Name: Zero-day in Roundcube Webmail – Week in security
Start: 2023-10-30T16:34:00Z
End: 2023-10-30T16:34:02.000Z
Location: BrightTALK
Rating: 0

For over 30 years we‘ve helped watch over your progress, protecting it with our digital security solutions. Ours is the story of Progress. Protected. As an IT Security professional you will gain access to analysis and commentary from industry experts on the Cybersecurity front.

In the face of a cybersecurity talent shortage, it becomes increasingly difficult to improve alert triage, reduce the risk of missing critical threats, and prioritize remediation actions. To overcome this challenge, leveraging specialized services allows organizations to enhance their defense capabilities without needing additional in-house experts.

Join us for this panel discussion to learn how to effectively manage cybersecurity resources, including which services can boost your security strategy and how to evaluate service providers.

The discussion will be led by industry experts: 
Andrea Doyle, Corporate Solutions, Key Accounts Director
Daniel Navarro, Engineer
Tony Anscombe, Chief Security Evangelist

Solving the Cybersecurity Talent Shortage with Services

ESET researchers uncovered a phishing campaign, that is leveraging Progressive Web Apps to target Czech bank's clients, bypassing app installation permissions. You can find more details in Tony’s video.

PWA phishing on Android and iOS – Week in security

A Luxembourg-based company lost $60 million in one of the largest-ever business email compromise (BEC) attacks. BEC scams, where #cybercriminals impersonate executives, caused $2.9 billion in losses according to the FBI’s 2023 report.

$60M Business Email Compromise Attacks - Week in Security

Black Hat USA 2024: Cybersecurity experts from around the globe gathered in Las Vegas for this year’s Black Hat conference. Keynotes tackled election integrity and the CrowdStrike outage. 

Watch the video with Tony Anscombe for more insights!

Cyber news from Black Hat 2024 - Week in security

Ransomware headlines may grab your attention, but don't tell the whole story of today's dynamic threat landscape. ESET's 2024 Threat Report highlights telemetry data that uncovers alarming trends bypassing traditional security solutions. This webinar will delve into the data's key findings, helping you identify vulnerabilities against the latest adversaries.

We'll reveal which threats are infiltrating organizations' defenses, including:
Mobile malware capable of stealing facial recognition data
Infostealers impersonating generative AI tools
Malicious script campaigns targeting your web server security

Join us to go beyond the headlines and take action. Learn practical steps to assess security readiness and close key gaps.

Beyond the Headlines: ESET's 2024 Threat Report

Organizations using AI and automation in security cut breach costs by $2.22M, per IBM's Cost of Data Bread Report 2024 with the average cost being: $4.88M.

AI and automation reduce breach costs – Week in security

New York signs parental control of ‘addictive’ social media feeds into law. Bills signed by Kathy Hochul lets parents restrict children from suggested posts and adds limits on use of minors’ data.

New York law on addictive Social Media - Week in Security

Check out the key trends and developments that defined the cybersecurity landscape for the past 6 months. Discover the ESET Threat Report H1 2024!  From the top cybersecurity trends, and threat categories to bad actor techniques. Watch the video and read the full report!

Key trends shaping the threat landscape in H1 2024 – Week in security

Our channel ecosystem revolves around the customer, ensuring that their needs are met through ESET's global network of trusted partners. In this context, it's important to understand the various roles and emerging trends within the channel ecosystem and how they integrate into ESET's channel universe.

ESET World - Unlocking Synergy through ESET's Channel Universe

Cyberattacks can have long-term costs. Learn more about legal and financial impacts in Tony’s latest video!

The long-tail costs of a data breach – Week in security

ESET World Day 2 - As individuals and organizations, our motivation remains constant: security. We seek safety and trust in our partners. ESET embodies that trust. Discover why ESET is the vendor to rely on – today and tomorrow.

ESET World - A Story of Trust the ESET Difference

A ten-year investigation into cybercriminal activity on Linux servers

This is the story of tracking the activities of the gang behind the Ebury malware family, which compromised no fewer than 400,000 Linux servers since 2009. It is also the story of a collaboration between European and U.S. law enforcement agencies, and ESET.

ESET World - Server-Side Threats Rebooted

ESET World Day 1 - ESET experts have discovered and countered major cyberattacks, helped disrupt criminal botnets, and effectively protected billions of users worldwide. Discover how ESET Threat Intelligence can improve the security posture of your organization. Explore our new Threat Intelligence portal, with the ESET generative AI advisor which helps you respond to incidents more quickly.

ESET World - Stay Ahead of Adversaries with ESET Threat Intelligence

ESET researchers have revealed five campaigns likely orchestrated by the Arid Viper APT group, targeting Android users in Egypt & Palestine, Stay alert!

Arid Viper APT Group targeting Android users - Week in security

Day 1 of ESET World - Managed detection and response (MDR) is an industry standard, for a multitude of reasons. In this presentation you will see how ESET MDR solves the top challenges faced by organizations, and how ESET MDR ensures that users can remain protected from modern breaches which commonly lead to ransomware.

ESET World - Today's Threats Require Modern Prevention with ESET MDR

With the rise of cyber threats and ongoing cyber talent shortage continuing unabated, many organizations are turning toward Managed Detection and Response (MDR). So how can this service enhance an organization's overall security posture and improve incident response? 

In this webinar, learn about:
combatting new threats, like multi-extortion ransomware with MDR
how to leverage AI-powered threat detection and response, and human expertise, to prevent new ransomware variants
the significance of a prevention-first, holistic cybersecurity strategy

Join ESET's Chief Security Evangelist, Tony Anscombe, Security Monitoring Analyst, James Rodewald, and Engineer, Jorge Andino Jr. as they unravel the significance of an optimized solution for proactive defense.

Outsmart Cybercrime: Protection Optimized with MDR

ESET World 2024 Day 1 - Deepfakes are getting easier to create, but how can they be used in crime? Are they really the next tool in the social engineer’s toolkit? From cloned RFID cards and hacked CCTV to quality deepfakes and the spread of misinformation, Jake will uncover what is currently and technologically possible and showcase his latest antics in his unique style.

ESET World 2024 - The Rise of Clones

Ticketmaster breached! The ShinyHunters hacker group claims to have stolen data on 560M customers, allegedly demanding a $500K ransom. Watch out for security red flags and protect your credentials! Learn more in Tony’s latest video!

560 million Ticketmaster customer data for sale? – Week in Security

What happens when facial recognition gets it wrong – Week in security

Mandatory reporting for ransomware attacks? – Week in security

The who, where, and how of APT attacks – Week in security

Major phishing-as-a-service platform disrupted – Week in security

The implications of paying ransom demands – Week in security

Protecting yourself after a medical data breach – Week in security

Inside the eXotic Visit espionage campaign – Week in security

The devil is in the fine print – Week in security

Why does RDP remain an issue? – Week in security

AceCryptor attacks surge in Europe – Week in security

Healthcare still a prime target for cybercrime gangs – Week in security

APT attacks taking aim at Tibetans – Week in security

Deceptive AI and 2024 elections - This week in security

PSYOP campaigns targeting Ukraine – Week in security

Cyber-insurance and vulnerability scanning – Week in security

Ransomware payments spiked in 2023 – Week in security

Grandoreiro banking malware disrupted – Week in security

Blackwood hijacks software updates to deploy NSPX30

Why many CISOs consider quitting – Week in security

Lessons from SEC's X account hack – Week in security

Cybersecurity challenges in 2024 – Week in security

Key findings from ESET Threat Report H2 2023 – Week in security

Increase of deceptive loan apps – Week in security

Teaching appropriate use of AI tech – Week in security

Apply to become a Neanderthal - Week in Security

DP World pulls internet plug - Week in security

Spied on while reading the news - Week in security

Mozi Botnet Infects IoT Devices

Spearphishing targets in Latin America – Week in Security

Staying on top of security updates – Week in Security

DinodasRAT backdoor targets governmental entity in Guyana – Week in Security

Lazarus Attack Spanish Aerospace Company

Oil Rig and Stealth Falcon

What happens if AI is wrong? – Week in security with Tony Anscombe

Is backdoor access oppressive? – Week in security with Tony Anscombe

Check cybersecurity pre-invest – Week in security with Tony Anscombe

20k security folks in the desert – Week in security with Tony Anscombe

Evacuation of 30 000 hackers – Week in security with Tony Anscombe

Week in security with Tony Anscombe

The Winter Vivern #APT group has been exploiting a zero-day XSS vulnerability in Roundcube Webmail servers to target European governmental entities and a think tank.

Find out more in the video with Tony Anscombe.

Zero-day in Roundcube Webmail – Week in security

Information Security

Cyber Defence

Cyber Attacks

cybersecurity

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

In today’s economic climate, successful small businesses need to overcome an array of challenges. Client dependence, legal issues, small business financing… as an entrepreneur, where can you find the information you need to help inform your decisions? In the small business management community, discover how you can create a successful small business from the business plan up!

Small Business

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Zero-day in Roundcube Webmail – Week in security

Presented by

About this talk

More from this channel