Name: Emerging Threat: Dirty Pipe
Start: 2022-03-17T17:00:00Z
End: 2022-03-17T17:00:58.000Z
Location: BrightTALK
Rating: 5

SimSpace delivers a cybersecurity risk management platform, instilling confidence in an organization’s cybersecurity talent and technologies. With SimSpace, security teams, operational processes, and environments are continuously tested, readily available, and optimally tuned to defend against advanced adversaries.

With the ever-increasing number of cyber breaches, a significant question remains: have we accepted or turned a blind eye to the problem? The recent breach reporting mandates and global regulatory requirements make it clear that we need to do more to protect our assets. 

Although challenged by the cost of cyber insurance, talent gap, increased complexity, more audits, and deeper analysis by investors, it is still essential to find ways to reduce costs, retain skilled talent, demonstrate risk management, and improve cybersecurity. 

Join ESG Principal Analyst Jon Oltsik and Ross Brewer, Chief Revenue Officer at SimSpace, for an exciting Fireside Chat that delves into the world of modern cybersecurity strategies to help you stay ahead of the attack curve. This event will cover:

• Tactics for satisfying investors
• Ways to fill the talent gap while moving from cyber assumptions to cyber certainty
• And how you can put your cybersecurity strategies to the test, balance the checkboxes, and create predictability in a cyber range

Cybersecurity in 2023: The Good, The Bad, and The Strategy

Women are forging a path in cybersecurity. To commemorate Women’s history month 2023,  themed “Celebrating Women Who Tell Our Stories,.” Please join these Women in Cybersecurity Panel discussions.
This session will be led by, ESG Industry Analyst, Melinda Marks who will be interviewing 5 key leading women who have paved the path in cybersecurity.  In this interview, we will uncover "the why", "the how" they got started, and tackle everyday challenges, in this constantly changing security journey. This session will lead you to resources, communities, and forward-looking advice for women from women in cybersecurity. 
Our Panelist Include
Sarah Heidenreich, Senior Vice President, Wells Fargo
Anne Marie Zettlemoyer Cycognito, Chief Security Officer, and Board Member
Nadean Tanner, Mandiant, Sr. Manager Consulting Education Services
Lori Brumm, SimSpace, Lead Cyber Range Engineer, Cybersecurity Specialist 
Paige Godvin, Mandiant, Associate Incident Response Consultant
And a To Be Announced Panelist.
Attendees will leave this session Inspired and gain information about:
1. How to Grow Our Passion
2. Networking Opportunities and Communities
3. Tips to Get Started and stay relevant in Cybersecurity

Sheroes; Women Making a Difference in Cybersecurity Panel

Your Approach to Security Operations Must Evolve

Modern SOCs play an essential role in any organization, and this goes beyond cybersecurity -- it has to do with the business entirely. This includes everything from earning trust from employees and customers to reducing impact and costs a potential breach may incur through data loss, lawsuits, or business reputation damage. 

In this panel, experts discuss the tools, techniques, and skills that today’s infosec professionals need for effective security operations and management. Gain insights around what is preventing organizations from building better security detection solutions, why individual growth and certifications are important, and more.

Moderated by: 
Jon Oltsik, Sr. Principal Analyst, ESG Fellow

Featuring:
Joel Vincent, VP, Product and Technology Marketing, Cribl
Sean Donnelly, Vice President of Product Incubation, Simspace

Your Approach to Security Operations Must Evolve (Panel Discussion)

Join IDC and SimSpace as they explore the challenges of modern cyber security footprints, the impact of conflict, threat intelligence, and cyber resilience recommendations.  Presented by  IDC's 20 year security veteran, and industry expert, Joel Stradling,  of international, managed enterprise network and IT services. He is a regular speaker at major industry conferences talking about emerging technologies in B2B enterprise network and IT and wholesale carrier-to-carrier services. Joel is a well-known and highly regarded expert in the industry, offering insight and advice to C-level executives on technology competitive landscapes and emerging technologies, such as SD-WAN, 5G, SDN/NFV, and cyber-security

Threat Cast Thursday: IDC-SimSpace; Building Cyber Muscle Memory

Every executive should have a general understanding of their cybersecurity risk and what it means to their areas of corporate responsibilities. Threats are evolving, legal and regulatory compliance requirements are growing, cybersecurity is at the front of every boardroom, and throwing more money at it is not an option and does not guarantee risk reduction.  Knowing is half the battle, get the hard facts from these executives who successfully met the challenge of the US Cyber Command. Hear from these cyber security former military leaders and see how they achieved answers to the hardest questions by the world’s most relied-upon forces. 

In this session you will learn how to answer these hard security questions:

*How well will your organization’s security personnel, technology, and procedures perform in the event of a cyberattack? and 

*How can you report on the effectiveness of your entire cyber spending and definitively settle multi-million-dollar cybersecurity spending questions?

*How can you adopt a continuous improvement posture to sustain performance as new threats appear, M&A prospects need evaluation, IT changes are considered, and individual and team leadership improvements need to be addressed?

Join this session and meet the SimSpace Expert Executives as they share their best practices and answer your hard questions.

ThreatCast Thursday:Answers To Security Questions For Executives, By Executives

“Quiet, This is a Library - DLL Proxying”  
Grab your lunch or get some popcorn, this feature is going to be epic!  Join Matt Kiely and SimSpace and see the latest trends in red-teaming and threat emulation!  
How do they do it exactly, the techniques will surprise you! Learn how red teamers, cybercriminals, and threat actors hide malicious code inside trusted places.
Matt Kiely is a seasoned practitioner with 11 years of experience in IT and cybersecurity. Matt has worked as a Lead Cybersecurity Analyst at the Massachusetts Institute of Technology Lincoln Laboratory Space Research Division, Red Team Operator & Exploit Developer at a large financial institution, Principal Cybersecurity Content Architect & Instructor at SimSpace, and served as a United States Marine. He is currently a Staff Red Team Engineer at SimSpace.

Matt holds a Bachelor of Science in Information Technology from Northeastern University and a Graduate Certificate in Cybersecurity from the Rochester Institute of Technology. Some of Matt's professional certifications include OSCP, eCPPT, eCPTX, CRTO, and CRTP.

Interview with a Red Teamer

Learn how this new trend has Financial Services SecOp teams evaluating their production environment without interruption to discover security gaps.  Then,using a digital twin of their production environment to vet and validate security stacks and train and test processes at a fraction of the cost.  See how Cymulate and SimSpace come together to form an infinite cybersecurity risk reduction program that is designed to help you know your risk, put forth a remediation plan, validate your environment and test your skills without risking your production environment.  
A cyber security leader with over 10 years of experience, John Starnes is Cymulate's Director of Technology & Strategic Alliances. Previously, John was an Associate Vice President in Deloitte’s Cyber Risk Managed Services, leading security consulting engagements, directing and operating client security programs, and developing cloud security architecture for managed cloud environments. He has broad knowledge and experience across all security domains. Based in Houston, John is a Certified Information Systems Security Professional (CISSP) and Certified Public Accountant (CPA). He is passionate about enhancing organizational security posture, improving processes related to threat mitigation, and leveraging cloud solutions to more quickly and efficiently deploy resources.
Pete has an extensive and diverse background in a variety of technology fields including Computer Network Operations, Network Forensics, Business Development, Workforce Development and Nuclear Chemistry. From his Navy service in leading a quick-response team of NSA cryptologists and developers who designed solutions to some of the agency’s most vital problems, to delivering multi-domain cyber security training to thousands of students world-wide, or obtaining cyber security patents, Pete continues to stretch the edges of technology, its use, and application.

Threatcast Thursday: Evaluate, Remediate, Repeat, NO Interruption to Production

See how you and your team can become savvy defenders, and practice against cyber threats under live-fire conditions. SimSpace user-emulation simulates real-world organizational environments, precisely what the bad guys use to hide their activity, by employing computer-generated bots that reproduce network traffic and dynamically create day-to-day activities — the same as actual users.

Cyber Attack Simulator for Security Response Training

If you’re in the financial sector, odds are you have fallen victim to a costly cyber attack.  By now you know that mitigating in a complex environment requires a fast, yet delicate, non-intrusive cyber security strategy.
Join CyCognito and SimSpace, as they unveil how financial institutions can quickly identify security risks and practice or vet mitigation techniques in a high-fidelity range that is a replica of the existing environment.  
See a live demo on how you can identify, validate, and mitigate fast and in a non-production environment with CyCognito and SimSpace.  Combined, our experts bring over 50 years of experience in Financial IT and CyberSecurity, join them and learn best practices that you can start using immediately. 
AMZ, Chief Security Officer, oversees the security of CyCognito. A Fellow at the National Security Institute, a trusted advisor for Fortune 500 companies, government agencies, law enforcement, and think tanks. She was the Business Security Officer and Vice President of Security Engineering at Mastercard, protecting trillions of dollars in transactions globally.  AMZ has held strategic and technical security leadership roles including Special Advisor for the Director of the US Secret Service, is a founding board member of Security Tinkerers, and is an advocate on Capitol Hill for security policies and improvements.
Josh Hogle is the Director of Technology Alliances at CyCognito. With over 25 years of experience in IT and cybersecurity, spanning from IT and security operations. Josh has worked for both Purdue and Rutgers as well as in the financial industry at TD Ameritrade and the MSP industry at Sungard.
Jordan Wigley, Director of Alliances is a business development manager focusing on key Alliances at SimSpace.  He has over 18 years of cybersecurity experience across Walmart, Wells Fargo, and now SimSpace. Jordan heavily focuses in areas of Incident Response, Threat Hunting, and Network Forensics.

Security for FinServices, Remediate Your Attack Surface and Up skill SecOps

Get behind the anatomy of a black badge winner from DefCon 2022 as he challenges a Live Fire Event in the SimSpace Cyber Range.  

Please join Pete Hay and our special guest Pete Souba, as he takes his 10 years of cyber warfare from both the defensive and offensive experience into a Live Fire Event. 
 
Learn how you can build a more decisive, experienced, proficient cyber team using real-world threats in a non-intrusive, non-production environment.  See SimSpace’s Live Fire Experiences (LFX) put to the test by a black badger. 

Presenter Pete Souba 
Pete is a Red Team Operator with SimSpace, where he focuses on threat engineering and adversary attack emulation.  He has over 10 years of professional cybersecurity experience spanning military, federal agency and civilian service, where he was on the front lines of the cyber warfare domain from both the defensive and offensive perspectives.  He holds a handful of certifications including OSCP, CISSP, GREM, and others.  Outside of the office, you'll probably find him tinkering with something for curiosity's sake.
Presenter Pete Hay
Pete has an extensive and diverse background in a variety of highly technology driven fields including Computer Network Operations (CNO), Network Forensics, Business Development,
Workforce Development and Nuclear Chemistry. From his Navy service in leading a quick-response team of NSA cryptologists and developers who designed solutions to some of the agency’s most vital problems, to delivering multi-domain cyber security training to thousands of students world-wide, or obtaining cyber security patents, Pete continues to stretch the edges of technology, its use, and application. Pete’s background and experience in CNO and Joint Operations Planning make his expertise highly sought after by government and civilian personnel around the globe.

Threat Cast: The Anatomy of a Black Badger

With the rise of telemedicine, digital health records, and online patient portals, advances in both medicine and technology are combining to change the experience for patients, providers, and payers in healthcare. While digital transformation initiatives help patients manage their own health and communicate with caregivers, they also introduce new cyber risk. And due to the high value of health records on the black market, healthcare organizations are often targeted by malicious actors.

In this webcast, SimSpace will share best practices on how to execute the following cyber risk management measures:

Evaluate Security Teams & Technology
Safeguard Patient/Provider Data (HIPAA/PCI)
Maintain Regulatory Compliance for payers
Ensure OWASP compliance for web apps/financial transactions or claims processing

Health-ISAC Event:  Improve Resilience Against Insider Threats

On May 27th 2022, a new zero-day remote code execution (RCE) vulnerability (CVE-2022-30190P) was discovered in the Microsoft Support Diagnostic Tool (MSDT). According to Microsoft, “An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights.” The Follina vulnerability allows an attacker to execute arbitrary code using a malicious Word document. This vulnerability leverages the built-in MS URL handlers to trigger msdt.exe – this process can then be used to execute PowerShell command.

This webinar will dive into the offensive exploits and defensive remediations to defend with confidence against the Follina vulnerability.

Thursday ThreatCast - Exposing and Mitigating the Follina Vulnerability

Join Mandiant and SimSpace as they showcase the Mandiant ThreatSpace Cyber Range Experience – a joint offering that combines Mandiant’s industry-leading cyber-attack simulations and threat intelligence with the power of the SimSpace cyber range platform. See how ThreatSpace training provides visibility into real-world cyber incidents and creates live-fire events based on IOCs and TTPs from actual attacks, all in a consequence-free cyber range.

Validating Cyber Readiness with the ThreatSpace Cyber Range Experience

Learn about Cyber Risk Management Platforms, an innovation in cybersecurity defense.  Join ESG as they uncover why these platforms are rapidly becoming a foundational requirement for enterprise security programs.  Discover cyber risk management platforms' efficiencies and why they are vastly becoming crucial to the security ecosystem:
- Detect and respond to threats faster - Assess and optimize your cybersecurity tools without impacting your production environment
- Secure with Confidence - Test your controls, processes, and personnel simultaneously to ensure complete cybersecurity readiness 
- Train your security teams - Simulate real-world attack scenarios and prepare your teams for success and increase retention
Cyber Risk Management Platforms provide a holistic framework that balances technology, workforce up-skilling, and process improvement without disrupting production environments.

ESG Unveils The Case for Cyber Risk Management Platforms

Dirty Pipe (CVE-2022-0847) is a Linux local privilege escalation exploit that allows unprivileged users to write arbitrary data to locations on the Linux file system regardless of access rights. Join SimSpace's Matt Kiely and Kris Webber as they explore Dirty Pipe from the offensive and defensive perspectives and includes hands-on exploitation examples using the SimSpace Range Platform.

In this webcast, we will cover:
* Background on the DirtyPipe discovery
* How to locate the DirtyPipe vulnerability
* Drive a Proof of Concept for the exploit
* Validate and apply patches for affected systems
* Provide a list of resources to help you fully remediate the DirtyPipe vulnerability

Emerging Threat: Dirty Pipe

Cyber Attacks

Cyber Crime

Cyber Security

dirty pipe

Linux

SecOps

Threat Analysis

Threat Hunting

Vulnerabilities

Vulnerability Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

Effective financial management strategies can help organizations meet their business objectives. The financial management community on BrightTALK is made up of engaged finance and accounting professionals. Find relevant webinars and roundtable discussions featuring financial planning advice from industry thought leaders and insights into optimizing financial reporting, accounting, risk management and value measurement.

Financial Regulation

Get powerful banking and treasury insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on hot topics such as digital banking, payments disruption and non-bank competition. Learn how the latest treasury management strategies are helping to mitigate operational, financial and reputational risk.

Banking and Treasury

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

Get powerful operations insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on which systems and processes are driving operational efficiency, maximizing value and customer success.

Operations

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Emerging Threat: Dirty Pipe

Presented by

About this talk

More from this channel