Hi [[ session.user.profile.firstName ]]

Spear Phishing: How to Avoid Becoming a Hacker's Trophy Phish

Recent IT security reports show that targeted spear phishing attacks are dramatically increasing. The news of the recent Flame malware has shown that advanced targeted attacks are growing in intensity and are quickly becoming the new ‘normal’.

Spear phishing has become a successful tactic that hackers use to exploit your network and trigger an attack which can lead to catastrophic financial, operational, and reputation risks. Discover how to keep your network secure – by learning more about today’s targeted spear phishing attacks and how you can close the security gap that sophisticated hackers are exploiting. Key topics include:

- The growing popularity of spear phishing tactics and how targeted attacks are triggered

- A real-world example of spear phishing that led to an advanced targeted attack

- Real-time techniques to help you mitigate the threat of spear phishing
Recorded Jun 20 2012 48 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Phil Lin, Director, Product Marketing, FireEye
Presentation preview: Spear Phishing: How to Avoid Becoming a Hacker's Trophy Phish

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Addressing The Challenges of the EU GDPR 2016 Sep 8 2016 1:00 pm UTC 60 mins
    Jonathan Armstrong: (Cordery Compliance), Florian Malecki; (Dell) & Luke Shutler (Absolute Software)
    The webinar will enable you to hear from an independent Legal Specialists on the real challenges and impacts of the EU GDPR and then the webinar will demonstrate how Dell & Absolute can support your business in overcoming these challenges.

    The webinar will focus on:
    • Implement a seamless, connected security strategy that works across the organisation, from device to data centre to cloud
    • Prove that a lost device is inoperable or has had its data completely wiped
    • Gain visibility of data breaches and contain and eradicate threats
    • Eliminate the blind spots between networks, identity and access management, data encryption, endpoint security and security managed services
    • Enable security decisions based on intelligence that takes into account user, content, location and context
  • Shut the Traps: Take the Win out of Recon for an Attacker Sep 7 2016 10:00 pm UTC 45 mins
    Alissa Torres, Senior Security Consultant at Sibertor Forensics
    By the time sophisticated cyber criminals gain access to your network, they may already possess incredible insight into the culture, infrastructure, security and day-to-day operations of your company. How are they able to obtain such information? Reconnaissance is the FIRST stage in remote exploitation performed in a targeted attack and can take place over a period of days, weeks or even years prior to the attacker ever delivering his first phishing email. Just what sensitive information has your company, your employees, your vendors or your customers made publicly available, either knowingly or inadvertently? Though a tweet or social media post may be harmless on its own, in aggregate, a company may suffer a weakened security posture if details such as key individuals, sensitive projects, financial projections and internal politics are disclosed in a public forum.This talk will focus on ways you can access and reduce your online disclosures. Take the "win" out of reconnaissance for the attacker by cutting off his pre-attack intelligence sources.
  • DevOps, Security and PCI - Implementing SCM To Meet PCI Standards Sep 7 2016 7:00 pm UTC 45 mins
    Kevin Eberman, Director of Operations at MineralTree
    Security failures with millions of stolen credit cards have become an all too normal part of the news. The Payment Card Industry (PCI) has issued a standard for companies and service providers for handling credit cards to mitigate the risk of these breaches. Implementing a PCI certified environment requires a coordinated and sustained commitment to security by adopting policies, writing procedures, and an ability to successfully demonstrate compliance during audits.

    A number of PCI standards require the implementation of Server Configuration Management (SCM). SCM is an integral tool of DevOps. It is invaluable for meeting PCI requirements that are technical and need documentation. This discussion will review security challenges, which PCI requirements can be met with SCM and how to successfully implement SCM to meet PCI standards.
  • “If I Wake Evil” - How I Would Attack You If I Turned into a Criminal Mastermind Sep 7 2016 6:00 pm UTC 45 mins
    John Strand, Owner of Black Hills Information Security
    What if I no longer was a white hat? What if I started to hack for fun and profit at other expense?
    How would I do it? Could you catch me? How can you stop me?

    Join this presentation and get a unique insight into the mind of the hackers trying to get into your systems and steal your information. Learn how it can be done, and what are the precautions and preventive measures you can take now to make sure your company is prepared for attack.
  • The PCI Dream Team – Bring Us Your Trickiest PCI Questions Sep 7 2016 4:00 pm UTC 60 mins
    Moderator: Ben Rothke; Panelists: David Mundhenk, Arthur Cooper, Jim Seaman
    With hundreds of different requirements, the various Payment Card Industry (PCI) standards can be overwhelming. While the PCI Security Standards Council has provided lots of answers, the devil is often in the details. Our panelists are some of the top PCI QSA’s in the country, with decades of combined PCI and card processing experiences. They’ve seen it all: the good, bad and ugly; and lived to tell the tale.

    Join Ben Rothke, David Mundhenk, Arthur Cooper, and Jim Seaman for an interactive session, and get answers to your most vexing PCI questions. No PCI question is out of bounds.

    Moderator:
    - Ben Rothke, Senior eGRC Consultant at Nettitude Ltd.

    Panelists:
    - David Mundhenk, CISSP, PCIP, QSA (P2PE), PA-QSA (P2PE)
    Sr Consultant at an unnamed GRC consulting firm
    - Arthur Cooper "Coop", Sr Security Consultant at NuArx Inc.
    - Jim Seaman MSc, CCP, CISM, CRISC, QSA, M.Inst.ISP
    Security Consultants Team Lead at Nettitude, Ltd.
  • Are you having a mare with Ransomware? Sep 7 2016 2:00 pm UTC 45 mins
    Paolo Passeri, Consulting Systems Engineer Security at OpenDNS
    Ransomware has become a common and dramatic problem and the recent waves of attacks are demonstrating that new variants emerge each day in what seems an endless arms race where the attackers seem to prevail.

    However, even if the attack vectors are increasingly complex, the attackers cannot conceal themselves as the infrastructures used to launch these campaigns, despite extremely volatile, exploit elements of the internet, such as IP and domains, that cannot be hidden.

    Monitoring large scale data allows to identify these infrastructures, where attacks are staged, and to enforce a new predictive security model particularly effective against Ransomware.
  • Why visibility is a crucial part of any security strategy Sep 7 2016 2:00 pm UTC 45 mins
    Peter Smith, Regional Sales Manager - Europe & Russell McDermott, Sales Engineer, Netwrix
    With a recent increase in high-profile security breaches and compliance violations, traditional security mechanisms, such as firewalls, IDS, and antivirus are no longer enough to defend against external attackers, and insider threats. By having increased visibility into internal changes, configurations, access events, and permissions across the IT infrastructure, organizations can far more effectively defend against such attacks.

    So, please join our local auditing and compliance team from Netwrix, Pete Smith (Regional Sales Manager Europe) and Russell McDermott (Pre-Sales Engineer) and see how Netwrix Auditor can unlock the door into possible breaches in your IT environment.

    From our brief session you will learn:

    • How deeply security breaches and data leaks are really effecting organizations
    • How to protect your data from the insider threats
    • How to have “peace of mind”, and achieve complete visibility of your IT infrastructure
  • Exploring Russia’s Cyber Operations Sep 7 2016 1:00 pm UTC 45 mins
    Dan McWhorter, Chief Intelligence Strategist at FireEye
    Russia has a long history of utilising cyber actions to accomplish their information operations and national security goals. Organisations in Europe – in the private and public sector – are a top target of Russia-based cyber activity for espionage and crime. This talk will cover how some of Russia’s recent cyber actions were conducted, and it will highlight how well Russia has embraced the opportunities cyber provides when it comes to national security and foreign policy objectives. Dan McWhorter, Chief Intelligence Strategist at FireEye, will also discuss why organisations need to take note of these activities in Russia and steps to ensure your organisation is able to defend against these threats.
  • Data Protection 101: Follow and protect your critical data, wherever it lives Sep 7 2016 10:00 am UTC 45 mins
    Sunil Choudrie, Global Solutions Marketing Manager
    When it comes to your sensitive data, how can you be sure that it is protected and none of it is leaving your environment?

    Organizations today face the following challenges:
    •Identifying the type of data that needs to be protected
    •Controlling access to data & ensuring identities aren’t exposed, especially in the face of significant regulatory fines
    •Prevent sensitive data from leaving the organization, mega-breaches & data loss is increasing year on year. Over half a billion personal records were stolen or lost in 2015, spear phishing campaigns targeting company employees increased by 55% in 2015

    Answer: Firstly allow the right people to access the right data, anywhere, by controlling access, monitoring its flow, and keeping it out of the wrong hands. Secondly Easily apply policies to control access and usage―in the cloud, on mobile devices, or on the network.

    Join Symantec for a webinar on the lessons learned regarding data protection across the many applications in your environment.
  • Network security, seriously? 2016 Network Penetration Tests Sep 7 2016 10:00 am UTC 45 mins
    Peter Wood
    The results of all the network penetration tests conducted by the First Base team over the past year have been analysed by Peter Wood. The annual review covers clients in a variety of sectors including banking, insurance and retail. This presentation identifies the most common vulnerabilities, how they can be exploited and the consequences for each business. Learn in detail how criminals can take advantage of these weaknesses and how you can secure your networks using straightforward techniques.
  • Mapping the CYBERscape: Advanced Threat Detection within the Security Ecosystem Sep 6 2016 9:00 pm UTC 60 mins
    Eric McAlpine, Founder & Managing Partner at Momentum Partners and Luis Maldonado, VP of Products at Sqrrl
    Learn about the current state of the cybersecurity landscape and how various solutions, like threat hunting platforms, fit into an effective security ecosystem.

    In this webinar you will learn:
    - The current state of the cybersecurity market
    - What is the CYBERscape: a useful tool to make sense of an increasingly complex cybersecurity ecosystem
    - A breakdown of the advanced threat detection vendor category and how it continues to evolve
    - Solutions to leverage to complement your existing security ecosystem
  • Cyberattack Response & Prevention: Why Traditional Defenses Are Not Enough Sep 6 2016 6:00 pm UTC 45 mins
    Leo Taddeo, CSO at Cryptzone
    Join Cryptzone’s Chief Security Officer, Leo Taddeo, who prior to joining Cryptzone was FBI Special Agent in Charge of the Special Operations/Cyber Division of the New York office, and hear real-world accounts of cyberattack response and prevention.

    Mr. Taddeo's unique perspective blends law enforcement, security, and technology vendor perspectives. His presentation will cover:

    · Top cyber threats facing the enterprise
    · Public/private partnerships and working with law enforcement
    · Why traditional signature and perimeter-based defenses are not enough
  • Using Automation & Orchestration to Strengthen Network Security & Fight Hackers Sep 6 2016 5:00 pm UTC 45 mins
    Sourabh Satish, Co-Founder & CTO at Phantom Cyber
    Limited resources, increased threat surface and incidents, and the overwhelming complexity of technology infrastructures, have made securing the organization more challenging than ever. Learn how security automation and orchestration is helping to address advanced threats, new vulnerabilities, hackers, zero day attacks, vulnerable apps and all the other elements that threaten your organization's network.
  • From Passive to Aggressive: Taking a Surgical Approach to Security Operations Sep 6 2016 4:00 pm UTC 45 mins
    Rebekah Wilke, V-SOC Manager at Raytheon Foreground Security
    For too long, the conventional approach to information security has been to plant people at consoles and have them passively wait for an alarm. When an alert goes off, they are supposed to react and stop the attack. Whether this is done internally or through a managed security provider, the end result is the same – a passive approach to security. Enter V-SOC. A proactive, intelligence-driven and customized approach, specializing in innovations encompassing all flavors of customer engagements and service delivery. Join this presentations and learn:
    - How to be proactive in your approach to security operations
    - How to engage with an MSSP
    - Why you must automate wherever possible
  • Experts show how hackers perform web attacks which kills your site ranking Sep 6 2016 3:00 pm UTC 45 mins
    Leon Brown - Product Marketing, Symantec Website Security & Avishay Zawoznik - Security Researcher, Imperva Incapsula
    After a brief introduction to the world of SEO, we will dive into the different types of web application attacks and manipulations that are made to either degrade your competitor’s ranking or raise your own.
  • 2016 Threat Analysis: Learning from Real-World Attacks Sep 6 2016 1:00 pm UTC 45 mins
    Matt Webster, CTU Security Researcher, SecureWorks
    SecureWorks® incident responders assist hundreds of organisations annually with the containment and remediation of threats during suspected security incidents.

    Visibility of these incidents provides the SecureWorks Counter Threat Unit™ (CTU) research team with a unique view of emerging threats and developing trends. This Threat Intelligence is then continuously provided to clients, arming them with the information they need to stay one step ahead of adversaries trying to compromise their networks.

    In this webcast Matt Webster, CTU Security Researcher, will discuss developments in the threat landscape observed through SecureWorks’ Incident Response engagements from April to June of 2016, including;

    - Key developments of the APT threat
    - Criminal cyber threat trends
    - Developments in Ransomware

    Matt will also discuss observations of how the affected organisations could have better prepared for the threats they encountered.
  • Social Engineering - Are you the weakest link? Aug 30 2016 1:00 pm UTC 60 mins
    Greg Iddon, Technologist, Sophos
    Social Engineering has been around for as long as the crooks have but in a modern online world, running a con game has never been easier. And that’s why we need to be savvy.

    A social engineer can research you on Facebook and LinkedIn; read up about your company on its website; and then target you via email, instant messaging, online surveys…and even by phone, for that personal touch. Worse still, many of the aspects of a so-called “targeted attack” like this can be automated, and repeated on colleague after colleague until someone crumbles.

    Greg Iddon will take you into the murky world of targeted attacks, and show you how to build defences that will prevent one well-meaning employee from giving away the keys to the castle.
  • The GRC Evolution of Digital Enterprises with Convergence of ERM & Cybersecurity Recorded: Aug 25 2016 62 mins
    Colin Whittaker, Informed Risk Decisions; Yo Delmar, MetricStream; Chris McClean, Forrester; Sanjay Agrawal, CIMCON Software
    Cybersecurity has jumped to the top of companies’ risk agenda after a number of high profile data breaches, and other hacks. In an increasingly digitized world, where data resides in the cloud, on mobiles and Internet of Things enabling multitude of connected devices, the threat vectors are multiplying, threatening the firms’ operations and future financial stability.

    Organizations with the ability to view cybersecurity breaches as a risk, with associated probabilities and impacts, can strike the right balance between resilience and protection. By bringing together leadership and capabilities across fraud, IT, cybersecurity and operational risk, organizations can connect the dots and manage their GRC program more effectively. Organizations need to employ a proactive approach to review their existing risk management processes, roles and responsibilities with respect to cybersecurity to re-align them into an overall ERM strategy with boardroom backing.

    Attend this panel webinar, as we discuss these issues and address ways to develop an evolving GRC program to cope with the growing threat landscape.
  • BrightTALK Network Security & Hacking Preview Recorded: Aug 24 2016 3 mins
    Various
    This September BrightTALK will be hosting some of the industry's leading cyber speakers as they discuss Network Security & Hacking.

    Click below to register for the Summit:

    https://www.brighttalk.com/summit/3453
  • Beyond the Sticker Price: Factors Impacting the Total Cost of Ownership of SIEM Recorded: Aug 24 2016 36 mins
    Michael Suby, Vice President of Research at Frost & Sullivan
    Unfortunately many organizations today are losing the race against the hacker community by a large margin. As noted in the Verizon 2016 Data Breach Investigation Report, the percent of compromises that transpired in “days or less” has risen from 67% to 84% over the last 10 years. Over this same time period, the percent of compromise discoveries that occurred in “days or less” also improved, but not enough to narrow the time gap between compromise and discovery. In other words, the bad guys are accelerating their exploits faster than the good guys are accelerating their ability to discover.

    The path to narrowing the time gap between compromise and discovery, and then neutralising business-impacting incidents, is through a comprehensive and mission-oriented Security Information and Event Management (SIEM). A well-designed SIEM not only advances security objectives, but it also works to direct personnel and process for maximum impact. With limited resources and a rising number of attacks, not all solutions are created equal. You need to ensure they are getting the best bang for your buck.

    In this webinar, Michael Suby, vice president of research at the global research and consulting organization Frost & Sullivan, will discuss the factors that contribute to SIEM’s total cost of ownership.

    You’ll learn:

    • How to calculate the total cost of ownership of a SIEM
    • The basic functionality that every SIEM should have to confidently breeze through preliminary activities
    • The SIEM attributes that will have a lasting impact on your organization’s cost efficiency in effectively managing risk

    Join us to learn the features that should be on the top of your scorecard when evaluating a SIEM for either first-time deployment or replacement.
The latest trends and best practice advice from the leading experts
This channel features presentations by leading experts in the field of information security. From application, computer, network and Internet security to access control management, data privacy and other hot topics, you will walk away with practical advice for your strategic and tactical information security initiatives.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Spear Phishing: How to Avoid Becoming a Hacker's Trophy Phish
  • Live at: Jun 20 2012 7:00 pm
  • Presented by: Phil Lin, Director, Product Marketing, FireEye
  • From:
Your email has been sent.
or close