Name: How to Recognize Malicious DNS with Free Network Monitoring Tools
Start: 2018-10-23T17:00:00Z
End: 2018-10-23T17:01:30.000Z
Location: BrightTALK
Rating: 5

Exabeam is a leader in intelligence and automation that powers security operations for the world’s smartest companies. As a global cybersecurity leader, Exabeam provides industry-proven, security-focused, and flexible solutions for faster, more accurate threat detection, investigation, and response (TDIR). Cutting-edge technology enhances security operations center performance, optimizing workflows and accelerating time to resolution. With consistent leadership in AI innovation and a proven track record in security information and event management (SIEM) and user behavior analytics, Exabeam empowers global security teams to combat cyberthreats, mitigate risk, and streamline operations. Learn more at www.exabeam.com.

Join us for this webinar to learn the latest news and enhancements to New-Scale Security Operations Platform to help safeguard your environment with confidence.

New-Scale Security Operations Platform - April 2025 Quarterly Launch

April 2025 marks our 12th consecutive quarterly release, bringing you new product enhancements to help safeguard your environment with confidence.
 
Learn more about the latest enhancements to LogRhythm SIEM, our self-hosted SIEM platform. Product leaders will demo the latest enhancements and provide guidance on how to apply these enhancements to your team.

LogRhythm SIEM - April 2025 Quarterly Launch

This presentation explored the evolving threat landscape of insider threats in the age of AI, highlighting how the advancements in technology amplify insider risks.

Key takeaways included:

- How insider threats are evolving in the age of AI
- How AI has amplified risks but also strengthened defences
- How to adopt proactive strategies

Navigating Insider Risks in a AI-Driven World

本セミナーでは実際に発生した不正アクセス事例をもとに、最新の脅威動向をご紹介し、SOC運用の自動化に向けたポイントを徹底解説。脅威の検知、調査、対応を強化するために必要なAIを活用した分析方法、また脅威の特定に必要なコンポーネントに関して詳しくご紹介いたします。

セキュリティ運用の自動化ー脅威の検知、調査、対応にAIを適用し、高度化させるには

内部不正と一言でいっても様々な種類の不正が存在します。本講演では実際に起きた内部不正の事例を交えながら、どのような対策ができるのかをご紹介します。また、AIと機械学習を取り入れることで、脅威の検知、調査、対応の自動化を実現する方法を解説していきます。

AIを活用した内部不正監視の自動化と事例 (Automated Insider Threat Monitoring Using AI and Case Studies)

In this webinar, we addressed the growing cybersecurity risk posed by insider threats and discussed how organisations can protect themselves using a behaviour-based, AI-powered approach.

Insider threats can come from employees, contractors, or business partners who intentionally or unintentionally misuse their access to sensitive data and systems. These threats are particularly challenging to detect because they involve valid credentials and often occur under the radar.

Using real-life examples, we discussed: 

- Types of insider threats
- Financial and reputational impact:
- Using UEBA for threat detection
- AI and automation for fast action
- Building a proactive culture

By combining advanced AI-driven security tools with a culture of awareness, organisations can proactively defend against insider threats and strengthen their overall security posture.

Defending Against Insider Threats with a Behaviour-Based Approach

During this webinar, we discussed the ever-expanding role of the UK’s trusted managed security service provider (MSSP) community in securing our cyberspace – as well as when, why, and critically how, the government should become involved.

We drew on Matt Rider’s recent experience working with government agencies’ inaugural Hackers in the House initiative and discussed which organisations should be classed as CNI.

Key takeaways:

- How and why the definition of CNI is changing and what you can do about it
- Best practice for engaging with UK Government on cyber policy
- How to choose the right MSSP for your security outcomes

The Role of Government and Service Providers in Securing UK Business and Critical National Infrastructure

Cybersecurity threats are evolving at an unprecedented pace, and 2025 promises to bring new challenges and opportunities for defenders. Join industry experts Steve Wilson, Steve Povolny, Gabrielle Hempel, and Kevin Kirkwood for an engaging conversation exploring the biggest cybersecurity predictions for the year ahead. From AI accelerating exploitation cycles and the rise of "Zero Trust for AI" to the emergence of triple extortion attacks and the growing sophistication of nation-state threats, this discussion will deliver actionable insights that security leaders need to stay ahead. Don’t miss this dynamic conversation that will help you prepare for the future of cybersecurity. Register now to secure your spot!

Looking Ahead: Cybersecurity Trends and Predictions for 2025

New-Scale Security Operations Platform - January 2025 Quarterly Launch

January 2025 marks our 11th consecutive quarterly release, bringing you new product enhancements to help safeguard your environment with confidence.

Learn more about the latest enhancements to LogRhythm SIEM, our self-hosted SIEM platform. Product leaders will demo the latest enhancements and provide guidance on how to apply these enhancements to your team.

LogRhythm SIEM - January 2025 Quarterly Launch

Insider threats are among the hardest cybersecurity challenges to solve. Unlike external attacks, insiders have legitimate credentials, making them nearly invisible to traditional detection methods. But what if you could uncover these threats before they escalate? Join Exabeam’s expert-led webinar to explore how our advanced UEBA technology and AI-driven workflows can surface hidden risks by understanding "normal" user behavior and identifying deviations. Learn why Exabeam’s proven machine-learning approach has made us the leader in behavioral analytics for over a decade—and how our platform can empower your team to detect, investigate, and respond to insider threats faster than ever before.

Trust No One: How to Spot Insider Threats Hiding in Plain Sight

Cybersecurity spend is set to surpass $170 billion annually by 2027 according to IDC. Enterprises face pressing challenges in threat detection and response as adversaries use generative AI to increase compromise credentials. Approximately 60% of organizations experienced a rise in credential phishing attacks, facilitated by generative AI tools.  

Join us on November 20th to dive into modern security architectures using the Exabeam Security Operations Platform to define TDIR strategies. 

Discover how you can modernize your security operations with: 

Outcomes Navigator: Personalize outcomes and coverage levels align to MITRE Coverage Score to draw actionable actions from C-suite investment to analysts' response. 

Exabeam Copilot: Enable instant collaboration and rapid response with generative AI, turning insights into action with natural language processing (NLP) 

 

Grab this opportunity to watch a live demo on how Exabeam machine learning (ML) improves parser data, modernizes your security strategy with AI, and helps you stay ahead of threats.

Elevate Your Cybersecurity Response: Transform Threat Detection, Investigation, and Response (TDIR) with AI

Effective leadership during a cybersecurity breach is vital for both immediate response and long-term resilience. Not only does it protect the organization but also nurtures the team. By fostering an environment of communication, collaboration, and continuous improvement, as well as investing in technologies to fully equip the team, CISOs can lead their organization through crises and emerge stronger. 

In this webinar, recently hosted by SASIG Events, Exabeam’s VP and Chief Security Strategist, Steve Moore, will discuss some of the key considerations, including a first-hand perspective from Ash Hunt, Global CISO of Apex Group, covering:

- The importance of empowerment and collaboration through encouraging team involvement and decision-making responsibilities within their scope to facilitate quick responses.

- Investing in development, including training, mentorship, and how the use of AI and ML can help maximise the team’s competency at the same time as improving efficiency. 

- Fostering resilience, including mental health support and work-life balance, especially during high-pressure situations. 

- And more…

Leadership and Career Development During a Breach

In a time of continuous threats with committed adversaries, AI is becoming a powerful ally in improving threat detection, investigation and response by capitalizing on the power of machine learning, the knowledge contained in large language models (LLMs) and AI techniques such as natural language processing (NLP). As organizations continue to struggle to hire and retain their security personnel, there’s a huge opportunity in security operations for enabling technologies like these that accelerate knowledge and increase productivity.  
 
Join Steve Wilson, Chief Product Officer at Exabeam and guest speaker Allie Mellen, Principal Analyst at Forrester Research to hear the trends, hype, risks and opportunities associated with AI in Security Operations.  
 
Key learnings: 
• What are the leading use cases for GenAI and NLP?  
• How can buyers sift through the hype?  
• How secure is Gen AI? 
• Risks associated with GenAI adoption? 
• What are some benefits of an AI-Driven Security Operations Platform? 
• Why isn’t machine learning alone enough? 
• Real-world AI successes reported by customers.

The Intersection of Gen AI and Cybersecurity: Building the Case for an AI-Copilot

Join us for this webinar to learn the latest news and enhancements to Exabeam's New-Scale platform to help safeguard your environment with confidence.

· Streamlined Data Collection: New Cloud Collectors streamline log ingestion, saving security personnel valuable time and resources, and improving organizations' ability to quickly and accurately detect threats.

· Enhanced Copilot Integration: Extended the generative AI capabilities of Exabeam Copilot to include natural language assistance to create new dashboard visualizations without complex queries, streamlining compliance reports, IoC detection, and SOC performance.

· Regional Support: Exabeam cloud coverage for the Kingdom of Saudi Arabia is now live, enabling deployment of the New-Scale Platform in that region.

· Compliance Achievement: Exabeam has completed the AICPA SOC 2 Type II Audit and is compliant without exception, demonstrating its commitment to maintaining the highest standards in security and privacy.

October 2024 Quarterly Launch - New-Scale Exabeam Security Operations Platform

October 2024 marks our 10th consecutive quarterly release, bringing you new product enhancements to help safeguard your environment with confidence.

Learn more about the latest enhancements to LogRhythm SIEM, our self-hosted SIEM platform. Product leaders will demo the latest enhancements and provide guidance on how to apply these enhancements to your team.

· Enhanced Log Source Management: A new location for pending log source management in the Web Console gives analysts immediate visibility into sources, enabling them to efficiently edit log sources through the API.

· Optimized Analytics: New versions of Elasticsearch and the Advanced Intelligence Engine service make security analytics more powerful, enabling greater efficiency with quicker and more accurate TDIR through: 
              -Up to 50% improvement in detection pipeline throughput o 87% faster loading of log sources in the client console
              -Up to 10x improvement in processing of pattern matching rules 

· New and Enhanced Log Sources: Over 60 new and enhanced log sources, including Rubrik, Anomali, and Akamai, added to over 1,000 existing out-of-the-box log sources as a continued commitment to provide customers accurate and modern TDIR.

October 2024 Quarterly Launch - LogRhythm SIEM

The break-neck speed of technology innovation creates opportunities and challenges for security professionals. You wouldn’t drive a car if you could only see two-thirds of the road, yet we are expected to defend our ecosystems with similar levels of visibility, dispersed with an over-reliance on manual controls. During this webinar, we will dissect these challenges and provide best practice recommendations with a focus on positive business outcomes.

Register for this webinar to learn:

-Why visibility is still such a huge challenge for security teams, and what can be done about it
-How to approach automating more of our threat detection, investigation, and response operations
-How to focus on business outcomes to bridge the gap to providing security at the speed of technology innovation

APAC - The Machines Are Learning, But Are We?

NA/UKI - The Machines Are Learning, But Are We?

DNS is woven into the fabric of both the Internet and corporate intranets. It works so well that you might even forget it exists—until it is used against you.

Hackers are using DNS to find Command and control (C2) servers, control compromised systems, and exfiltrate your data.

In this free training webinar, a group of security experts from LogRhythm and Ultimate Windows Security team up to show you how to spot threatening DNS activity with LogRhythm NetMon Freemium.

You’ll learn about the malicious use of DNS and how to detect:

- Domain-generation-algorithm (DGA) queries
- C2 data tunneled through DNS
- Data exfiltration via tunneled DNS

Watch now to learn how to stop hackers from exploiting DNS to infiltrate your network.

How to Recognize Malicious DNS with Free Network Monitoring Tools

Cyber Attacks

Network Monitoring

Threat Detection

Malicious Activity

Network Security

Cyber Security

Cyber Threats

Hackers

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Recognize Malicious DNS with Free Network Monitoring Tools

Presented by

About this talk

More from this channel