Name: Inside the Threat: Secureworks CTU Analysis | Episode 3: Understanding AitM Tactics and Credential Theft
Start: 2024-09-10T13:25:00Z
End: 2024-09-10T13:25:32.000Z
Location: BrightTALK

We help protect organisations from today’s most pervasive cybersecurity threats. With us on your team, you’ll rest easy knowing your mission-critical assets are safe from threat actors.

As organizations look to build the right security operations strategy for their business, they often need to evaluate tradeoffs between consolidating on a single technology stack vs an open platform. Join SVP of Product Management, Kyle Falkenhagen, as he discusses the concept of taking an open approach to cybersecurity and what to consider when executing your security vision for the next 3-5 years.

What We'll Cover:
 -- The definition of an open cybersecurity approach to security operations
 -- Advantages to using an open framework, such as maximizing the value of your security investments today for flexibility in the future
 -- How to evaluate where and when to consolidate

Let's Talk SOC: Ep 22: Taking an Open Approach to Cybersecurity

An organization’s security strategy is an enterprise-wide business decision that requires understanding your risk profile and how you would respond in the event of an attack. Join VP of Marketing Stacy Leidwinger as she discusses the top elements to raise hygiene, the biggest risks, and the importance of aligning business and security teams.

What We'll Cover:
 -- Three core tasks to elevate security hygiene
 -- The top vulnerability and risk factors
 -- The impact of cybersecurity spending and cyber insurance

Let's Talk SOC: Ep21: Risks and Ramifications of Cyberattacks

As threat actors continue developing new ways to target organizations, it’s critical for security leaders to have the right threat intelligence and know how to use it. Join Director of Governmental Partnerships and Director of Threat Research at Secureworks Alexandra Rose as she discusses what threat intelligence is, why security leaders need it, and how they can use it to reduce organizational risk and respond to threats.

What we'll cover:
 -- Why it’s crucial to have threat intelligence
 -- How threat intelligence informs strategic decision making for security leaders
 -- How leaders can maximize intelligence to reduce risk
 -- What emerging threats should leaders know and how to prepare their organizations to respond

Let's Talk SOC: Ep20 - The Value of Threat Intelligence for Security Leaders

Managed Detection and Response (MDR) solutions deliver powerful threat monitoring, detection, investigation, and response capabilities. But in an ever-evolving threat landscape, organizations need more proactive capabilities to stay ahead of threat actors. Join us for this webinar, hosted in collaboration with QKS Group, to explore how MDR can go beyond the basics of traditional threat detection. Get the Secureworks perspective on MDR solutions and how they should proactively identify potential threat exposure. And discover the types of preemptive measures that mitigate risk and fortify cyber resiliency before a threat actor strikes.

In this informational webinar, you will:
 -- Learn how proactive features can accelerate the impact of MDR solutions
 -- Discover the role AI plays in driving efficiency in threat detection, investigation, and response
 -- Get insights into why it’s important MDR vendors understand your security priorities and goals

Shift Beyond Threat Detection to Proactive Measures

Over the past year, the North Korean IT worker scheme has adapted with deepfakes and AI, revealing new layers of deception. In this Cyber Short, the team will shed light on the intricate workings of state-sponsored groups like NICKEL TAPESTRY.

The Secureworks team discuss how these groups are innovating fraud tactics and what it means for organizations worldwide.

Secureworks Cyber Shorts: North Korean IT Workers: Unraveling Deeper Fraud

Discover how North Korean cyber threat actors are infiltrating organizations worldwide by posing as legitimate IT professionals. Join Secureworks CTU™ experts as they delve into this emerging threat, uncovering the latest developments in ongoing infiltration schemes. This webinar will detail the unique approach and toolset observed in incidents where DPRK nationals have fraudulently gained employment at unwitting organizations.

In this informational webinar, you will: 
 -- Gain insights into how infiltration schemes operate
 -- Explore the warning signs for fraudulent job applicants
 -- Learn about preventative measures to avoid hiring fraudulent DPRK workers

Inside the Threat: Secureworks CTU Analysis | Episode 5: Unmasking North Korean IT Worker Infiltration Schemes

With a 30% increase in new ransomware groups last year, organizations need comprehensive security solutions to stay ahead of cyber threats. Join us for an insightful webinar, hosted in collaboration with Frost & Sullivan, to take a deep dive into the extended detection and response (XDR) landscape. Get the knowledge and tools you need to evaluate solutions effectively, prioritize essential capabilities, and maximize the value of your investment post purchase. Whether you're in the process of selecting an XDR solution or looking to enhance the effectiveness of your current deployment, this webinar will provide you with actionable strategies and expert guidance to strengthen your security posture.

In this informational webinar, you will:
 -- Get expert insight on current market trends, key players, and the critical features that differentiate leading XDR solutions
 -- Learn how to assess XDR solutions based on your organization's unique needs, including integration capabilities, scalability, and ease of use
 -- Discover which XDR capabilities are essential for your security posture and how to prioritize them to address your most pressing security challenges
 -- Gain best practices for deploying and optimizing XDR solutions to ensure you get the most out of your investment

Maximizing Your Security with XDR: Essential Strategies and Guidance with Frost & Sullivan

Watch for an insightful Predictions Round Table with Secureworks experts as they delve into the future of cybersecurity in 2025.

Our Counter Threat Unit research team, featuring Rafe Pilling, Chris Yule, and Sarah Kern, and joined by Stacy Leidwinger, will explore the most significant threats on the horizon—from ransomware to state-sponsored adversarial tactics.

Learn how your business can stay ahead and be proactive in cyber preparedness.

Secureworks Cyber Shorts: 2025 Predictions Round Table

This episode of Cyber Shorts dives deep to decode the hype around deepfakes.

We unravel insights on how deepfakes are being used in robo-calling in the US, assess their prolific nature and advancement, discuss the potential risks they pose to organizations and consumers, and provide tips for identifying a deepfake.

Secureworks Cyber Shorts: Behind the Deepfake Hype

In this episode of Cyber Shorts, we take a deep dive into the takedown of the prolific ransomware group LockBit. We share the latest update around the takedown, its impact on cyber crime, and advice for organizations to remain cyber safe from ransomware.

Secureworks Cyber Shorts: LockBit: The Ransomware Takedown

China's Cyber Espionage Tactics Exposed. Learn how the latest sanctions impact global security and what your business must do to shield itself from the silent cyber war.

Secureworks Cyber Shorts: China and Cyber Espionage: Understand the Threat

The Secureworks® Counter Threat Unit™ (CTU) research team analyzes security threats to help organizations protect their systems, people, and data. 

Watch this Cyber Shorts with Stacy Leidwinger and Alexandra Rose to hear the top three insights around cybercrime, multi-factor authentication bypassing techniques, and malware in unauthorized downloads.

Secureworks Cyber Shorts: The Latest in Cyber Threats: MFA Bypass and Malware from Suspicious Downloads

Secureworks Counter Threat Unit™ Senior Security Researcher, Mark Osborn, examines China’s ongoing use of cyber intrusions to further its political, military, and economic aims. Mark sheds light on the use of cyber for intelligence collection by the Chinese state, taking a high-level look at the Chinese cyber threat landscape and digging down into specific examples of threat groups and their targeting methods. He also examines the role of the Chinese Communist Party (CCP), the main driving force behind intelligence collection.

In this informational webinar, you will:
 -- Learn about the structures in China responsible for cyber intrusions
 -- Gain insight into the evolution of China’s intelligence collection operations
 -- Discover whether your organization could be a prime target for Chinese espionage

Chinese Cyber Threats in the Age of the Xictionary

Secureworks® CTU™ experts provide an update on Operation CRONOS, the ongoing law enforcement disruption of one of the largest and most prolific ransomware groups of recent years, LockBit. This webinar will build on the detail provided in Episode 1 of Inside the Threat by discussing the most recent law enforcement action which uncovered links between LockBit and notorious Russian cybercriminal group, EvilCorp. 

CTU researchers will also look at the impact of this latest phase of Operation CRONOS on both the operators of LockBit and the wider ransomware ecosystem, providing practical advice for safeguarding your organization from ransomware.

In this informational webinar, you will:
  -- Gain insights into the latest developments in the ongoing disruption of LockBit and the newly discovered links to EvilCorp. 
  -- Discover how continued law enforcement activity has impacted the wider ransomware ecosystem and what this means for the threat landscape. 
  -- Learn how to protect your organization from ransomware attacks.

Inside the Threat: Secureworks CTU Analysis | Episode 4: LockBit Disruption Update

The Secureworks Counter Threat Unit researchers have identified a growing threat: Adversary-in-the-Middle (AiTM) attacks. These sophisticated threats are on the rise, and it’s important to understand them to defend against them.

Watch this Cyber Shorts as Rafe Pilling and Stacy Leidwinger dissect the mechanics of AiTM attacks, their implications, and actionable steps you can take to safeguard your organization.

Secureworks Cyber Shorts: The Rise of Adversary-in-the-Middle Attacks

Many mid-market organizations face security-specific challenges as they grow. It’s not easy protecting an increasingly unique and complex environment without enough resources or staff to confidently keep up with the threats they are facing. So how can these organizations change from reactive to proactive to increase their vigilance, improve their resiliency, and gain strategic guidance to elevate their security programs? Unfortunately, many managed detection and response (MDR) solutions fall short of being able to provide a flexible and holistic solution that doesn’t break their cybersecurity budget.

This on-demand webinar covers the challenges mid-market companies face, what a more tailored MDR solution should deliver, and how Secureworks® Taegis™ ManagedXDR Plus builds on the strong foundation of MDR for significantly less than it would cost to accomplish similar outcomes internally.

How to Tailor Security with Limited Resources

In the last year, 90% of organizations have suffered identity breaches as cyber attacks involving identities grow more sophisticated and widespread(1). Organizations rely heavily on their identity infrastructure to enable collaboration, remote work, and access to internal systems. But the complexity and room for gaps and errors in these systems make it an attractive target for threat actors, posing significant risks across all sectors.

To manage user identities and control access to resources, most organizations use identity and access management (IAM) systems. It's not enough. Analysis of these systems uncovered that 95%(2) are misconfigured. These misconfigurations provide cybercriminals with opportunities to escalate privileges and leverage identities to further their attacks. While IAM systems are crucial to an organization's security strategy, they must be complemented by additional security layers to proactively combat these tactics. Identity threat detection and response (ITDR) can provide these additional layers, identifying risks and anomalies and detecting potential breaches early.

In this informational webinar, you will learn:
 • The current state of identity threats and the expanding identity attack surface
 • Why organizations benefit from identity threat prevention as well as detection and response
 • How ITDR can help safeguard against the escalating risks associated with identity threats

Sources:
1. Identity Defined Security Alliance (IDSA), 2023 Trends in Securing Digital Identities, July 2023
2. Calculated based on existing Secureworks customer data gathered from incident response

Stop Identity Attacks in Their Tracks: A Roadmap to Risk Reduction

From opportunistic cyberattacks to state-sponsored threats, join this webinar to learn the latest tools, tactics, and motivations behind today's cybercriminal threats.

By understanding the motivation of today’s cybercriminals, your organization will have the insight they need to build a blueprint for cyber resilience. Learn how to take a more effective and efficient approach to prevention, detection, and response to reduce your cyber risk.

This Informational Webinar will cover:
 • Threat actor behavior and motivation to help understand the latest trends in cybercrime
 • Real-world examples of how organizations have both fallen victim to and protected themselves from threats
 • How to strengthen your cyber-resilient programs with managed detection & response (MDR)

Build a Cyber-Resilient Organization: Know the Threat to Beat the Threat

The rapid advancement of Generative AI is fueling an equally rapid evolution of deepfake technology. From effortlessly cloning voices to generating convincing replicas of individuals' faces, deepfakes are enabling the creation of deceitful material with unprecedented accuracy. Exploited by threat actors, these tools can lead to significant financial fraud by usurping identities of high executives.

Join Secureworks® CTU™ experts as they discuss the world of deepfakes, from face swapping and avatars to more sophisticated uses of social engineering that could lure an unsuspecting employee into releasing sensitive information. We’ll cover the details you need to pay attention to so you can spot a deepfake and techniques you can implement at your organization to protect against these types of attacks.

This informational webinar will cover:
· The cutting-edge AI tools enabling the creation of realistic deepfakes
· Real-world deepfake attacks causing financial fraud
· Effective strategies to defend your organization against deepfake threats

Inside the Threat: Secureworks CTU Analysis | Ep. 2: Dissecting the Deepfakes

Join Secureworks® Counter Threat Unit™ (CTU) for an expert overview of the LockBit ransomware group, the largest and longest-standing group responsible for ransomware attacks, and the recent takedown.

CTU researchers will deliver insights into the tradecraft of affiliates of LockBit’s ransomware-as-a-service gained from numerous investigations conducted over several years, with intimate details of the recent law enforcement takedown of LockBit and the impact of that action for organizations.

IN THIS INFORMATIONAL WEBINAR, YOU WILL LEARN:

 - A brief history of LockBit and how they evolved into the largest ransomware group
 - The disruptive action taken by international law enforcement agencies against LockBit and the significance of this takedown
 - How to remain vigilant in protecting your organization against ransomware and other forms of cyber attacks

Inside the Threat: Secureworks CTU Analysis | Episode 1: Unpicking LockBit

Inside the Threat: Secureworks CTU Analysis

Join Secureworks® CTU™ experts for an in-depth exploration of "Understanding Adversary in the Middle (AitM) Tactics and Credential Theft," a crucial topic for anyone concerned with protecting remote access solutions or SaaS applications. This webinar will unravel the complexities of AitM attacks, a sophisticated method used by threat actors to intercept and steal user credentials or tokens.

We will delve into the mechanics of these attacks, highlight real-world examples, and examine the tools and technologies employed by attackers. Additionally, we'll discuss effective strategies for detection, prevention, and response, providing practical advice to safeguard your organization. Don't miss this opportunity to enhance your understanding and fortify your defenses against one of the most insidious threats in the digital landscape.

In this informational webinar, you will:
· Gain insights into what AitM attacks are and why you need to watch out for these type of attacks
· Discover the various types of AitM attacks and how they work
· Learn how to protect your organization from AitM attacks

Inside the Threat: Secureworks CTU Analysis | Episode 3: Understanding AitM Tactics and Credential Theft

Extended Detection and Response

Threat Intelligence

Cyber Security

Cyber Threats

Threat Landscape

AitM

adversary in the middle attacks

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Inside the Threat: Secureworks CTU Analysis | Episode 3: Understanding AitM Tactics and Credential Theft

Presented by

About this talk

Secureworks