Name: Bottom Feeders: Initial Access Broker activity examined
Start: 2023-04-12T14:00:00Z
End: 2023-04-12T14:00:33.000Z
Location: BrightTALK
Rating: 4.3

Intel 471 empowers enterprises, government agencies, and other organizations to win the cybersecurity war using near-real-time insights into the latest malicious actors, relationships, threat patterns, and imminent attacks relevant to their businesses.

Our TITAN platform collects, interprets, structures, and validates human-led, automation-enhanced results. Clients across the globe leverage this threat intelligence with our proprietary framework to map the criminal underground, zero in on key activity, and align their resources and reporting to business requirements. Intel 471 serves as a trusted advisor to security teams, offering ongoing trend analysis and supporting your use of the platform. Learn more at https://intel471.com/

Rapid digitalization and demand for online services have rendered Know-Your-Customer (KYC) identity verification processes a must for financial institutions and beyond to protect against fraud. However, KYC fraud is becoming an increasingly popular topic in the cyber underground. While traditional KYC bypass methods persist, many actors are turning to artificial intelligence (AI) to enhance their tactics, techniques and procedures (TTPs) and successfully commit fraudulent activity. This leaves security practitioners battling a dynamic threat landscape.

 

Join Intel Fusion Specialist Katie Sutton as she provides an introduction to KYC fraud and walks through current trends, giving you the awareness you need to effectively bolster your cyber defenses. She will also examine the ever-changing impact that AI technology is having on the process.

 

The webinar will discuss:

- Key terms and concepts relating to KYC regulations
- Why someone would want to bypass KYC
- Current TTPs Intel 471 is observing in the cyber underground

Are They Who They Say They Are? An Introduction to Know-Your-Customer Fraud

Threat actors have the banking industry in their sights. The lucrative outcomes that a successful attack on an organization can provide and the industry’s growing digitization have created the perfect storm of motivation and opportunity for threat actors. For ransomware alone, Intel 471 observed a 125% increase in the number of victims from 2022-2023. When the threat looms so close and stakes are so high, those within the industry must ensure they are updating their knowledge of the cyber threat landscape they face. 

Join Intel 471’s Ashley Bather as she provides a synopsis of the top five threats to the banking industry. The webinar will include:

- A snapshot of critical threats to the sector
- Real world examples of attacks
- TTPs used by attackers

On the Money: The Top Cyber Threats to the Banking Industry

Ransomware deployments are increasing each year, and so are the sophistication of the attacks. Without initial access to an organization, these attacks would not be possible. In today’s highly digital world, protecting your systems has never been more important, and that begins with understanding how ransomware actors get in.


Join Intel 471’s Ashley Jess and Beth Smith as they examine ransomware and access trends from 2023 and what this means in the context of the ever-evolving ransomware threat landscape, so that organizations across every sector can prepare a more resilient cyber security defense. The webinar will dig into:


- The top ransomware gangs of 2023
- Ins and outs of critical ransomware attacks committed
- How ransomware gangs gained access to their victims
- What this means for the future threat landscape

Keys to the Kingdom: An Analysis of Ransomware and Access Trends in 2023

As supply chains have increased in complexity and interconnectivity, so too have operational demands for digital solutions to monitor and manage them more efficiently. In tandem with these developments, cybercriminal actors have pursued and scaled new methods to monetize fraud and disruption across supply chains.

Join Intel 471’s Peter Marzalik for a webinar on leveraging cyber threat intelligence (CTI) to mitigate supply chain risks. From tracking opportunistic fraudsters manipulating reshipping streams to engaging top-tier operators compromising and ransoming critical supply chain infrastructure providers, this webinar will provide an actionable approach for effectively protecting your supply chain. 

Intel 471’s How-To series helps teams develop their resilience against cyber threats through sharing expertise and best practice drawn from our years of CTI experience and exclusive insights into the cyber underground.

Crashing the Party: How to Leverage CTI to Mitigate Supply Chain Risk

In this webinar we will show you how tracking adversaries and the tools they use can help you stay ahead of threats like ransomware and third party risk. We will demonstrate this using real world examples where activity in the underground or updates to malicious infrastructure preceded cyber incidents and provided early indicators that something was afoot.

Know Your Adversaries and Where They Trade, To Stop Cyber Attacks

Malware attacks continue to increase in velocity and sophistication. No industry is safe from being targeted by the threat actors driving them. Invaluable insights and details about a cyber incident can be gleaned through malware analysis but it can be an intimidating topic, especially to those new to the field. But fear not! Intel 471 are here to share their experience and expertise in their upcoming webinar. Join us to understand the basics of malware, with a focus on the details that assist in advancing an investigation, rather than understanding every technical aspect of the malware. 

On December 6, Intel 471’s Ashley Jess will take you through:
The many types of malware and their purpose. 
Their differing delivery methods.
Linking malware to threat actors.
Key malware artifacts. 


Intel 471’s How-To series helps teams develop their resilience against cyber threats through sharing expertise and best practice drawn from our years of CTI experience and exclusive insights into the cyber underground.

Malware 101: Power up your investigations; Protect your organization.

Not all passwords are created equal. They may range from silly to scure, but one thing they have in common is that they’re the gateway into sensitive information. The good news is that tools like multi-factor authentication (MFA) and one-time passwords (OTP) have made it more complicated for cybercriminals to take over accounts with access to only one simple username and password. Or have they?

As always, the cyber underground has responded to these blockers and emerged with a new paid service that circumvents OTPs. These services leverage social engineering techniques and launch automated, tailored campaigns from subscription-based Discord and Telegram channels. 

Join Intel 471 as we assess how this recent trend was developed and share more about the motivations behind the threat actors using and creating these automated services. 

Our presentation will cover:  
- Intel collected on the OTP bypass business model
- Details on the technical skills required by threat actors to build the bots 
- Facts about the tactics, techniques and procedures employed by users and creators alike

This talk is designed to help you become familiar with what an OTP bypass operation looks like from start to finish, and give you the knowledge to detect and mitigate a growing threat in the underground.

Bypassing With Bots: How Adversaries Use Automated Services to Sidestep OTPs

Join Intel 471’s webinar as we shine a spotlight onto increasing ransomware attacks. The webinar will explore:
- Essential observations on the ransomware landscape
- Insights into Lockbit and Clop, and their targets
- Given Clop’s headline activity, our recommendations when using a file transfer protocol service
- The lowdown on the prolific initial access broker mont4na, and how their offerings are exploited by ransomware groups

Q2 Ransomware 2023: Reviewing Third-Party Risk

Ever since the introduction of ChatGPT, Artificial Intelligence (AI) has remained in the spotlight, captivating businesses and the global community as they strive to comprehend the potential of this groundbreaking technology and its far-reaching consequences. The cyber underground has also responded with equal fervor and curiosity! The burning question is how malicious actors will exploit this innovative technology to amplify the quantity, intensity and rapidity of their assaults on global businesses and organizations. Be a part of our engaging webinar as we delve deeper into this fascinating topic, and learn:

•How threat actors in the underground are looking to harness AI to increase the amount and severity of cyber attacks

•What fledgling products and services are already available in the underground

•How AI's future could be quite different from cloud services like ChatGPT and BARD

•How organizations can prepare for the appearance of AI driven cyber attacks

AI: Ready for Underground Prime Time?

As the impact of cyber threats to businesses and governments across the globe continues to increase, it is more important than ever to understand how threat actors operate within the cyber underground. How do threat actors maintain their effectiveness? What makes certain actors or groups of actors so successful?

 In this webinar we will present the results of analysis of more than 12 years' of tracking and reporting on a variety of actors and groups in the cyber underground which allowed us to identify seven specific habits of highly effective actors and groups which we will  be present by Intel 471’s Director of Product Marketing, Maurits Lucas,, along with examples illustrating each habit. 

By increasing our understanding of the social patterns and psychological traits of threat actors – an area of cybersecurity often overlooked – you will leave this session with the ability to improve mitigation efforts by anticipating how future threat actors will exhibit specific characteristics and how their successes influence others to adopt similar strategies.

7 Habits of Cybercriminals

Digital transformation, global supply chains, remote workforce, and the blurring of nation-state and financially motivated cybercrime are driving organizations to expand their security operations in the face of a limited pool of trained resources, disparate needs of the different stakeholders, and often the inability to communicate the value and ROI of their investment to leadership. 

Don’t miss this webinar to learn from CLEAR, Intel 471 and ThreatQuotient professionals, who will share their tactical and strategic experience regarding how cybersecurity professionals have successfully addressed similar challenges. They will engage in an open discussion about enhancing the process of cyber threat identification and tracking, enabling the correlation of intelligence requirements to corporate goals, as well as taking a data-driven approach to automation.

Listen and learn how:
Being requirements driven can help you stay ahead of threats 
A data-driven approach to automation can assist in measuring success and ROI
Centralizing adversarial and malware intelligence affords organizations an ability to integrate the right intelligence across their security ecosystems and inform security decision makers

Presented By:
Lance Taylor - Manager of Intelligence and Threat Management at CLEAR
Chris Jacob -  Global Vice President, Threat Intelligence Engineers at ThreatQuotient
Maurits Lucas - Director of Product Marketing at Intel 471

Using A Data-Driven Approach to Defend Against Cyber Threats

Ransomware is the most common type of malware attack and often the most costly to organizations around the world. The need for organizations to protect themselves is continually growing as the threat actor abilities and threat complexity increases. 

What more can you do to protect your organization from Ransomware attacks?

Knowing your attackers tools, techniques and procedures (TTPs) is a proven method for effective defense. In this webinar, we will explore some of the most common TTPs from Ransomware attacks, how organizations are tackling them and what proactive steps can be taken to prevent them. 

Join us as our presenters use Intel 471's knowledge of the underground and Unit 42's experience with ransomware incident response cases to reveal how threat actors find their victims, gain entry, and deploy ransomware.

Ransomware: Attackers vs Defenders

Initial access offerings were extremely prevalent in 2022. This webinar will detail examples of access offerings observed in the cyber underground, whilst offering actionable takeaways and insights into the evolving relationships and activity patterns of the most prominent initial access brokers (IABs), as well as potential links to ransomware operations . 

This webinar reviews IAB activity and how you can mitigate risks associated with these cybercriminals, it will cover: 

- What is an initial access broker (IAB)
- Where do they operate? 
- Top IABs for 2022
- Potential links between IABs and ransomware operations
- Mitigations 
- Predictions for 2023

Bottom Feeders: Initial Access Broker activity examined

Ransomware remains a key threat to organizations around the world. It facilitates attacks that devastate finances and reputation, as well as threaten public safety. Defending from this threat is vital for security teams. Our presentation will take a look into the cyber underground and show you how you can identify precursors for a ransomware attack so you can orient your defenses and stay one step ahead of your adversaries.

Join our expert Dave Brooks as he shows you:
• What to look for
• Where to find it
• How Intel 471 can help you become more proactive against ransomware attacks

Save your seat and see how Intel 471's cyber threat intelligence can help you prevent ransomware attacks before they cause significant impact.

Using Intel 471 intelligence to prevent ransomware attacks

Cyber Intelligence

Cyber Crime

Threat Analysis

Breach Prevention

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Bottom Feeders: Initial Access Broker activity examined

Presented by

About this talk

More from this channel