Name: New Information: 2023 Identity Threat Report Findings: Credential Stuffing
Start: 2024-01-25T18:00:00Z
End: 2024-01-25T18:01:01.000Z
Location: BrightTALK
Rating: 4.7

F5 is a multicloud application security and delivery company committed to bringing a better digital world to life. F5 partners with the world’s largest, most advanced organizations to secure every app—on premises, in the cloud, or at the edge. F5 enables businesses to continuously stay ahead of threats while delivering exceptional, secure digital experiences for their customers. For more information, go to f5.com. 



Embark on a journey to fortify your API defenses as we delve into the realm of shadow APIs—a silent threat to the digital ecosystem. With the surge in AI-powered applications, the reliance on APIs has skyrocketed, bringing API security to the forefront of cybersecurity challenges.

In this action-packed webinar, we'll unravel the complexities of the API landscape and shed light on the unseen risks that shadow APIs pose. Security can't be an afterthought; it's time to 'Shift Left' and embed security into the very fabric of your development process.

Shift Left Approach: What Threats are Hiding in your APIs

This insightful webinar peels back the layers of API security to reveal the complexities of protecting your APIs.

You'll gain an in-depth understanding of:
-  The most pervasive API vulnerabilities that compromise systems and how to mitigate them.
-  Critical security measures and control mechanism for APIs.
-  Strategies for achieving holistic API visibility and the critical role of continuous oversight and robust security in maintaining the integrity of your API infrastructure.

Prepare to dive deep into the realm of API security, where you will emerge with the knowledge and tools to not just discover, but to also effectively defend your APIs against the sophisticated attacks of the digital age.

Join us for a session that promises to elevate your API security strategy from reactive to proactive, ensuring your APIs remain not just operational, but impenetrable.

Learn more, register today

API Security Going Beyond Discovery with Comprehensive Protection

Join us as we delve into the relationship between bot defense and API security. Discover why APIs are becoming the focal point for enterprise cybersecurity teams and understand the strategies needed to protect them from sophisticated bot attacks. 

APIs serve as the backbone of modern applications, connecting IoT devices, web and mobile apps, and business partner processes. This crucial role makes them a prime target for cybercriminals, especially those leveraging automated bots to exploit vulnerabilities. 

Key Takeaways:

-  The Role of Bots in OWASP's Top Ten API Vulnerabilities: Learn how bots exploit common API weaknesses and why they are a significant concern in the current threat landscape.

-  Challenges in Mitigating Bot Attacks: Understand the persistence and sophistication of modern bots, and why traditional security measures often fall short.

-  Essential Components for Robust API Security: Gain insights into the necessary tools and strategies to effectively defend your APIs against malicious automation.

By attending, you will equip yourself with the knowledge to strengthen your API security framework and safeguard your APIs from bot-driven threats. Don't miss out on this opportunity to enhance your cybersecurity posture!

Learn more, register today

You Can’t Spell API Security without Bot Defense

Join F5 for an interactive webinar to dive into unlocking the potential of artificial intelligence using retrieval-augmented generation (RAG.) RAG is becoming a popular and cost-effective way to use proprietary corporate data to enhance the use of large language models (LLMs) to deliver timely, precise, and context-aware AI model outputs.

During this webinar hosted by F5, discover how F5 and NetApp's growing technology alliance partnership can enable your organization to turn NetApp-stored information into a strategic AI advantage.

Key Learning Objectives:
-  How to combine a pre-trained model with proprietary organizational data for more accurate and contextually aware responses
-  Explore how RAG incorporates organizational data to complement models and deliver better inference
-  Enabling high-performance data mobility and security for AI workloads anywhere with F5 and NetApp

Don't miss out on this opportunity to explore how RAG and the F5 and NetApp technology alliance partnership can revolutionize your AI deployments. Register now!

Secure and Expedite RAG AI Deployments with F5 and NetApp

APIs are pivotal in today’s digital landscape, driving innovation and efficiency by enabling seamless interactions between services and platforms. However, this increased reliance on APIs has expanded the attack surface, exposing vulnerabilities that traditional security measures struggle to defend against.

Join our webinar to discover how F5 NGINX App Protect v5.0 offers consistent, enterprise-grade security for APIs and services with tailored visibility, control, and protection across on-premises, cloud, and hybrid environments all while ensuring zero impact on the data plane through the separation of control plane.

What you’ll learn:

-  Defend diverse services, AI technologies, platforms, and applications in cloud environments, including container-based orchestrations, with extended support beyond K8s, and K3s.
-  Enhance security with tailored visibility and control, ensuring zero impact on the data plane through the separation of the control plane.
-  Leverage lightweight, high-performance WAF, DoS, and API security.

Watch a demo showcasing how NGINX App Protect secures services using APIs, including its deployment on NIC and NAPaaS on Azure.

Register Here

Unlocking WAF and API Security with NGINX App Protect

NGINX is helping teams optimize, scale, and secure modern applications like never before.

Join us for an insightful webinar on the next giant leap for NGINX and its customers: NGINX One. It empowers all application delivery and security stakeholders with visibility and management capabilities for the entire enterprise NGINX fleet.

Hear directly from Shawn Wormke, VP and General Manager, and Peter Beardmore, Director of Product Marketing, both from F5 NGINX, as they unveil how NGINX One simplifies application delivery and security management across the entire enterprise.

By the end of this webinar, attendees will have a comprehensive understanding of how NGINX One can transform their enterprise application delivery and security strategies, making them more efficient, secure, and adaptable to future needs.

Key learning objectives:
-  Simplified Management: Learn how NGINX One simplifies the management of your entire NGINX fleet, reducing operational complexity and administrative overhead.
-  Comprehensive Application Delivery: Discover the core use cases of NGINX One, including load balancing, reverse proxy, and API gateway functionalities, to ensure optimal application delivery.
-  Seamless Integration: Understand how NGINX One integrates with existing infrastructure and tools to provide a unified approach to application delivery and security.
-  Enhanced Collaboration: Explore how NGINX One empowers cross-functional teams—developers, operations, and security—to work more effectively together through improved visibility and shared insights.

Learn more, register today

NGINX One Unveiled: Boost Enterprise App & API Performance

Join us for a deep dive into the transformative world of cloud-native networking, based on Kubernetes. This webinar will illuminate the path to a simplified, yet powerful network architecture, demystifying the journey for those who are ready to harness the immense potential of cloud-native technologies.

Discover how F5's BIG-IP Next CNF solutions are redefining the delivery of network and security services, tailored for the unique demands of edge use cases and apps, and beyond.

F5 experts share invaluable insights and firsthand experiences, outlining the blueprint for successful cloud-native deployments. Gain a clear understanding of the key drivers for this architectural paradigm shift and learn practical strategies to navigate the challenges faced during the transition.

Whether you're looking to optimize your current infrastructure or planning a complete overhaul, this session promises to equip you with the knowledge and tools to make your cloud-native network functions a resounding success.

Key Learning Objectives:
-  Learn how to leverage cloud-native networking to achieve unprecedented scalability, agility, and cost efficiency in your network infrastructure.
-  Learn about the strategic implications of Kubernetes and how it facilitates a more robust and flexible network environment.
-  Dive into the features and benefits of F5’s BIG-IP Next Cloud-Native Network -  Functions and how they are shaping the future of network and security service delivery.

Benefit from real-world lessons learned from experts who have successfully deployed cloud-native network functions in production environments.

Register today for this insightful webinar.

Unlocking the Power of Cloud-Native Infrastructures

Join our knowledgeable presenters, Gee Chow, Solutions Architect at F5, and Sundar Tiwari, Sr. Product Manager at F5, for a session that promises to empower your Azure experience with NGINX Plus.

NGINX as a Service is a fully hosted offering that is tightly integrated into the Azure ecosystem, making applications fast, efficient, and reliable with full lifecycle management of advanced NGINX traffic services.

NGINXaaS for Azure, powered by NGINX Plus, eliminates the need to deploy and manage individual instances or clusters of NGINX, and removes the operational burden of managing machines and images.  Unlocking all NGINX Plus use cases of API Gateway, load balancer, programmable ADC, and cache managed through various Azure management tools (portal, CLI, SDK, ARM, and Terraform). And NGINXaaS for Azure can scale to meet your business, technical, or security requirements as they develop.

In this in-depth session, our experts will cover:

-  Seamless Integration with the Azure Ecosystem: Discover how NGINX Plus -  integrates with essential Azure services such as Key Vault, Monitor, and Log -  Analytics, enhancing security and monitoring capabilities.
-  Smooth Migration Path: Learn the steps to transition your existing NGINX configurations to NGINX as a Service for Azure without hassle.
-  Continuous Innovation and Reliability: Understand how NGINXaaS for Azure ensures your instances remain cutting-edge and robust with automatic updates and built-in failover and service resiliency.
-  Cost-Effective Strategies: Leverage your Microsoft Azure Consumption Commitment (MACC) to make the most of NGINX as a Service for Azure.

Deploy NGINX on Azure faster than you can say 'NGINXaaS for Azure'

How can you meet your current virtualization needs while you prepare for a future that includes containerized applications and workloads?

Join us for an insightful webinar where we explore the strategic shift in the virtualization landscape. As organizations navigate the uncertainty and seek reliable alternatives, Red Hat OpenShift Virtualization emerges as a robust solution, offering a unified platform for container and virtualized workloads.

A challenge for most enterprises is that many mission-critical applications require uptime and security during the migration process.

In this session, you'll learn:

-  The advantages of migrating VMs to Red Hat OpenShift Virtualization.
-  Practical insights on achieving a secure and streamlined migration.
-  How F5 solutions enhance the security and efficiency of your migration efforts.

Whether you are actively seeking a migration path or simply weighing your virtualization options, this webinar will equip you with the knowledge to make informed decisions and the strategies to execute them effectively. Don't miss the opportunity to the evolving virtualization landscape.

Learn more, register today

Red Hat OpenShift Virtualization Migration & Security with F5

Join F5 for a webinar with guest speakers from Forrester, Principal Analyst Andre Kindness, and Consultant Courtenay O'Connor, as they unpack their findings and discover how they applied advanced modeling techniques and market considerations to determine the return-on-investment customers can achieve with F5 Distributed Cloud Services. 

Don’t miss this opportunity to equip your organization with the knowledge to make informed decisions on cloud services investment and to optimize your economic outcomes with F5 Distributed Cloud Services.

In this webinar, you’ll learn about:
-  How Distributed Cloud Services can solve the challenges of operating in hybrid and multicloud environments.
-  The return-on-investment and key benefits that you can realize when adopting F5 Distributed Cloud Services.
-  A case study on how these benefits can apply to a typical customer and their business use cases.

Learn more, register today

The Forrester Total Economic Impact™ of F5 Distributed Cloud Services

How do you secure your organization in today's ever-evolving threat landscape? As cyberthreats continue to advance in complexity, it’s imperative to stay ahead with a cutting-edge security posture.

Join us for an insightful webinar where we’ll delve into the importance of upgrading your F5 BIG-IP solutions to not only enhance security but boost performance and unlock valuable new capabilities.

In this webinar we’ll cover these topics:
-  Staying Ahead of the Curve"
Keep your F5 BIG-IP software up to date to avoid end-of-lifecycle complications and mitigate evolving cyberthreats and newly discovered vulnerabilities.

-  Boosting Performance and Automatability with rSeries:
Explore the unparalleled value of upgrading to F5's next-generation hardware system—F5 rSeries—with its superior performance and automatability to lay the foundation for a secure, scalable, and agile environment.

-  Enhancing Performance and Cloud Freedom with the latest BIG-IP Virtual Edition (VE):
Dive into the benefits of upgrading to the latest BIG-IP VE software—which includes gaining greater multicloud freedom, reducing cloud operating costs, and obtaining superior performance.

-  Beginning Your Transition to BIG-IP Next:
Get introduced to F5’s revolutionary next-generation BIG-IP software—BIG-IP Next—and see how it simplifies operations, mitigates risk, bolsters resiliency, and enhances observability.

Elevate Security By Modernizing Your BIG-IP

Unleashing Kubernetes Potential: Simplify Connectivity with NGINX Gateway Fabric

Join us to learn about the new platform tool that we introduced for Kubernetes – NGINX Gateway Fabric, a unified application delivery fabric that is designed to streamline and simplify app, service, and API connectivity to, from, and within a Kubernetes cluster.

Learn from experts about deploying NGINX Gateway Fabric for fast, reliable, and secure app and API connections with easy governance. Perfect for Platform Architects, DevOps, and Sysadmins ready to future-proof their Kubernetes communications.

Key Takeaways:
-  Leverage Kubernetes Gateway API independently for streamlined management.
-  Deploy advanced connectivity scenarios effortlessly with NGINX Gateway Fabric.
-  Seamless interoperability of NGINX Gateway Fabric with Kubernetes-native ecosystem, including integrations with Prometheus and Grafana.

Don't miss out – secure your spot in our transformative webinar and elevate your Kubernetes strategy!

Kubernetes Connectivity Evolved: NGINX Gateway Fabric

The rise of AI is not all hype and frenzy. There are real implications—for productivity and competitiveness, and for governance and compliance. Every organization will have to evaluate how AI apps impact their business.

We’ve already reached an untenable state of risk and complexity with the rapid evolution of apps into API-based systems. Adding AI into the mix is like pouring gasoline on an already burning ball of fire. Multi-model and multimodal LLMs along with expanding AI ecosystems drive multicloud architectures—and they’re all connected by APIs.

It is imperative that architects and security teams unpack the massive risk surface for AI apps— and see why AI must be embraced by defenders to tango with adversarial AI that has democratized and supersized attacker arsenals.

In this webinar, we’ll cover:

-  Explore the fundamentals of AI such as Large Language Models, training, and inference.
-  Show the importance of secure multicloud networking and API security for delivering, protecting, and optimizing AI-enhanced digital experiences.
-  Highlight how F5 API security solutions are AI-ready and can help you safely unleash innovation.

Learn more, register now

The AI Tsunami: Is Your API Security Ready for the Perfect Storm?

AI and API security are among the top hot-button issues in the security profession these days. Unfortunately, despite all the discussion, there’s not yet enough clarity around the topic. Many organizations still find it particularly difficult to understand when AI can add value and when it is merely being used for its buzz and hype. 

Looking beyond buzz and hype, how can you know when you’re applying AI in a useful way to creatively solve problems? AI works best when it’s carefully, strategically, and methodically leveraged to tackle the specific problems for which it is best suited.

Join F5 for a session on how to apply AI to API security – with best practices to keep in mind.

In this webinar, we’ll cover:

-  Why APIs require special security measures above and beyond those applied to applications.
The 10 best practices for API security that can be applied within your organization.
-  Why AI is a tool that needs to be applied to specific challenges.
-  Ways you can successfully apply AI to API Security.

Register today

10 API Security Best Practices & AI Strategies

The need to meet modern IT requirements is creating difficulties for many organizations. Managing distributed applications across environments including public clouds, data centers, and edge locations is integral to the maintenance of a modernized app and API portfolio, but also adds complexity.

These distributed infrastructures introduce operational challenges, increased costs, reduced visibility, and heightened vulnerability to cyberattacks. To effectively solve these issues, a comprehensive approach with the right technologies is essential to properly connect and secure multicloud networks.

Join F5 experts for an insightful discussion on the top 2024 trends, challenges, and best practices for addressing the needs of both traditional and modern applications, all while maintaining granular control, visibility, and security—without adding complexity.

In this webinar, we’ll cover:

-  The complexities associated with hybrid and multicloud environments
-  Essential elements for achieving streamlined management across multiple clouds
-  Security strategies for consistently navigating multicloud networking challenges

Learn more, reg today

Secure Multicloud Trends and Challenges in 2024

In a digital landscape where performance, security, and efficiency are paramount, NGINX stands as a cornerstone for delivering high-performing modern applications. However, the complexity of configuring, securing, and managing NGINX can be challenging.

This webinar will demystify the complexities of NGINX, guiding you through the most effective methods to unify your security controls, enhance your system’s visibility, and embrace automation for a more resilient and responsive platform.

Whether you’re looking to refine your current NGINX setup or are in the early stages of adoption, this webinar is your stepping stone to a more streamlined and robust NGINX experience. Join us to unlock the full potential of your app infrastructure with less complexity and more confidence.

Our expert speakers will delve into practical techniques and best practices for deploying and using NGINX Instance Manager to streamline and simplify the management of your NGINX deployments.

This webinar is for Platform Architects & Engineers, DevOps teams, and system administrators seeking to elevate their NGINX management strategies.

By the end of this session, you will learn:

-  A comprehensive understanding of security best practices tailored specifically for NGINX environments.
-  How to gain actionable insights from monitoring and logging tools that offer greater visibility into your system’s performance and security posture.
-  Extensive automation techniques that will expedite your self-service deployment processes, improve accuracy, and free up valuable resources.

Learn more

NGINX Uncomplicated: Security, Visibility & Automation

Join us for a look at BIG-IP Next Access, the next generation of F5 BIG-IP app access control. An API-first solution, BIG-IP Next Access delivers secure access-as-code. This means you can now integrate access security directly into the app development process — ideal for those embracing automation in security controls.

Learn how this modern access security platform streamlines key use cases like Identity Aware Proxy and SSL VPN. A demo with BIG-IP Next Access Visual Policy Designer (VPD) will show how easy and fast it is to create policy with minimal UI work.

4-Part BIG-IP Next Series: PT4: Get Zero-Trust App Access with F5 BIG-IP Next

Say goodbye to complexity and welcome a new era of simple, fast, and secure encrypted threat protection with BIG-IP Next SSL Orchestrator. Taking an API-first approach and harnessing automation, BIG-IP Next SSL Orchestrator makes it way easier and faster for you to address the complexities of modern apps and the evolving cyber threat landscape.

Join this session to experience firsthand the transformative capabilities of BIG-IP Next SSL Orchestrator. Discover the pivotal enhancements that simplify and accelerate the deployment and management of encrypted traffic visibility and orchestration services. A demo will showcase BIG-IP Next SSL Orchestrator’s intuitive user interface, designed to streamline workflows and prioritize API-centric interactions.

4-Part BIG-IP Next Series: PT3: Encrypted Threat Protection F5 BIG-IP Next SSLO

In this session will focus on credential stuffing. This will be the first of two sessions. We will quantify its prevalence, explore targeting trends such as attackers’ choice of industries and endpoints, and outline credential stuffing tactics, techniques and procedures (TTPs). We will also take a deeper look into some case studies, with a particular focus on the differences between basic and sophisticated attacks. This talk will also assess the stolen credentials supply chain before focusing on mitigation strategies for combating credential stuffing.

Changes in how we design, build, run and secure information systems have also changed how we look at authentication and access control. The emerging concept of identity is transforming the ways that humans and non-human actors alike make use of data and compute power. At the same time, the emergence of identity as a focus for organizations also means that it has become a focus for attackers. To assess the ways that old and new attacks are targeting digital identities, F5 Labs is presenting findings from our 2023 Identity Threat Report: The Unpatchables. 

Learn more, register today

New Information: 2023 Identity Threat Report Findings: Credential Stuffing

Credential Stuffing

Data Security

Application Security

Identity Theft

Endpoint Security

Bots

Malicious Activity

Attack Vectors

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

New Information: 2023 Identity Threat Report Findings: Credential Stuffing

Presented by

About this talk

More from this channel