Name: Darknet and cybergangs: a deep dive into the ransomware ecosystem
Start: 2021-09-16T17:00:00Z
End: 2021-09-16T17:01:04.000Z
Location: BrightTALK
Rating: 0

Join thought leaders and technical experts as they explore topics that define today’s threat landscape and prepare you for tomorrow. Our webinars, trainings and special presentations offer the understanding and expertise needed to keep any organization safe. The future of cybersecurity is fueled by knowledge—get yours right here.

In the AI domain, individuals often find themselves taking a stance. Some argue that AI's technological advancements revolve around control and power, while others highlight its convenience. Simultaneously, the cybersecurity community remains wary of AI's potential to disrupt the threat landscape, possibly causing upheaval in defense organizations globally.

Join this webinar to gain valuable insights on future of AI in cybersecurity from cyberintelligence.institute Research Director, Dennis Kipker, and Kaspersky cybersecurity experts – Vladislav Tushkanov, Victor Sergeev and Vladimir Dashchenko.

At our upcoming webinar, Kaspersky's experts and Prof. Dr. Dennis-Kenji Kipker of cyberintelligence.institute will delve deep into the multifaceted current influence of AI on cyber threats and the privacy landscape:

Current influence of AI on cyber threats and the privacy landscape.
Landscape of AI laws and regulatory trends.
The pivotal AI developments of 2023 and the forecast for the upcoming year.

Don’t miss out on this opportunity to equip yourself with knowledge on AI development in cybersecurity!

The Future of AI in cybersecurity

In today's media landscape, we consistently encounter news of companies falling victim to cyberattacks, resulting in the exposure and sale of their data on the dark web. The wide array of data available on the dark web market, including internal databases, infrastructure access, and compromised accounts, presents a pervasive problem that affects businesses of all sizes. These breaches and related incidents don’t only disrupt operations and damage reputations, but they can also result in substantial fines and legal consequences.

According to Kaspersky, nearly half of the organizations that faced data breach incidents in 2022 lacked contact person responsible for handling such incidents. About one-third either failed to react, denied the incident, or showed indifference to their data being traded on the dark web. Only a few were adequately prepared to respond.

At our upcoming webinar, Anna Pavlovskaya, an expert at Kaspersky Digital Footprint Intelligence, will present a comprehensive guide to setting up a system that monitors dark web threats and navigating the aftermath of an incident. You will gain insights into:

- Structuring the incident response process, including the approach, necessary steps, and the specific roles assigned to the team members responsible for the process.
- Identifying the types of data commonly offered for sale on the dark web and understanding the differing response strategies based on these data categories.
- Effective communication with the media, customers, partners, shareholders, top management, and other parties involved.
- Strategies for rapid incident identification, investigation, response, and recovery from an incident or preventing it from occurring.

Responding to a data breach: a step-by-step guide

Modern cars employ a wide array of communication interfaces. Some, like Bluetooth and Wi-Fi, directly engage users, while others, such as RDS and GPS, provide user-facing services, and still others, like CAN and Ethernet buses, ensure the proper functioning of the car's internal systems. These interfaces contribute to the extensive flow of data within the car, forming its data flow graph. Within this graph, they serve as the "entry points" for malicious attackers seeking access to the vehicle. However, tampering with them does not necessarily lead to the loss of the car's security features.

In this webcast, cybersecurity experts, Alexander Kozlov and Sergey Anufrienko from Kaspersky's ICS CERT, will delve into the automotive security. Together, we will examine:

- We'll explore which interfaces attackers tend to favor when targeting cars and the reasons behind their choices.
- We'll focus on the techniques attackers employ when conducting attacks through specific interfaces, with an emphasis on classical techniques.
- We'll discuss how to defend against these threats and evaluate the feasibility of reducing associated risks.

Join us for this webinar, where we'll equip you with the knowledge and tools to not only comprehend the ever-evolving landscape of automotive security but also to safeguard your modern vehicle effectively.

Overview of modern car compromise techniques and methods of protection

In large companies, the sheer volume of information resources makes their attack surface significantly larger, compared to smaller businesses. Numerous factors contribute to this exposure, including networks spread across various locations that are consolidated into a single infrastructure, mergers and acquisitions with companies possessing lower security levels, outdated hardware and software, and more.

The level of preparedness for a potential incident directly impacts the effectiveness of the response and allows you to mitigate the attack’s impact. In this webinar, you will learn how to enhance incident responses for large-scale networks. Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky, will provide you with the following practical insights on:

• Optimizing incident response processes beyond mere scaling up by increasing personnel and systems involved
• Understanding incident response from a management perspective and why it should be an ongoing, cyclical process
• Exploring key principles for a successful response, emphasizing the significance of not only technical skills but also quality processes and soft skills
• Unveiling the limitations of backups in mitigating the consequences of an incident and discovering effective strategies to address them

Securing The Fort: How to master cyber incident response in a large company

Many IT Security leaders know all too well the pains that can come with training a workforce on how to keep theirs, their employer’s and their customers’ data and IP safe. And beyond initial training, continuous engagement with cybersecurity protocols and upskilling are further challenges facing businesses.  

Thankfully, cybersecurity training and awareness programs have come a long way from the tired and outdated educational videos and quizzes that many employees have had to sit through - but that doesn’t mean that it's easy sailing.

In this webinar, Victor Cotorobai, Pre-Sales Manager at Kaspersky and John Bruggeman, Consulting CISO at OnX Canada and CBTS, are joining forces to share how IT and HR leaders can ensure that their teams are effectively safeguarding their organizations, partners and customers.

Join them to learn:
● How current trends - including malware, phishing and GenAI - are affecting the cybersecurity landscape and making training and awareness more crucial than ever
● How to make sure your cybersec training and awareness strategy is up to date, relevant and engaging
● The people-focused best practices that IT and HR leaders should be baking into their cybersec training and awareness programs
● The analytics and metrics to keep an eye on to ensure your employees are strengthening your security posture 
● The platforms and solutions that can help you meet your cybersec training needs

Cybersecurity Training and Awareness That Really Works: What You Need to Know

In the rapidly shifting world of advanced persistent threats (APTs), tranquility is a rare sight. Leveraging their profound expertise, which includes tracking of hundreds of active APT campaigns, experts from the Kaspersky Global Research and Analysis Team (GReAT) will unveil their insights into the evolving threat landscape in the upcoming year.

Join Kaspersky for this webinar, where you will:
• Receive a detailed analysis of which of GReAT’s predictions from the past year have proven accurate and the underlying factors that contributed to their success or divergence.
• Be given forecasts regarding upcoming trends in the realm of APT activity.
• Gain insights into the protective measures to counter the ever-evolving threats effectively.

2024 Advanced persistent threat predictions

Not only do cybercriminals make money by committing cybercrime, but they also expand their operations by offering services to individuals without strong technical skills in malware development. This business model is known as Malware-as-a-Service (MaaS), and it operates on various sites of the "shadow" internet, including the Darknet. MaaS generates stable profits, enabling cybercriminals to maintain a team and continuously improve their services to carry out attacks on companies and individual users.

Through our research, we have identified 97 families of malware that have been distributed in the MaaS format – or "by subscription" – over the last seven years. These families include ransomware, various loaders, backdoors, botnets, and infostealers. In this webinar, Alexander Zabrovsky, Digital Footprint Analyst at Kaspersky, will delve into the inner workings of MaaS in the Darknet and address the most relevant issues:

- How did malware become a full-fledged product, and how did the "subscription" model become a new standard for cybercriminals?
- Why has YouTube become one of the key platforms for distributing malware? Who are traffers, and what is their function?
- Which families of malware are mentioned most often in the Darknet, and how does the Darknet services market depend on the news agenda?

Unveiling the Darknet's Malware-as-a-Service model

Kaspersky experts will discuss the state of Advanced Persistent Threats (APTs) and explore the latest trends and developments shaping the cybersecurity landscape in the first half of 2023. In this session, we will uncover noteworthy campaigns launched by both established and emerging threat actors, along with the transformative impact they have had on APT activities.

Against the backdrop of geopolitical influences, we will analyze the driving forces behind APT advancements, emphasizing the persistent pursuit of cyber-espionage as a primary objective for APT campaigns. Reflecting on the surprising turns of 2022, a year marked by the anticipation of a cyberwar, we will assess the valuable lessons learned by cyber defenders and the reality of perceived threats.

This webinar will address three key questions, guiding the conversation towards a comprehensive understanding of the current APT landscape:

- Which pivotal cyber events of 2023 warrant the attention of the international community, and what insights can we glean from them? Explore the implications of these events and discover the valuable lessons they have taught us.
- Gain insights into the latest trends shaping the APT threat landscape. Understand the evolving techniques employed by threat actors and the implications for organizations' cybersecurity posture.
- Highlight the main trends APT actors establish in the threat landscape across different regions. Do APT techniques and goals remain the same?

Additionally, we will practical guidance on bolstering organizational defenses against cyberattacks. Learn effective strategies and best practices that can help safeguard your systems, data, and intellectual property from APT threats.

Join us for this timely webinar and equip yourself with the knowledge and tools necessary to navigate the ever-changing APT landscape and fortify your cybersecurity defenses.

2023 APT Landscape Unveiled: Trends, Challenges, Solutions

Mitigating the risks that attacks pose to an entity can be the difference between an SMB growing and succeeding - or it falling victim to a malicious attack and leaving business owners dealing with the aftermath for months.


And when it comes to IT security and keeping your business and customers safe, it’s becoming increasingly apparent that the way to ensure you fall into the first camp - growing and succeeding - is to go back to basics and make sure that you have a solid endpoint foundation. The right endpoint foundation is cost-effective, requires the least skill set and enables businesses to build their security strategies up from there. 

In this fireside chat, Andrew Namisi, Senior Presales Engineer at Kaspersky and John Bruggeman, Chief Information Security Officer, Consulting at CBTS are joining forces to share vital information on endpoint security strategies for the SMB. Join them to hear:

- What a solid endpoint foundation looks like in 2023
- Why SMBs need to do basic blocking and tackling, as well as prevention and detection 
- When and why SMBs need to implement endpoint detection and response (EDR), and when they need to - look at managed detection and response (MDR)
- What an SMB-specific endpoint protection platform (EPP) can offer 
- How SMBs can guard against ransomware in a cost-effective way
- And more

Going Back to Basics: Solid Endpoint Security Practices for SMB Success

Join us for a webinar on Kaspersky Premium Support and Professional Services. During the webinar, we’ll talk about technical support services designed to meet the needs of customers at any business level and about our new Professional Services packages – a set of pre-redefined services tailored for SMB customers. 
 
Join the Global Channel webinar to learn more about Kaspersky Premium Support and Professional Services.
 
We’ll explore three main directions of our services and at the benefits they bring to Partners and customers:
New Kaspersky Professional Service packages
Global Professional Services portfolio
Kaspersky Maintenance Service Agreements (MSA)
Kaspersky Bundled MSA

Kaspersky Premium Support and  Professional Services

The sensitive data stolen from companies during a cyberattack often ends up on darknet markets. With the rise of the cybercrime as a service business model, we observe that not only data obtained from attacks is for sale but also for the information necessary to organize that attack.

Once an attacker gains access to the infrastructure of an organization, they can then sell that access to other advanced cybercriminals, such as ransomware operators. The price for accessing potential victims’ systems is relatively inexpensive when compared to the possible damage to the targeted business. In fact, the average cost for access to a company’s systems lies between the range from $2000 to $4000. Meanwhile, such attacks result in significant financial and reputational losses to the attacked organization and may even cause suspension of work and disruption of business processes. SMBs and enterprises are both key targets of such attacks.

Yuliya Novikova and Sergey Shcherbel, security experts at Kaspersky, shed light on how a company’s data and the information on their systems is sold on darknet markets.
In this webinar you will learn:
- Which types of company data are most widespread on dark markets
- Which criteria cybercriminals use to evaluate the price for organization’s data
- How to keep your data protected

Dark market for corporate data: how cybercriminals sell access to your company

No cybersecurity program would be complete without safe and cyber-responsible employee behavior. At Kaspersky, we pride ourselves on our comprehensive approach to cybersecurity, selling our training portfolio together with technical solutions. 

How do Kaspersky partners benefit from selling these training products? And is it possible to sell larger security awareness projects to bigger customers? 
What we will cover:
• Kaspersky Security Awareness portfolio 
• Customer targeting and sales scenarios
• New features and releases
• Kaspersky Security Awareness Platform: product updates and live demo

Kaspersky Security Awareness Portfolio

In the past couple of years, ransomware has become a plague, with targeted ransomware attacks continuously prominent on the media’s front pages. Being effective and highly profitable, ransomware attacks on organizations are multiplying day by day. We witness ransomware operators becoming more creative with their extortion methods, building their ‘names’ and sometimes even resorting to the doxing and extortion of users whose data has been stolen, in a pursuit to force companies to pay up.

In essence, ransomware is a business, albeit illegal, and the processes behind it resemble the ones behind other businesses. To understand it, we must ask: how do ransomware operators work? What are the processes behind the attacks? Who are the people that carry them out and how do they select their targets?

In this webinar, Ivan Kwiatkowski and Dmitry Galov, security researchers at Kaspersky’s Global Research and Analysis Team, will answer these questions and many more, while explaining the inner workings of the ransomware ecosystem.

In this webcast you will learn:
• What does the ransomware market look like on the darknet?
• What kind of roles exist in this ecosystem?
• How do ransomware operators select their victims?
• What new ransomware gangs should organizations be wary of?
• How can you protect against ransomware?

Darknet and cybergangs: a deep dive into the ransomware ecosystem

Ransomware

Security

IT Security

Cyber Attacks

Cyber Crime

Cyber Defence

Threat Defence

Threat Detection

Risk Mitigation

Risk Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Darknet and cybergangs: a deep dive into the ransomware ecosystem

Presented by

About this talk

More from this channel