Name: Stories from the SOC: Malvertising Campaign Leads to Execution of Oyster Backdoor
Start: 2024-09-24T13:00:00Z
End: 2024-09-24T13:00:28.000Z
Location: BrightTALK
Rating: 4.9

Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.

The surge in sophisticated cyber threats, ransomware attacks on critical infrastructure, and the increasing impact of AI and machine learning on cybersecurity have made the attack surface more volatile than ever. 

Join us for Rapid7's annual security predictions webinar. Our security experts will discuss the evolving face of cybersecurity, providing insights and priming SecOps teams to take command with proactive strategies to help navigate the opportunities and challenges ahead in 2025 and beyond.

This 45-minute session will explore the anticipated shifts, emerging trends, and disruptive forces shaping cybersecurity in the coming year. Don't miss this opportunity to gain a forward-looking perspective on Risk and Threats.

Join our expert panel to gain a greater understanding of:

- Previous security trends, impacts, and lessons learned
- Top security predictions
- Security success in 2025

The session is ideal for business leaders and IT practitioners looking to prepare teams for potential vulnerabilities next year.

[NA] Top Security Predictions for 2025

[EMEA] Top Security Predictions for 2025

[APAC] Top Security Predictions for 2025

An essential session for leaders and practitioners, this 30-minute session provides a comprehensive overview of the current security landscape, examining macro influences on organizations and Security Operations Center (SOC) teams.

The session explores the dynamic forces at play, from emerging threat vectors to evolving regulations and geopolitical dynamics. Gain proactive guidance on navigating these challenges and empower your organization to respond confidently to emerging security risks.

Take advantage of this opportunity to stay ahead of the curve and strengthen your defenses against evolving threats. Register now to fortify your security posture and safeguard your organization's digital assets.

[NA] The State of Security

[EMEA] The State of Security

[APAC] The State of Security

Join Rapid7 Labs’ threat analytics and vulnerability intelligence leaders as they take a deep dive into the brand new 2024 Attack Intelligence Report. By examining recent notable vulnerabilities and high-impact attacks, the experts of Rapid7 Labs have identified trends every SecOps team should pay attention to, adding valuable context so you can command your attack surface.

Get the data and insights that your business can use to better understand and guard against some of the most significant attacks and TTPs occurring in today’s cyber threat landscape, directly from the researchers behind the report.

[NA] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

[EMEA] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

[APAC] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

Modern IT environments are far from one-size-fits-all. The composition of an organization’s digital estate can look very different depending on the specific needs of their business, even relative to their peers. This dynamic makes prioritizing an often overwhelming volume of risk signals a daunting task. This webinar will explore how practitioners can leverage the comprehensive attack surface visibility, powerful analytics engine and querying capabilities of Rapid7 Surface Command to build a custom risk scoring methodology that’s completely tailored to their environment and specific business needs.

During the webinar, we’ll go over how Surface Command helps security teams:
- Overcome challenges associated with traditional and generalized scoring approaches
- Aggregate data and risk findings across various security and ITOps tools with over 110+ connectors
- How to build complex queries using Cypher to tailor risk scores to your business needs

Join us to discover how Surface Command can transform your security landscape, providing clarity and control over your attack surface.

[NA] Mastering Risk Prioritization: Custom Scoring with Rapid7 Surface Command

[EMEA] Mastering Risk Prioritization: Custom Scoring with Rapid7 Surface Command

[APAC] Mastering Risk Prioritization: Custom Scoring with Rapid7 Surface Command

The threat landscape has compounded, and teams are feeling the squeeze to keep up. Global enterprises are now utilizing an average of 45 cybersecurity tools in their environment, leading to siloed data, blind spots, and inefficiencies–and this tool sprawl isn’t going anywhere.

As cybersecurity veterans with over two decades of experience as a foundational security provider, Rapid7 understands that building a comprehensive program looks different for each organization. We’ve purpose-built our Managed Detection and Response (MDR) engine on top of native XDR technology to deliver built-in visibility across endpoint, network, identity, and cloud, enabling our global security operations center (SOC) to zero-in on actionable and high-fidelity threats no matter where they originate.

Join us for an exclusive webinar to learn how our expansion to cover 3rd party event sources with Managed Threat Complete brings customers:

- Multi-vector attack visibility
- Customized defense in depth
- Comprehensive response

[NA] Extended Ecosystem Monitoring Brings Defense in Depth

[EMEA] Extended Ecosystem Monitoring Brings Defense in Depth

[APAC] Extended Ecosystem Monitoring Brings Defense in Depth

Profiling Hackers – Die Psychologie der Cyberkriminalität
In diesem Vortrag wird Mark T. Hofmann, einer der führenden Experten auf dem Gebiet des Profilings, tief in die Psychologie der Cyberkriminalität eintauchen. Erfahren Sie, was Hacker motiviert, welche Social-Engineering-Techniken sie anwenden und wie Sie zur ""menschlichen Firewall"" werden können. Mit spannenden Geschichten und fundierten Analysen wird Herr Hofmann Ihnen wertvolle Einblicke geben, die Ihnen helfen, sich besser vor Cyberangriffen zu schützen.

Die Tricks der MDR-Anbieter
Navid Ghadami von Rapid7 wird in seinem Vortrag auf die Tricks der MDR (Managed Detection and Response)-Anbieter eingehen. Er wird aufzeigen, worauf Kunden beim Kauf eines MDR-Services achten müssen und welche Fallen es zu vermeiden gilt.

Über die Sprecher:
- Mark T. Hofmann ist Kriminal- und Geheimdienstanalyst sowie Organisationspsychologe. Er hat Hacker getroffen und anonym interviewt, darunter auch solche, deren Taten bis heute unentdeckt sind. Seine Expertise und seine Fähigkeit, komplexe Themen verständlich und unterhaltsam zu präsentieren, machen ihn zu einem gefragten Sprecher weltweit.
- Navid Ghadami ist ein erfahrener Experte bei Rapid7, einem führenden Anbieter von Cybersecurity-Lösungen. Mit seinem tiefgehenden Wissen über MDR-Services bietet er wertvolle Einblicke für Unternehmen, die ihre Sicherheitsstrategien optimieren möchten.

Die Tricks der MDR Anbieter & Die Psychologie der Cyberkriminalität [DACH]

Creating a resilient cybersecurity culture within organizations is essential to effectively combat evolving cyber threats. In this 30-minute session, security experts and people and culture leaders explore strategies for cultivating a strong cybersecurity culture and fostering employee awareness, engagement, and proactive behaviours.

Learn how executives can enhance their cyber mission and vision statements to create a positive cybersecurity culture that permeates the business. Gain practical insights on embedding cybersecurity principles into the workforce's mindset and fostering personal accountability for cybersecurity practices.

Explore the crucial role of accountability, shared values, and clear cyber strategies in mitigating operational risk, enhancing team efficiency, and optimizing resources even in challenging financial landscapes.

[NA] Commander in Chief: Enhancing Cybersecurity Culture

[APAC] Commander in Chief: Enhancing Cybersecurity Culture

Join us for an insightful ‘Stories from the SOC’ webcast  as we explore a recent mail advertising campaign targeting users with malicious installers disguised as popular software such as Google Chrome and Microsoft Teams. These installers deploy Oyster backdoor, also known as Broomstick, enabling cyber attackers to conduct hands-on-keyboard activity and deploy additional payloads.

During the webcast, we will examine:

- The delivery methods of the Oyster backdoor
- Provide an in-depth analysis of its components
- Offer a Python script to help extract its obfuscated configuration

Register today to uncover the full story, and unlock new opportunities to strengthen your SOC.

Stories from the SOC: Malvertising Campaign Leads to Execution of Oyster Backdoor

Security Operations Center

Malicious Activity

Python

Incident Detection

Incident Response

Incident Resolution

Malware

Cyber Defense

Cyber Attacks

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Stories from the SOC: Malvertising Campaign Leads to Execution of Oyster Backdoor

Presented by

About this talk

More from this channel