Name: Secure from the core: Applying key security lessons to software supply chains
Start: 2023-10-01T10:53:00Z
End: 2023-10-01T10:53:14.000Z
Location: BrightTALK
Rating: 0

Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats. Mandiant is now part of Google Cloud.

Join Mandiant's leading experts from Incident Response, Strategic Services, Cyber Threat Intelligence, and Security Transformation for a unique webinar that dissects the ransomware threat landscape from all angles.

Gain invaluable insights into:

- The Attacker's Perspective: Our Intelligence team reveals the latest TTPs (Tactics, Techniques, and Procedures) employed by ransomware groups, their motivations, and evolving attack patterns.

- On-the-Ground Response: Hear firsthand experiences from our Incident Response team, who will share lessons learned from the front lines of ransomware attacks and discuss strategies for effective containment and recovery.

- Proactive Defense: Our Strategic Services experts will guide you through proactive measures to bolster your organization's defenses and reduce your ransomware risk profile.

- Building Resilience: The Security Transformation team will delve into building a robust security posture and implementing effective remediation strategies to minimize the impact of a ransomware attack.

This webinar is a must-attend for CISOs, security professionals, IT leaders, and anyone responsible for protecting their organization from the growing threat of ransomware.

Deconstructing Ransomware: A Mandiant and Google Threat Intelligence perspective

Cyber threats are constantly evolving. Learn how to stay ahead of them in 2025 with security expert Jamie Collier.

Join this deep-dive session based on the Cybersecurity Forecast 2025 report, where we will cover key trends and insights to help strengthen your cyber defenses in the year ahead, including:

*Attacker use  of AI
*The evolving threat landscape from Russia, China, Iran, and North Korea
*Ransomware and multifaceted extortion as the most disruptive form of cyber crime
*The growing threat of infostealer malware

Google Cloud EMEA Cybersecurity Forecast 2025

In einer Welt, in der kritische Infrastrukturen immer stärker von digitalen Technologien abhängig sind, wird die Cybersicherheit von OT- und ICS-Systemen zu einem entscheidenden Faktor. Wir möchten Sie daher herzlich zu unserem Webinar einladen, in dem wir unter anderem die Bedeutung von Red Teaming als Teil einer ganzheitlichen Sicherheitsstrategie erklären.

Termin: Mittwoch, 4. Dezember, 10:00 Uhr

Themenschwerpunkte:

- Was ist industrielle Cybersicherheit und warum ist sie so wichtig?
- Welche Arten von OT-Angriffen gab es in der Vergangenheit?
- Vor welchen Herausforderungen steht die industrielle Cybersicherheit heute?
- Welche Lösungen und Best Practices gibt es zum Schutz von OT/ICS-Systemen?
- Welche Rolle spielt Red Teaming in einer umfassenden Sicherheitsstrategie?

Gemeinsam analysieren wir die Herausforderungen der industriellen Cybersicherheit und zeigen Ihnen konkrete Lösungsansätze auf.

Industrielle Cybersicherheit: Red Teaming als Teil einer ganzheitlichen Sicherheitsstrategie

Password leaks and data breaches are increasing, exposing user credentials to cybercriminals.

Protect your users and your business with proactive password leak detection.

Register now for this webinar to:
> Understand the scale of password leaks and how they're exploited.
> Discover how reCAPTCHA password leak detection provides insights into leaked credentials  before they're misused.
> Learn how to set up password reset and other mitigation steps empower users to protect their accounts immediately.

Register now to learn how to safeguard your users and business by implementing proactive password security measures that detect and respond to threats.

Beyond Bots: Protecting Your Users from Password Leaks with reCAPTCHA

Mandiant Managed Defense presents a quarterly webinar series, "Tales from the Trenches," to help you navigate the ever-evolving threat landscape. Our security experts will dive into the latest malware and attack trends they've encountered in the previous quarter. You'll gain valuable insights into how these threats were detected, along with actionable advice to strengthen your own defenses.
In the second installment of the series, Managed Defense Consultants will detail findings from July through September 2024.

Tales from the Trenches: Malware and attack trends from Managed Defense, Q3 2024

A critical zero-day vulnerability in FortiManager appliances has been exploited in the wild, leaving organizations vulnerable to data breaches and lateral movement. In this webinar, Mandiant experts dissect the exploitation tactics, techniques, and procedures (TTPs) of the threat actor we track as UNC5820.

Gain critical insights into:
*Exploitation Details: Understand how UNC5820 leveraged CVE-2024-47575 to compromise FortiManager appliances and exfiltrate sensitive configuration data.
*Threat Actor Profile: Uncover the characteristics and potential motivations of UNC5820 based on our ongoing investigation.
*Mitigation Strategies: Learn practical steps to protect your organization from this vulnerability and similar attacks.
*Detection and Response: Discover how to leverage threat intelligence and hunting techniques to identify and respond to this threat.

Don't miss this opportunity to gain expert insights and strengthen your defenses against this emerging threat. 

Register today!

FortiManager Zero-Day: Intel for Actionable Mitigation Strategies

Account takeover attacks are escalating, leading to financial losses, damaged reputations, and eroded user trust.  

Learn how reCAPTCHA can strengthen your defenses against account takeovers, protecting your users and your platform's integrity.  

Register now for this webinar to:
> Uncover the latest tactics used by fraudsters to hijack user accounts.
> Explore how reCAPTCHA’s multi-layered defense identifies and blocks suspicious login attempts.
> Understand how real-time threat detection and response helps you stay ahead of emerging fraud trends.

Register now to learn how to safeguard your users and business from account takeovers by proactively detecting and stopping attacks.

Beyond Bots: Protect your business from account takeovers with reCAPTCHA

Security Command Center, The industry’s first multi-cloud risk management solution that includes built-in response capabilities so you can take action on the risks that matter most - all supercharged by Mandiant expertise and Gemini AI at Google scale. 

In this webinar, learn how you can:

- Strengthen Google Cloud protection: Leverage 100+ specialized detectors and controls integrated into the cloud infrastructure, providing unmatched security visibility and control

- Find your greatest cloud risks: Use our one-of-a-kind virtual red teaming to continuously predict where and how external attackers could strike

- Streamline incident response: Resolve cloud security issues directly by automatically grouping security issues and applying remediation playbooks to improve your risk posture

- Find new and novel attacks with the latest threat intelligence: Get Mandiant frontline threat intelligence integrated so you can keep your cloud security defenses up-to-date

From Reactive to Proactive: Find and fix cloud security issues with Security Command Center

Account-based fraud, such as credential stuffing and account takeover, is a growing threat to businesses and their customers.

Learn how reCAPTCHA can be your first line of defense, protecting your users and your bottom line.

Register now for this webinar to:
> Discover the latest account-based fraud tactics and their potential damage.
> Learn how reCAPTCHA can stop unauthorized access and protect your users' accounts.
> Understand best practices for implementing reCAPTCHA to enhance security without compromising user experience.

Register now to equip yourself with the knowledge to combat account-based fraud effectively and safeguard your users' accounts.

Beyond Bots: Shielding Your Business from Account-Based Fraud with reCAPTCHA

Gli attacchi ransomware sono tornati prepotentemente alla ribalta, sfruttando strumenti comuni e insospettabili come software di accesso remoto e vulnerabilità note. Sorprendentemente, le statistiche rivelano che gli exploit hanno superato il phishing come principale metodo di intrusione nelle reti aziendali. Conoscere le nuove strategie adottate dai criminali informatici è fondamentale per le aziende e i loro Cyber Defense Center, che possono così indirizzare gli investimenti in sicurezza e implementare un monitoraggio mirato per individuare tempestivamente le minacce ransomware.

Ransomware Landscape - Il punto di vista di Mandiant

Dans un monde où les infrastructures critiques dépendent de plus en plus des technologies numériques, la cybersécurité des technologies opérationnelles (TO) et des systèmes de contrôles industriels (SCI) est un enjeu crucial. Nous sommes ravi(e)s de vous convier à notre webinaire sur La cybersécurité industrielle et ses enjeux le jeudi 12 septembre à 13 heures. 

Notre présentation abordera les points suivants : 

- Définition et importance de la cybersécurité industrielle 
- Panorama des attaques TO passées 
- Enjeux et défis de la cybersécurité industrielle 
- Solutions et bonnes pratiques pour protéger les TO/SCI 
- Ensemble, nous allons démystifier la cybersécurité industrielle et comprendre ses enjeux.

La cybersécurité industrielle et ses enjeux

Learn how you can quickly and easily build applications in environments with predefined controls and guardrails to meet global regulatory requirements and maintain digital sovereignty. In this session, you’ll hear about the wide variety of options available that allow you to align cloud controls with risk and regulatory mandates worldwide.

The power of choice: Addressing diverse global regulatory requirements on Google Cloud

The key to maintaining a strong cloud security posture is to build from a robust foundation of baseline security controls. In this session we will highlight our latest innovations in IAM. Join us and learn how to enforce the principle of least privilege for your identities using Privileged Access Management and how to mitigate data exfiltration risks with Principal Access Boundary.

Security foundations: What’s new in Identity and Access Management

Browsers are no longer just a portal to the internet, they are the new endpoint where almost every high-value activity or interaction in the enterprise takes place. In this session, learn how you can create a new nexus of security, privacy, control, and visibility for users on managed and unmanaged devices using Chrome Enterprise.

Simplifying and strengthening endpoint security

Is clinging to the "safe" choice of legacy productivity tools actually putting your organization at risk? We believe there's a better way: Google Workspace's cloud-first architecture minimizes security risks by eliminating data storage on user devices, dependence on desktop apps, and on-premises infrastructure.

At the breaking point: Is your work email safe against ransomware and state-sponsored attacks?

Major shifts in the SIEM market are driving security operations teams to migrate from legacy to modern platforms. In this session, Etsy will share best practices from its journey to fast and effective migration and SecOps modernization.

Etsy and the art of SIEM Migration

Cyber attacks are inevitable. When they happen it’s important to stay calm and have a plan. For many that plan is to enlist help from outside the organization. Join Jibran Ilyas, a seasoned security consultant and incident response expert as he dissects the strategies his team employs in recent high profile breaches and how the threat intelligence is applied in investigations to speed up analysis and for swift containment and remediation. This session is essential for anyone seeking to strengthen their incident response capabilities and safeguard their organization against the ever-evolving landscape of cyber threats.

The symbiotic relationship between incident response and threat intelligence

The practice of security in highly dynamic cloud environments begins by discovering where you are most vulnerable to attack and identifying high-value resources that could be exposed to adversaries. Google Cloud Security advancements help pinpoint the risks and vulnerabilities that matter most so you can directly respond and reduce exposure. Join this session to learn about the latest technologies that can help keep your multi-cloud environment safe.

The indispensable technologies for reducing cloud risk

F5 Automated Defense for application security

From vulnerability to resilience: A story of auto-remediation with SCC

Supercharge security with generative AI

Global compliance without compromise:Running regulated workloads on Google Cloud

Pinpointing and mitigating cloud security risks

Enabling business success by reducing cyber exposures

Threat intelligence briefing with Mandiant

The Defender’s Advantage for cloud

Google Cloud Security Summit 2023: Drive security transformation and innovation

Software supply chain attacks are on the rise. In this session, we’ll explore the most common types of software supply chain attacks and provide an overview of the risks they pose to businesses. We’ll also discuss best practices for securing your software supply chain, such as implementing risk assessment and management processes, establishing strong security controls, and building a culture of supply chain security.

Secure from the core: Applying key security lessons to software supply chains

Cloud Adoption

Cloud Security

Cloud Service Providers

Supply Chain

Threat Assessment

Threat Detection

Threat Analysis

Threat Defence

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Secure from the core: Applying key security lessons to software supply chains

Presented by

About this talk

More from this channel