Name: The State of Ransomware
Start: 2021-04-27T18:00:00Z
End: 2021-04-27T18:01:03.000Z
Location: BrightTALK
Rating: 5

Cybereason is the champion for today’s cyber defenders providing future-ready attack protection that unifies security from the endpoint, to the enterprise, to everywhere the battle moves. The Cybereason Defense Platform combines the industry’s top-rated detection and response (EDR and XDR), next-gen anti-virus (NGAV), and proactive threat hunting to deliver context-rich analysis of every element of a Malop (malicious operation). The result: defenders can end cyber attacks from endpoints to everywhere. Cybereason is a privately held, international company headquartered in Boston with customers in more than 30 countries.

The MITRE ATT&CK evaluations test security vendors’ ability to quickly detect and stop tactics and techniques used by today’s threat actors. In this session, we're going to boil down the complexity of the MITRE ATT&CK framework so your organization can understand:

- How to interpret the results across Protection, Detection and Response.
- The difference between Technique, Tactic, and Telemetry detections.
- Why organizations are mapping to the MITRE ATT&CK framework and what’s next.

2022 MITRE ATT&CK Evaluations Explained

Recently released Cybereason XDR for Cloud Workloads provides comprehensive visibility across an organization's entire environment and is the key to detecting malicious activity targeting cloud workloads and containers. Competing offerings are forced to filter crucial threat telemetry, where the Cybereason MalOp™ Detection Engine is capable of processing all relevant telemetry at petabyte scale, enabling security analysts to understand the full scope of cyberattacks in real time.

Key topics for the session to include:

- The key challenges to securing workloads in a cloud environment
- How Cybereason is approaching these challenges for our customers
- The future of Cloud Workload Protection from Cybereason
- A Demonstration of the solution
- Cybereason co-founder Yonatan Striem Amit’s perspective on the market

XDR for Cloud Workloads: Discover the Future of Cloud Security

If you’ve been feeling critical about your company’s ability to identify and defeat modern attackers, you’re not alone. Our world is one where IT infrastructure, attacker trends, and workspace norms continue to shift, so it’s an increasingly difficult challenge to build a resilient infosec program backed by tested best practices. In this special session, Cybereason Product Director Eric Sun will answer essential questions about our new Extended Detection and Response (XDR) technology:

- What is XDR?
- What makes it different?
- Can it actually stop today's malicious operations?

In this special session, join us to learn about Cybereason’s evolution to XDR: how we got here, where Cybereason is today, and a look towards the future.

XDR: Past, Present and Future

"Join Cybereason's CISO, Israel Barak, Senior Product Marketing Manager JJ Cranford, and Field CTO Tim Amey for an inside look at how multi-stage attack campaigns operate today. 

In this special attack simulation, you will:

- Witness the attacker's infiltration
- Watch the malicious operation as it moves across the entire environment
- See the way a defender can break the kill chain and end an attack"

Attack Simulation: Hunter Series

Join Cybereason's CISO, Israel Barak, Senior Product Marketing Manager JJ Cranford, and Field CTO Tim Amey for an inside look at how multi-stage attack campaigns operate today. 

In this special attack simulation, you will:

- Witness the attacker's infiltration
- Watch the malicious operation as it moves across the entire environment
- See the way a defender can break the kill chain and end an attack

Join Cybereason's CEO, Lior Div, and CSO Sam Curry as they break down the anatomy of a ransomware attack. Learn how Cybereason enables defenders to protect themselves and orchestrate the best ransomware defenses.

During this session, they will discuss:

- The common techniques, tactics, and procedures leveraged by bad actors in ransomware attacks.
- What defenders should be looking for when protecting against ransomware.
- How Cybereason fearlessly protects against ransomware.

The Anatomy of a Ransomware Attack

If you’re concerned about ransomware, whether it’s beating REvil or DarkSide, stopping data exfiltration, or preventing the latest trend of “double extortion”, this session is for you. Join us for a live attack simulation, where we’ll discuss the latest ransomware trends, walk through a multi-stage attack, and show the side-by-side Defenders view. 

Join us to learn:

- Why ransomware continues to evolve & common delivery methods
- How ransomware is used as the “last step” in kill chains
- Tactics and techniques used by FIN6 & other threat actors, as part of ransomware operations

Ransomware Attack Simulation: An Inside Look at Multi-Stage Attacks

This webinar version of the CISO Stories Podcast brings together a panel of subject matter experts to examine the research findings and discuss how organizations can better prepare to defend against and respond to a ransomware attack, with topics for the session to include:

- Whether organizations should ever consider paying a ransom demand
- If organizations have the right people, processes and policies in place to address the risk posed by ransomware attacks
- The wide-reaching impacts to the business following a successful ransomware attack
- Whether organizations are making the right investments in security prior to a ransomware attack and where they are investing after being a victim

CISO Roundtable - The True Cost of Ransomware Attacks

Colonial Pipeline was recently the victim of a devastating attack that shut down U.S. operations across the East Coast, threatening an already tenuous economic recovery effort. This attack against critical infrastructure by the DarkSide Ransomware gang highlights the urgent need for better ransomware prevention, detection, and response.

DarkSide is a relatively new ransomware strain that Cybereason first detected in August 2020. DarkSide operators follows the RaaS (ransomware-as-a-service) model and engage in double extortion where they exfiltrate victim data prior to encryption with the threat to make it public in an effort to ensure victims pay the ransom demand. Join us live as we break down this attack and show how Cybereason fully detects and protects against the DarkSide ransomware.

Cybereason vs DarkSide

Attackers have proven time and again they are willing to innovate in nefarious ways to breach your defenses - as seen with the most recent headline infrastructure attack on Microsoft Exchange servers by the threat actor group HAFNIUM.

Cyber attacks that target IT infrastructure systems are highly-scalable, campaign-style efforts with a widespread impact on operations for compromised organizations.  These tactics are often state-sponsored, and with their high degree of success in recent months, we can expect this trend to continue into the future.

Join our panel of experts and learn:
- The emergence of infrastructure attacks
- What is known to this point about the HAFNIUM attacks on Microsoft Exchange servers - who was targeted and what zero-day exploits were used
- How to mitigate vulnerabilities and risks involved in the attack
- Tips and tricks on how to create a “clean-slate” baseline that can detect and prevent sophisticated infrastructure attacks
- Why Cybereason customers were fully protected against both SolarWinds and HAFNIUM

Protecting Against Infrastructure Attacks: From HAFNIUM to SolarWinds

2020 was the year of ransomware, with the wide availability of Ransomware as a Service and the shift to double extortion tactics from attackers. With the traditional threat of ransomware still front and center and the added threat of data for sale on underground marketplaces, how can security leaders best plan for the year ahead? In this webinar, we’ll review the latest threats from ransomware actors and how to stay safe. 

- Learn about the latest ransomware trends 
- Dissect discoveries from Cybereason's Nocturnus team
- Become empowered to defend against ransomware

Ransomware Decoded

In this special attack simulation, get an inside look at how multi-stage attack campaigns operate today. You will witness the attacker’s infiltration and watch the malicious operation as it moves across the entire environment. See how a simple phishing email can lead to broader compromise. And, why a behavioral approach to detection is essential to stopping SUNBURST and broader malicious operations. Includes a look at the Cybereason Defense Platform and Extended Detection and Response (XDR).

Cyber Attack Simulation - See How A Phishing Email Leads To A Broader Compromise

Ransomware continues to evolve and despite what many in the industry had thought was a lull in the use of ransomware by cyber criminals; it hasn’t gone away and has returned with a vengeance. In 2020, the costs and collateral damage caused by ransomware were projected at $17B, and that projection has only increased for 2021. Cyber criminals continue to develop enhanced capabilities and new tactics to ensure money is paid by the victims it has been inflicted upon.

Join leaders from Cybereason's Nocturnus and incident response teams as they explore insights based upon what is happening in the underground and first hand experience from what customers have encountered in the wild.

Register today to get a snapshot of the current state of ransomware, some highlights will include:

• Evolution of ransomware
• Current trends and new tactics
• Lessons from the field
• How to better protect your organization from ransomware

The State of Ransomware

Cyber Attacks

Cyber Crime

Cyber Security

Endpoint Security

Enterprise Security

Malware

Ransomware

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

The State of Ransomware

Presented by

About this talk

More from this channel