Hi [[ session.user.profile.firstName ]]

A 360-Degree View of the Latest APT Groups

FireEye analysts work to identify cyber espionage trends and gather the evidence needed to name APT groups.

The most recently named groups—APT38, APT39, APT40—exemplify the variety of state-sponsored threats that network defenders face today: a North Korean operator specializing in bank heists, an Iranian group tracking personal data and specific individuals and a long-established Chinese actor shifting its targeting to reflect changing geopolitics.

In this webinar, Fred Plan, Sr. Threat Intelligence Analyst at FireEye provides:

• A high-level overview on how nation-state interests are driving APT activity
• Insight into the most recent APT groups investigated by FireEye
• The latest adversary tactics, techniques and procedures (TTPs) these groups use

Register NOW for the live webinar
Recorded Apr 18 2019 58 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Fred Plan, Sr. Threat Intel Analyst, FireEye
Presentation preview: A 360-Degree View of  the Latest APT Groups
  • Channel
  • Channel profile
  • How FireEye Protects FireEye Recorded: Jun 20 2019 60 mins
    Matt Shelton, Director, Technology Risk & Threat Intelligence, FireEye
    FireEye relentlessly protects its customers. But who protects FireEye? Join us for an overview of how FireEye uses its own products and services to protect itself from the same threats faced by customers.

    In this webinar, Matt Shelton, FireEye Director of Technology Risk and Threat Intelligence, will reveal how FireEye:

    •Uses threat intelligence to proactively protect the organization
    •Detects threats using FireEye Network Security products
    •Responds to incidents with FireEye Endpoint Security
    •Leverages Helix as its security operations platform
    •Hunts for known and unknown threats within its environment.
  • Top 5 Cloud Security Myths Debunked Recorded: Jun 20 2019 55 mins
    Martin Holste, Cloud CTO, FireEye
    Through 2022, at least 95% of cloud security failures are predicted to be the customer’s fault (Gartner). But change how you think about cloud security, and you can be a success story.

    Join our webinar, which helps debunk several common myths that jeopardize your fast, secure, migration to the cloud:

    • The cloud is unsafe
    • My organization doesn’t use the cloud
    • My cloud provider will keep me secure
    • The cloud is just someone else’s computer
    • Advanced adversaries aren’t attacking the cloud

    You’ll also learn how to identify a trusted advisor for cloud migration so you can confidently take advantage of cloud advancements.


    Presented by: Martin Holste, Cloud CTO at FireEye
  • Help, my users have been hacked! What happened and how do I respond? Recorded: Jun 20 2019 38 mins
    Vinoo Thomas, Product Line Manager, FireEye
    A Breach Investigation Scenario Leveraging FireEye Endpoint Security

    FireEye spends thousands of hours annually investigating the world’s most impactful security breaches - you don’t have to stand alone when this happens to you. In this webinar, we will use a real-life scenario to dive deeper into how breaches are discovered and importantly, what security lessons can be learned.

    Join FireEye’s Vinoo Thomas as we take a closer look at the discovery of credential harvesting and multiple compromised clients from a single compromised endpoint. Learn how investigation can be used to find and contain the impact of a breach in nearly any environment.
  • A Review of Cyber Resilience -- Past, Present, and Future Recorded: Jun 20 2019 45 mins
    Rob van der Ende, VP APJ, FireEye Mandiant & Naureen Rasul, Head of Cyber Practice Asia, Marsh Pacific
    Rapidly evolving threats and infiltration techniques have rendered traditional cyber defense strategies insufficient and ineffective. The emerging threat vectors and speed of change amplified by the digital transformation cannot be addressed by traditional means. Globally, laws are also changing to keep pace as cybercrime evolves, knowing no boundaries. Therefore, organizations must be nimble and agile to keep pace with policy changes, especially when expanding across different jurisdictions

    Join us as we discuss three strategic imperatives to strengthen cyber resilience:
    • Understand (know your threats) – Identify organization- and industry-specific cyber threats and regulations calls for robust strategies that include cross-disciplinary considerations.
    • Measure (know yourself) – Quantify the potential financial impact of cyber exposures to compare against the level of risk appetite acceptable to the board. This will determine the amount of investment necessary to mitigate and transfer any residual risk.
    • Manage (know what you can do) – Proactively manage cyber risks by having clear action plans based on your capabilities and capacities to protect against cyber criminals.

    While cyber-attacks are inevitable, proper preparation is the essential element that sets resilient organizations apart from the rest in managing risk, minimizing damage, and recovering quickly from any incidents.
  • The Cyber Skills Gap: A Practitioner’s Perspective Recorded: Jun 19 2019 52 mins
    Stanley Parret, Principal Consultant, FireEye Managed Defense
    The shortage of cybersecurity workers is a growing concern for the teams who are directly responsible for protecting the organization against cyber threats. It’s estimated that by 2021, 3.5 million cyber security positions will go unfilled.

    Join Stanley Parret, Principal Consultant for FireEye Managed Defense, for a look at the unforeseen challenges and consequences of the growing cyber skills gap, especially around protecting against advanced threats. In this webinar, we’ll discuss:

    -The impact of staffing shortages on security practitioners
    -How they’re being required to protect more with less
    -The options available to security teams who need to extend their capacity

    Register now for the webinar
  • Simplifying Security Operations with ONE Platform Recorded: Jun 19 2019 53 mins
    Ben Forster, Sr. Product Marketing Manager, FireEye
    Managing security operations is a challenge, and the technologies most organizations are using don’t provide the visibility, detection efficacy, or context they need. As their risk profile expands, organizations rely on hiring more analysts and purchasing more tools, often depending on manual processes to find and mitigate threats. The high volume of alert noise strains security teams’ resources and increases the probability they will miss an alert that matters. Organizations need a single solution that centralizes their security management, provides visibility, and allows them to quickly respond to threats with automation.

    In this webinar:
    - Understand the benefits of technology consolidation
    - Learn about what a single platform can do for your people and processes
    - Discover the untapped potential of your security investments
  • Cyber Threats and Elections: What You Need to Know Recorded: Jun 19 2019 39 mins
    Luke McNamara, Principal Intelligence Analyst, FireEye
    Election security has become a growing priority for governments and citizens alike on a global scale.
    While cyber-enabled interference and election tampering continues to make headlines, coverage of the root cause can seem unclear due to the wide range of differing threats facing entities within an election’s ecosystem.

    Join this webinar with Luke McNamara, Principal Analyst of Threat Intelligence, as he uncovers:
    • Frontline observances by FireEye of election-driven threat actors—and their key target areas
    • A risk framework for organizations to categorize election threat activities and targets
    • Beyond the enterprise, how these threats impact individuals and donors involved in political campaigns
    • Best practices used by FireEye and implemented by election administrators to reduce targeted cyber risks
    • The anticipated evolution of sophisticated attacker techniques in future elections
  • How To Train Your Email Security Dragon Recorded: Jun 19 2019 38 mins
    Gareth Fraser-King, Director, Product Marketing EMEA
    The numbers make stark reading. 281 billion emails sent daily to over 2 billion business users. 91% of all cyber-attacks start with an email and it only takes 1 with malicious intent to impact your organisation. With evolving methods used by the adversary, it’s becoming increasingly difficult not to get burned.

    Join Gareth Fraser-King, Director, Product Marketing EMEA, to learn:
    - The state of the cyber landscape, specific to email security.
    - How the attack vector is changing with new tactics, techniques, procedures and what you need to look out for.
    - Why is FireEye better at catching evolving attacks and how this can benefit you.
  • Green Demon Denied Recorded: Jun 19 2019 25 mins
    Shashwath Hegde, Solutions Architect, APAC
    Managed Detection and Response (MDR) services should spot prevention failures and respond quickly. Good MDR services spot Red Teams and Pen Testers who are tasked with defeating preventative controls. A great MDR service knows when real, malicious threat actors are hiding their footprints amongst Red Team activity. In this war story, we discuss how Managed Defense, FireEye's MDR service, deals with such situations.
  • Using Risk Management to Optimize Cybersecurity Costs Recorded: Jun 18 2019 57 mins
    Matt Keane, Senior Director, Risk Management Services – FireEye Mandiant
    Using Risk Management to Optimize Cybersecurity Costs: Best Practices for the C-Suite

    Cyber risk management is increasingly becoming a strategic priority for executive leaders worldwide, though many organizations find it challenging to accurately anticipate, prioritize, and forecast risk mitigation costs.

    C-level executives can meet these challenges by engaging their boards and their security teams to ensure they have the right data to scope risk-based focus areas. This allows the organization to plan effectively while keeping necessary security investments top of mind.

    Join this webinar with Matt Keane, FireEye Mandiant Senior Director of Risk Management Services, as he explains how to:

    • Identify the top risks to your organization based on threat intelligence—and communicate these trends to your board of directors in a way they’ll hear
    • Ensure that the board’s security investment decisions support your organization’s appetite for risk
    • Establish a framework that ensures the alignment of strategic priorities with security spending
    • Track the right risk performance metrics to monitor changes in your unique risk profile, so that you can shift priorities and spending when needed
    • Apply these lessons to a sample business scenario.

    Register for this webinar to learn how executives like yourself can effectively implement these cyber risk management practices today.
  • APT Groups: How They Think, What They Want, and How to Fight Them Recorded: Jun 18 2019 59 mins
    David Grout, CTO, EMEA, FireEye
    Like most cyber criminals, advanced persistent threat (APT) groups try to steal data, disrupt operations, and destroy infrastructure. But unlike other attackers, APT attackers pursue their objectives over months or even years, adapting to defenses and frequently retargeting the same victim.

    Join this webinar to hear David Grout, FireEye EMEA Chief Technology Officer explain how effective cyber threat intelligence (CTI) helps you understand APT groups’ intents and tactics so you can stay ahead of attacks, instead of just reacting to them. He’ll also provide:

    •A high-level overview of the nation-state interests driving APT activity
    •Insight into the most recent APT attacks investigated by FireEye
    •A deep dive into the workings of APT40, a Chinese cyber espionage group that typically targets countries and organizations strategically important to the country’s “Belt and Road Initiative.”
  • A Red Team Case Study Recorded: Jun 18 2019 48 mins
    Steve Ledzian, Vice President & Chief Technology Officer, APAC, FireEye
    Red Team assessments help organizations identify weaknesses in their current detection and response procedures so they can update their existing security programs to better deal with modern threats. We'll look at a red team case study detailed in FireEye's MTrends 2019 report where consultants performed an objective-based assessment that emulated a real cyber attack of an advanced, nation state attacker across the entire attack lifecycle
  • Threat Intelligence on the Frontlines Recorded: Jun 18 2019 55 mins
    Tavis Newsome, Senior Intelligence Optimisation Analyst, FireEye
    Today, defeating cyber attackers and the techniques they employ requires real-time insight and intelligence. Staying ahead of attacks, instead of merely reacting, is the heart of cyber threat intelligence. To illustrate the importance of these capabilities to both public and private sector organizations, Tavis will draw from recent real-world intelligence findings, such as FireEye’s collaboration with Facebook and Google to identify Iranian government influence campaigns, as well as our identification of North Korean state-sponsored groups targeting the energy sector.
  • Defensive Security Techniques You Can Use Now Recorded: May 22 2019 60 mins
    Nick Bennett, Director, FireEye Mandiant & Matt McWhirt, Sr. Manager, FireEye Mandiant
    Many organizations struggle with how to prioritize hardening and protective security actions.

    Based on 15+ years of frontline incident response experience, FireEye Mandiant consultants have identified a number of technical and programmatic defensive trends and best practices to help you prepare for incidents and mitigate their impact.

    Join our webinar, where Mandiant incident response experts Nick Bennett and Matt McWhirt will discuss the following topics:

    • Five technical categories to consider when implementing preventative security
    • Proven tips to effectively execute network segmentation, endpoint hardening and other critical tasks
    • Common pitfalls in evidence destruction, investigation techniques and remediation timing
    • Recommendations for enabling effective remediation and the power of operational playbooks

    Register today to learn how to better handle your organization’s next security incident.
  • Understanding, Combating, and Identifying Insider Threats for Government Recorded: May 2 2019 56 mins
    Matt Shelton - Director of Technology Risk and Threat Intelligence
    There is no doubt that insider threats pose a significant risk to organizations and government agencies, as they can compromise sensitive and confidential data. Any accidental or malicious act by an employee can potentially lead to catastrophic incidents that threaten an organization’s security and reputation. The ability to identify, combat and protect against insider threats is critical to your organization’s security posture.

    Join FireEye’s Matt Shelton, Director of Technology Risk and Threat Intelligence as he discusses how organizations must stay vigilant against external threats while keeping a keen eye on the risk that insider threats pose.

    Matt will also address:
    •What an insider threat looks like to your organization
    •What assets and systems are targeted by inside threat actors
    •Steps to secure your organization against these threats
  • The Role of the General Counsel in Cyber Security Decision-Making Recorded: May 1 2019 18 mins
    Alexa King, EVP & General Counsel, FireEye; Karen Kukoda, Sr. Strategic Alliance Director, FireEye
    Long gone are the days when a single individual or team – whether IT not – would oversee cyber security at an enterprise. Savvy business leaders know that security is the responsibility of everyone, from the entry-level staffer on up to the board, and that a knowledgeable and prepared executive team can mean the difference between a minor incident and a major breach.

    One of the most important decision-makers when it comes to cyber security is the General Counsel (GC). No one knows this better than Alexa King, EVP and General Counsel at FireEye. In this video, Alexa sits down with Karen Kukoda, FireEye Senior Director of Strategic Alliances, to discuss not only the role the GC plays in cyber security, but also the duties of the board of directors in overseeing cyber security.

    Watch the video to learn about all of this and more:
    -How cyber risk has evolved and how we need to start thinking about it
    -Preventative measures GC should take and how they can educate their teams
    -Incident response planning and preparedness
    -How to include cyber risk partners to complement your team’s security strategy
  • A 360-Degree View of the Latest APT Groups Recorded: Apr 18 2019 58 mins
    Fred Plan, Sr. Threat Intel Analyst, FireEye
    FireEye analysts work to identify cyber espionage trends and gather the evidence needed to name APT groups.

    The most recently named groups—APT38, APT39, APT40—exemplify the variety of state-sponsored threats that network defenders face today: a North Korean operator specializing in bank heists, an Iranian group tracking personal data and specific individuals and a long-established Chinese actor shifting its targeting to reflect changing geopolitics.

    In this webinar, Fred Plan, Sr. Threat Intelligence Analyst at FireEye provides:

    • A high-level overview on how nation-state interests are driving APT activity
    • Insight into the most recent APT groups investigated by FireEye
    • The latest adversary tactics, techniques and procedures (TTPs) these groups use

    Register NOW for the live webinar
  • Code Triage: Why Healthcare is Facing More Cyber Attacks... Recorded: Apr 16 2019 53 mins
    Christopher Porter, Chief Intelligence Strategist, FireEye & Darrell Keeling, VP IT, PVH
    Code Triage: Why Healthcare is Facing More Cyber Attacks and How to Protect Your Organization

    Healthcare organizations face a number of unique security concerns, including the increasingly interconnected systems between doctors’ offices, hospitals, insurance companies, suppliers, etc. As such, healthcare is being targeted by multiple types of attackers: nuisance attackers (such as the creators of commodity malware), advanced persistent threat (APT) attackers, and cyber criminals. To battle such attackers, healthcare security teams need to understand:

    -Why healthcare is at risk / what threat actors are seeking / how they are doing it
    -Why email is the #1 threat vector in Healthcare and how to defend against it
    -Best practices and action items for a more robust security program
  • How to Develop and Implement an Effective Cloud Assurance Program for Government Recorded: Mar 19 2019 59 mins
    Ron Bushar, Vice President & CTO - Government Solutions
    As departments and agencies move business operations to the cloud, protecting assets and data remains top priority. Identifying the steps and actions needed to structure, develop, and implement effective security controls in this new environment is the critical first step.

    Where should you start? How do you prioritize activities? How can you leverage existing IT programs, processes, and policies that are already in place?

    Join FireEye’s Ron Bushar, Vice President & CTO - Government Solutions, as he shares steps and best practices to building a cloud assurance program, including:

    - Identifying roles and responsibilities of government, service provider, and third-party stakeholders
    - Adapting existing data classification scheme for cloud services and establishing a cloud-adapted risk assessment process
    - Implementing requirements baselines, risk assessments, and approaches to addressing unique risk scenarios
    - Selecting a cloud service delivery and deployment model
  • The Email Security Goal: ONE Single Solution Recorded: Mar 19 2019 50 mins
    Ken Bagnall, Vice President, Email Security, FireEye, moderated by Christopher Porter, Chief Intelligence Strategist, FireEye
    FireEye research recently indicated that an average of 14 thousand malicious emails per month were being missed by most email security solutions. Email is the number one threat vector and with impersonation and credential phishing or URL-based attacks on the rise your email security solution must keep up with the evolving threat landscape. In this webinar:

    -Get a brief overview on the latest email threat trends
    -Learn about the must haves for email security solutions and the benefits of having one provider
    -Find out about additional email security capabilities that can help you have an adaptable solution
    -Hear about a use case where FireEye helped detect and block impersonation techniques that the incumbent solution missed
The leading provider of next generation threat protection
FireEye is the world leader in combating advanced malware, zero-day and targeted attacks that bypass traditional defenses, such as firewalls, IPS and antivirus.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: A 360-Degree View of the Latest APT Groups
  • Live at: Apr 18 2019 4:00 pm
  • Presented by: Fred Plan, Sr. Threat Intel Analyst, FireEye
  • From:
Your email has been sent.
or close