Name: Stratoshark: Revolutionizing Cloud System Call and Log Analysis
Start: 2025-03-27T10:00:00Z
End: 2025-03-27T10:00:38.000Z
Location: BrightTALK
Rating: 5

In the cloud, every second counts. Attacks move at warp speed, and security teams must protect the business without slowing it down. Sysdig stops cloud attacks in real time, instantly detecting changes in risk with runtime insights, a unique AI architecture, and open source Falco. Sysdig delivers live visibility by correlating signals across cloud workloads, identities, and services to uncover hidden attack paths. By knowing what is running, teams can prioritize the vulnerabilities, misconfigurations, permissions, and threats that matter most. From prevention to defense, Sysdig helps enterprises move faster and focus on what matters: innovation.

Sysdig. Secure Every Second.

Join ex-Royal Mail CISO Jon Staniforth, Sysdig Field CISO Alex Lawrence, and Director of Business Value Engineering David Koppe as they cook up the perfect pizza while breaking down cloud security challenges with expert advice and real-world insights. Here’s what you can expect in this episode:

Strong security starts here: Learn how to build solid foundations for cloud security and future-proof your strategy.
Teamwork that delivers: Discover the recipe for crafting high-performing security teams that drive success.
Stay ahead of risk: Master the tools and strategies to tackle challenges and adapt to an evolving threat landscape.

 For more info, visit sysdig.com!

Sysdig Slice Ep.01: Serving Up Hot Cybersecurity Tips with a Side of Pizza!

From Zero to CK(A)(S) Hero: Insider Tips & K8s Certification Exam Strategies - Live Q&A - CNCF Ambassador Saiyam Pathak

Cloud-native environments have introduced new complexities, making traditional troubleshooting and security methods less effective. Stratoshark builds on the open-source legacy of Wireshark, Sysdig OSS, and Falco to deliver deep visibility by unifying system call and log analysis. With its intuitive, developer-friendly interface, Stratoshark simplifies complex investigations, accelerates incident response, and bridges critical cloud observability and security gaps.

In this session, you’ll discover:
-  How unified system call and log analysis enhances visibility and simplifies troubleshooting in dynamic cloud environments.
  -  Strategies for using Stratoshark’s intuitive interface to streamline investigations and accelerate incident response.
  -  Ways to integrate Stratoshark into your existing workflows to close critical visibility gaps and strengthen security posture.
  -  Explore how this groundbreaking tool is transforming cloud monitoring and security, empowering teams to tackle the challenges of modern infrastructures with clarity and confidence.

Stratoshark: Revolutionizing Cloud System Call and Log Analysis

The cloud security landscape changed overnight. With Google’s 30B+ Dollar acquisition of Wiz, CISOs, security leaders, and multi-cloud teams are left asking: What happens next?

What does this acquisition mean for you?
How does it impact the pace of innovation, cloud partnerships, and security stacks?
What is the future of cloud security, the impact of AI, and where the industry is headed?

Join Sysdig CISO Sergej Epp, former Global Head of Cyber Forensics and Cyber Hygiene Operations at Deutsche Bank and Field CISO at Palo Alto Networks, as he is joined by Matt Stamper, CEO of Executive Advisors Group and multi-time CISO, and James Berthoty, Founder and Analyst at Latio Tech, as they break it all down!

The three will host a lively chat about what this acquisition means for the industry, share insights from both sides of a major acquisition like this, and discuss real options for CISOs evaluating their next move.

Gee Wiz: What a 30B Dollar Acquisition Means for Cloud Security and AI

Our cloud environments are buzzing with alerts—but how many of them actually matter? In a world where attackers move fast and alerts never stop, it’s easy to miss the threats hiding in plain sight.

This session delivered by Bruno Da Silva, Sysdig, dives into practical, no-nonsense ways to filter out the noise and focus on the risks that really need your attention. We’ll break down how in-use compliance data, risk prioritization, and Attack Path Analysis (APA) can help you find the needle in the haystack—before it turns into a fire.

Key Takeaways:

- Silence the Static: Tired of alert fatigue? Learn how to tune out the noise and zero in on real threats
- Spot What Actually Matters: Use real-world compliance and risk insights to uncover vulnerabilities that attackers can exploit.
- Fast, Focused Response: Get practical techniques to detect, analyze, and respond to threats before they escalate.

Alert Overload: Cutting Through Cloud Chaos to Find Real Threats

With the rapid rise of LLMs (Large Language Models) since mid 2024, attacks have rapidly become more frequent and sophisticated targeting vulnerabilities within these models. Cloud-based LLM usage costs can be staggering, surpassing several hundreds of thousands of dollars monthly, making them an attractive target for attackers. The Sysdig TRT since originally discovering LLMjacking in May 2024, has found over a dozen proxy servers using stolen credentials across many different services, including OpenAI, AWS, and Azure. Now, DeepSeek, since it was officially released, has also caught attackers’ attention, with many attackers flocking to the platform to further push the boundaries of LLMjacking.

In this webinar, Sysdig's Threat Research Teams experts Alessandro Brucato and Stefano Chierici discuss the evolution of LLMjacking attacks, including the targeting of DeepSeek. They detail the methods used by attackers, such as the use of OpenAI Reverse Proxies (ORPs), and will also discuss the costs associated with LLMjacking and provide best practices for detecting and combating LLMjacking.

Attackers will Attack: DeepSeek and LLMjacking target

Cyber threats are evolving, and 2025 brings new challenges for security leaders. Join Ron Eddings (Hacker Valley Media) and Caitlin Sarian (Cybersecurity Girl and privacy advocate) for an engaging discussion on the most pressing cybersecurity threats and strategies to stay ahead.

We’ll cover:
  -  AI and Cloud Complexity: Securing workloads and navigating multi-cloud environments while leveraging automation.
  Privacy Risks and Identity Attacks: Caitlin Sarian offers insights on tackling privacy challenges and defending against identity-based breaches.
  -  Threat Detection and Response: Practical techniques to detect attackers faster and respond with precision.
  -  Emerging Trends: The evolving tactics of adversaries and how to prepare for what’s next.

Our expert panel shares real-world insights, actionable strategies, and best practices to help you outpace attackers and protect your systems in 2025. Don’t miss this opportunity to learn from top cybersecurity influencers and industry leaders as they reveal what it takes to stay secure in the year ahead!

Hacks, Attacks, and Comebacks: Staying Secure in 2025

Cloud has changed the way we develop, deploy, and scale apps. Traditional perimeter and end-point security does not address the distributed and ephemeral nature of cloud and has huge blind spots for adversaries to go undetected. Active cloud risk is the most imminent threat security teams need to address. Even purpose-built Cloud Security Posture Management (CSPM) tools, relying on point-in-time assessments, need to catch up in detecting and mitigating these active risks.

This SANS Spring 2024 CyberFest keynote addresses the distinction between static and active cloud risks, common tactics used in cloud attacks, and the new 5/5/5 framework that sets a new standard in detecting, prioritizing, and responding to active cloud risks and threats. Watch it for a live discussion and real-life examples from our experts from Sysdig and Amazon.

Active Cloud Risk. How to Combat the Most Critical Threats

When deploying and operating Kubernetes, practitioners often question whether they follow security best practices and maintain effective security posture to mitigate all possible threats. For this reason, OWASP (Open Web Application Security Project) created the OWASP Kubernetes Top 10, identifying the most likely risks. The Top 10 projects are useful awareness and guidance resources for security practitioners and engineers. 

In this webinar, we’ll cover:
  -  How the OWASP Kubernetes Top 10 describes risks specific to Kubernetes platforms in order of commonality or probability. 
  -  Applying additional grouping to the risks adds value to security program work.
  -  Additional techniques, including extra technical detail and strategic guidance, are included to audit and harden your Kubernetes environments and maintain an effective security posture.

OWASP Kubernetes Top 10 Projects: What Risks You Need to Prioritize

As cloud security controls mature, a transformative shift is underway where a diverse range of security controls and configuration capabilities are converging into unified platforms and service fabrics, in addition to the core infrastructure provided by cloud providers. Solutions like CNAPP (Cloud-Native Application Protection Platform), CSPM (Cloud Security Posture Management), and CWPP (Cloud Workload Protection Platform) are now integrated to cover essential areas such as pipeline security, workload protection, cloud environment configuration, Infrastructure as Code (IaC) templates, and runtime security.

Attending this event will provide you with critical insights into how these advancements are reshaping cloud security strategies for 2024/2025 and beyond. You'll learn from industry experts about the latest features and best practices, allowing your security and cloud engineering teams to stay ahead in a rapidly evolving landscape.

Don't miss this opportunity to gain valuable knowledge, connect with thought leaders, and enhance your organization's security posture in an increasingly complex cloud environment.

SANS - Cloud Security Convergence How Controls Models for A Robust Cloud Security Stack Are Changing

Beneath the surface of the digital landscape, a growing threat is hiding in plain sight. In this revealing session, the Sysdig Threat Research Team will unmask the insidious world of ELF malware and its role in powering DDoS-as-a-Service botnets. Sysdig Threat Detection Engineer Alessandra Rizzo will take you through the inner workings of the "Rebirth" botnet, a Mirai variant exploiting vulnerabilities in cloud environments and beyond. Discover how these threats evolve, the tactics attackers use to avoid detection, and the steps you can take to protect your systems. Join us as we unveil the hidden dangers and provide actionable insights to strengthen your defenses.

Under the Mask: Unveiling ELF Malware and DDoS-as-a-Service

Organizations modernizing applications in the cloud find themselves drowning in vulnerabilities and security alerts. With too much noise and not enough time, teams need a better way to prioritize and address real risks to stay ahead of threats.

Join Sysdig for a discussion of how to boost your software supply chain security and address risk from development through production.

In this session we’ll cover:

-The latest cloud-native security risks and challenges

-How to better prioritize vulnerabilities and misconfigurations

-Using runtime signals to reduce AppSec noise up to 95%

-Detecting active cloud risk to protect against cyberattacks

-Improving outcomes with AppSec tools like Snyk, Checkmarx, and Docker

Fix What Matters First: Bridging Code and Cloud Security

Open Source

OpenAI

Cloud Security

DevOps

DevSecOps

Cloud

Secure Cloud

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Stratoshark: Revolutionizing Cloud System Call and Log Analysis

Presented by

About this talk

More from this channel