanced efficiency—yet they introduce significant security complexities. To mitigate these threats, a holistic strategy is essential to protect both cloud environments and the workloads they host.

Mark your calendar for July 23 and join Anton Rusakov-Rudenko, Kaspersky’s Cloud & Network Security Expert, in an exclusive webinar where he will discuss:

• Global cloud migration trends backed by key statistics;
• Major security hurdles in cloud and container-based ecosystems;
• A comparison between emerging DevSecOps methodologies and conventional security models;
• How Kaspersky has advanced cloud workload protection over time;
• A live demonstration of Kaspersky Cloud Workload Security.

Seize this chance to acquire actionable strategies and expert knowledge for strengthening your cloud security!

Kaspersky’s way of cloud workload protection

In the past year, Kaspersky blocked close to 900 million phishing attempts. So, it’s not an overstatement to say their team is made up of experts on email-based threats.

In this webinar, you can hear from 3 of those experts, including Spam Analyst, Anna Lazaricheva, about the latest developments in email security. The group will cover:
• Exclusive highlights from the Kaspersky 2024 Spam and Phishing Report
• Modern email attack tactics 
• How, with advanced detection technologies and threat intelligence, you can identify even the most evasive threats
• Proven, practical defense strategies, including to bolster your email protection with Kaspersky Security for Mail Server 

Whether you’re a cybersecurity expert, IT decision-maker, or business leader, this session will equip you with the latest insights and tools to secure your email environment in today’s threat landscape.

Email Security: Lessons from Blocking 900 Million Phishing Attempts

Cybercriminals tend to be secretive and act without disclosing their identity. However, when it comes to ransomware negotiations, the victim and the attacker have to “meet” face-to-face. Moreover, by the time the two sides meet to discuss the price, the attackers have already gained control of a company’s data or network – that puts the victim in a weak position.

What does it like to negotiate with someone who is trying hard to get a ransom whilst remaining in the dark? What can you expect from such negotiations? In this webcast, Marc Rivero, senior security researcher, GReAT at Kaspersky will observe various tactics used by ransomware groups, explain how the companies are trying to negotiate with these cybercriminals, and what outcome such negotiations may have.

In this webinar, you will learn:
- What Ransomware as a service (RaaS) model is
- What a data leak portal in RaaS terms is
- About ransomware negotiations: stages, means of communication
- What to do if you have been reached by a ransomware group
- Q&A session

Ransomware groups negotiation tactics: what you need to know

Join us for an in-depth webinar that redefines how organizations approach threat detection in cybersecurity. Although detection remains the cornerstone of Security Operations Centers (SOCs), the absence of a formalized cybersecurity program often results in inefficiencies and missed opportunities for optimization.

This webinar will guide you through:
• Developing a structured detection engineering program to enhance efficiency (e.g., engineering lifecycle, best practices, the importance of data modeling, and more)
• Building an optimal team structure to manage and operationalize detections effectively.
• Identifying and leveraging key metrics to measure program success and ensure continuous improvement.

Led by Sarim Rafiq Uddin, a security services expert from Kaspersky SOC consulting, this session is ideal for cybersecurity professionals and SOC leaders seeking to elevate their threat detection capabilities. Don't miss this opportunity to transform your approach from ad-hoc processes to a comprehensive, strategic program.

From chaos to control: streamlining detection engineering in Security Operation Centers

As AI systems based on large language models become more powerful and widespread, more cybersecurity challenges emerge. From jailbreaks to indirect prompt injections, they are vulnerable to a wide array of LLM-specific threats. However, all these problems can be boiled down to one single issue: LLMs are probabilistic algorithms that are inherently unreliable, just like any other ML system. Does it mean they cannot be useful? Absolutely not! In this talk, we will discuss the challenges of secure and reliable LLM-based applications and the way to make them safer and more aligned with your business goals.

Unreliable AI: Addressing the Cybersecurity Risks of LLM-Based System

As the world discusses ChatGPT-3 and its impressive capabilities, the business community is concerned about the AI’s potential to change the game for cyber criminals and wreak havoc in the world of defense organizations. Should businesses soon expect a wave of even more advanced cyber-attacks or simply more attacks? Will current cybersecurity solutions be enough? Or will ChatGPT instead provide cybersecurity specialists with more efficient and smarter defensive and threat hunting tools?

In this webinar, Kaspersky experts will discuss how ChatGPT currently influences the cyber threats landscape and cybersecurity in organizations, and contemplate whether this is a real game changer for the industry and, in particular Security Operation Centers (SOCs). The experts will also discuss the potential benefits of using ChatGPT in threat hunting and malware analysis.

In this webcast you will find out:
- If ChatGPT can really influence the threat landscape. Where can cyber criminals use it, and will it be effective?
- Will the emergence of ChatGPT and similar AI language models lead to increased cybersecurity costs?
- If ChatGPT is capable of becoming an autonomous hacking AI-tool
- How can cybersecurity experts employ ChatGPT: a demonstration of a scanner for Indicators of Compromise (IoCs)

The webinar will be conducted by Kaspersky's Vladislav Tushkanov, lead data scientist, Maher Yamout, senior security researcher, and Victor Sergeev, incident response team lead.

ChatGPT - good or evil? AI impact on cybersecurity

In large companies, the sheer volume of information resources makes their attack surface significantly larger, compared to smaller businesses. Numerous factors contribute to this exposure, including networks spread across various locations that are consolidated into a single infrastructure, mergers and acquisitions with companies possessing lower security levels, outdated hardware and software, and more.

The level of preparedness for a potential incident directly impacts the effectiveness of the response and allows you to mitigate the attack’s impact. In this webinar, you will learn how to enhance incident responses for large-scale networks. Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky, will provide you with the following practical insights on:

• Optimizing incident response processes beyond mere scaling up by increasing personnel and systems involved
• Understanding incident response from a management perspective and why it should be an ongoing, cyclical process
• Exploring key principles for a successful response, emphasizing the significance of not only technical skills but also quality processes and soft skills
• Unveiling the limitations of backups in mitigating the consequences of an incident and discovering effective strategies to address them

Securing The Fort: How to master cyber incident response in a large company

OVAL is a standardized language designed for defining and assessing the security posture of computer systems. It enables effective scanning for vulnerable software configurations, allowing you to proactively identify and mitigate potential risks to the ICS environment.

During the webinar, Pavel Nesterov, a security expert at Kaspersky ICS CERT, will introduce the ICS Vulnerability Data Feed in OVAL Format. This comprehensive data feed provides up-to-date information on known vulnerabilities specific to ICS systems. The presentation will delve into the practical aspects of leveraging OVAL definitions for the identification of vulnerable software configurations. In addition, we will also discuss various tools available for working with OVAL definitions. From scanning and assessment tools to reporting and remediation solutions, we will explore the ecosystem of resources that can aid you to utilize OVAL effectively in your security operations.

Join the webinar to gain valuable insights and practical knowledge to protect your critical systems.

Securing ICS Workstations: Vulnerability Identification with OVAL

Cyber Defence

Cyber Security

Industrial Control Systems

Vulnerabilities

Vulnerability Management

Security

Critical Infrastructure

Vulnerability Scanning

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Securing ICS Workstations: Vulnerability Identification with OVAL

Presented by

About this talk

Kaspersky APAC