Name: Exploiting CVEs and On-Prem Exchange Servers
Start: 2021-03-09T13:55:00Z
End: 2021-03-09T13:56:33.000Z
Location: BrightTALK
Rating: 0

We’re on a mission to empower small and medium-sized businesses (SMBs) to protect their endpoints, identities, and employees from today’s growing threat landscape.

We elevate small and medium-sized businesses to a level of threat protection only seen by enterprise organizations. Our platform combines fully managed protection for endpoints, Microsoft 365 identities, and employees, all with the human expertise of our 24/7 Security Operations Center. With Huntress, you can power your threat defense with around-the-clock management, award-winning support, and at a price built for the needs of SMBs.

Come hang out with the Huntress team and help shape our products in this monthly, community-led series.

We’ll be sharing a behind-the-scenes look at our products and features while taking live community feedback. Plus, we’re going over interesting data and case studies, new tradecraft trends, and divulging all the gory details and failures we’ve encountered while going after hackers. If you want to be a part of our development process, learn about the latest cybersecurity trends, or just talk tradecraft, our team would be thrilled to have you join us.

The Product Lab: Microsoft 365 & SIEM

The Product Lab: Managed Defender for Business

The Product Lab: Password Managers Be Damned

Once a month, we host Tradecraft Tuesday – a live webinar blending breaking security news, hands-on demonstrations of offensive and defensive security techniques, and much more. 

Led by Huntress founders and members of our threat hunting team, these sessions pull back the curtain to teach you how hackers hack – and what you can do to stop them.

1. A primer on RMM & RATs
2. RATs ITW: Bitter Bill Case Study
3. Lab Demo! Anytime, AnyPlace.... AnyDesk?
4. Q/A

Tradecraft Tuesday: Remote Management Software from Hacker's Perspective

Welcome to Curriculaville. A seemingly safe place, with some hacking undertones.

[re]introducing Security Awareness Training

Huntress's Max Rogers will highlight the patterns, techniques, and consequences of cyber attacks so you can understand the people facilitating them and how you can better defend your organization.

Defending Healthcare: A Dive into Real-World Cyber Attacks

Your business’ security is only as strong as its weakest link, and more often than not, that weakest link is actually your people. According to Verizon's 2023 Data Breach Investigations Report, 74% of all data breaches involved people—regular, well-meaning users, who accidentally clicked on a malicious link, inadvertently shared a password, or fell victim to social engineering.

Thankfully, there’s a way to give your users the tools to protect themselves and make security-minded decisions: Huntress Security Awareness Training (SAT).

Get a behind-the-scenes look at Huntress SAT where we'll show you all the ways you can enhance your security awareness culture. We’ll also unveil some of the exciting new features we’ve been working on to make your work easier and your security posture stronger.

In this webinar, we’ll cover:

-  Building a security awareness training culture using engaging content and relatable stories
-  The benefits of having a fully managed, expert-backed SAT platform
-  The roadmap for Huntress SAT and what you can expect in the future

Enhance Your Security Awareness with Huntress SAT

The Cyber Insurance Masterclass will deepen your understanding of cyber insurance from the service provider's perspective. In this three-part series, you will learn what controls carriers are looking for, how to have the cyber insurance conversation with your clients and tips to turn cyber insurance discussions into a strategic advantage for you.

Part 3 : A Winning Strategy: The Business Review
The best way to incorporate cyber insurance into your security services is to get proactive. You can prepare now to integrate cyber insurance into your QBRs/XBRs to guide the conversation confidently.

Cyber Insurance Masterclass Part 3: A Winning Strategy: The Business Review

The Cyber Insurance Masterclass will deepen your understanding of cyber insurance from the service provider's perspective. In this three-part series, you will learn what controls carriers are looking for, how to have the cyber insurance conversation with your clients and tips to turn cyber insurance discussions into a strategic advantage for you.

Part 2: Smooth Talking: Tackling Objections
Cyber Insurance is a great tool to leverage when selling your security services, but when you first bring up cyber insurance, you may need more support. Learn to work through the most common objections you may face.

Cyber Insurance Masterclass Part 2: Smooth Talking, Tackling Objections

The Cyber Insurance Masterclass will deepen your understanding of cyber insurance from the service provider's perspective. In this three-part series, you will learn what controls carriers are looking for, how to have the cyber insurance conversation with your clients and tips to turn cyber insurance discussions into a strategic advantage for you.

Part 1: Closing the Gap: Is My Stack Insurance Ready?
Having the proper controls is imperative to be considered for a cyber insurance policy. In this session, you will learn how to align your security stack to the top controls cyber insurance carriers require.

Cyber Insurance Masterclass Part 1: Is My Stack Insurance Ready?

HHS is at it again with new guidelines, resources, and regulations to address cyber attacks on healthcare. Small- and medium-sized healthcare organizations are not only vulnerable, they’re understaffed and underserved. This is made evident by the 71M+ individual healthcare data breaches in 2023.

When you handle valuable patient data, you become a target of phishing attacks, ransomware, and bad actors manipulating unsuspecting employees to gain information. So, how are you protecting your systems?

This session is for you if:
-  You need to understand how HHS’s most recent announcement affects your organization
-  Your IT team is overwhelmed, and needs a better way to protect your patient data
-  Your employees need to be educated on the dangers of cyber attacks and how to best avoid them.
-  You want to enjoy the upcoming HHS incentives and avoid the costs of a cyber attack (and the subsequent HIPAA fees)

Dissecting the New Health and Human Services Regulations

To defend against today’s ever-evolving threat landscape, you need to do more than be compliant—resilience is the ultimate goal you should aim for. That’s why Huntress and Vanta have teamed up to bring you an exclusive webinar on how you can achieve true cybersecurity resilience.

 

We’re bringing together Vanta's leading compliance automation solutions with our NIST-aligned, threat detection and response expertise. 

 

So, join us on January 30th at 1pm ET to learn:
- How to identify gaps in your security posture
- How to automate up to 90% of your compliance efforts
- How to build a revenue-generating, resilient security program

Compliance to Resilience: Security Programs That Reduce Risk and Grow Revenue

Sharpen your pencils and pack a lunch box—class is in session and it’s time to learn about Managed Endpoint Detection and Response (EDR). Hackers love to carry out their exploits unnoticed, and EDR enables you to quickly detect and respond to their threats. A Managed EDR, though, enables you to serve your clients without worrying about every little incident that may arise, and do so while being compliant and cost-effective.

Join us for a webinar where Huntress experts showcase the value of a Managed EDR backed by 24/7 security operations experts. Whether you’re looking to gain greater insight into events, reduce the noise of incidents, or simply improve operational efficiency, Huntress is how you can level up your security strategy and protect your clients.

In this webinar, you will:

-  Learn about the business and compliance use cases for adopting EDR, and why it doesn't have to be complicated or costly.
-  Watch a simulated attack and walk through investigative playbooks to connect the dots from alert to resolution.
-  See how Huntress analysts move from an alert, to triage, to analysis, and then remediation.
-  Learn why an integrated cybersecurity platform provides greater visibility to human threat analysts to enable faster detection and remediation.

Back to School with Huntress Managed EDR

On February 19, 2024, ConnectWise published a security advisory for ScreenConnect version 23.9.8 referencing two critical vulnerabilities. On that same day, Huntress security researchers got to work analyzing this threat and successfully recreated a proof-of-concept exploit demonstrating its impact.

Join the Huntress team (and some special guests) live for an AMA-style discussion on ScreenConnect’s vulnerabilities (CVE-2024-1708 and CVE-2024-1709) and what’s being done to address them. We’ll highlight our analysis efforts, the technical details behind this attack, and answer any questions the community might have. In this rapid response webinar, we’ll cover:

-  An explanation of what the vulnerabilities are and how easy they are to exploit
-  Guidance on detecting malicious activity related to these vulnerabilities
-  Insight into the gravity of this event and its implications for SMBs
-  Questions from the community where nothing is off limits

AMA: Breaking Down the ConnectWise ScreenConnect Vulnerability

In the cyber battleground of 2024, you need more than just defense – you need strategic offense. Adversaries are not slowing down; your clients are squarely in their crosshairs. So, how can you future-proof your security offering?

Join us as we survey the SMB threat landscape and the opportunities it creates for service providers to grow. Andrew Meier of Huntress and Morgan Aspinall of HaloPSA will guide you in mastering the art of operationalizing your cyber offering without breaking the bank or your team's back.

In this webinar, we cover:

-How to educate your customers about cybersecurity and the real business risks posed by today's common attacks
-Tips on how to seamlessly incorporate tools in your stack without disrupting day-to-day operations
-War stories from a current MSP about their firsthand experience offering cybersecurity solutions

Building, Selling, and Delivering Your Cybersecurity Offering

As a response to the partner community's requests for increased access and control, Microsoft has changed its Delegated Admin Privileges (DAP) authentication control to Granular Delegated Admin Privileges (GDAP).

The transition is well underway.

Although Microsoft has started deprecating DAP authentication, many partners and service providers have not begun the process and still have many questions. To help ease the transition, the expert team at Huntress is here to help you navigate this change and understand the impact of this update and how you can continue to engage with your customers.

Join us for an in-depth discussion as Microsoft MVPs Kelvin Tegelaar, and Nick Ross, Huntress' Dave Kleinatland and Josh Lambert provide a breakdown of GDAP and how to navigate this new security control.

During this informative webinar, we will review:

What is GDAP and what are its capabilities
-  The impact of GDAP on external integrations
-  The advantages of appropriate GDAP privileges
-  Steps you can take as a service provider to ensure a smooth transition
-  How to adopt GDAP best practices to keep your Microsoft CSP portal secure
-  You will be fully armed to set up GDAP for success and get the control you need.

Understanding the Operational Impact of GDAP

In today’s world, IT operations are becoming increasingly decentralized. For providers, health clinics, and nursing homes, this is a complicated issue. COVID accelerated the rise of remote patient care and monitoring—increasing your ability to improve the patient experience and clinical outcomes, but it also provides hackers a larger attack surface to target.



In this webinar, we discuss:

The significance of cybersecurity for the healthcare industry
Major threat trends we are seeing in the market today 
Steps you can take to protect your digital properties, PII, and patient data

Improved Patient Experience: What that Means for your Cybersecurity Posture

“Do you fully understand the financial impact and implications of a devastating cyberattack?” This is the question we will explore within this webinar. The misleading understanding behind the thought, “I’ll pay the money and everything will be fine,” will be debunked as we look further from the attack and start to think about other implications that may occur after the fact and fully understand the average cost of a cyberattack against a business.

Financial Impact of a Threat

With the news of the Exchange Server zero-day flaws being exploited by hackers, this month has already seen its fair share of excitement. Join us for Tradecraft Tuesday as we unpack this recent news, explore how the hackers exploited recent CVEs while using some pretty overt tradecraft, plus a candid discussion on how the attack was much larger than Microsoft had suggested.

We’ll also dive into more details on:
- How these exploits slipped past most preventive security products
- How the vulnerabilities could be leveraged to gain remote code execution
- How living-off-the-land techniques were used for post-exploitation and further attacks
- What this incident means for the greater conversation of security

Exploiting CVEs and On-Prem Exchange Servers

Microsoft Exchange

Microsoft

Zero-Day

Hackers

MSSP

Huntress

Cyber Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Exploiting CVEs and On-Prem Exchange Servers

Presented by

About this talk

More from this channel