Name: Cymulate Threat Research Lab Update: July 2023
Start: 2023-07-13T15:00:00Z
End: 2023-07-13T15:01:03.000Z
Location: BrightTALK
Rating: 5

Cymulate exposure management and security validation drives continuous threat exposure management programs and supports both the technical and business requirements of scoping, discovery, prioritization, validation, and mobilization.

Every day there are new CISA alerts warning us of the latest cyber threat activity. 

But how do we know if we are exposed to these new threats?  

How confident are we that our cybersecurity defenses could withstand these latest attacks? 

In this threat research webinar, Cymulate experts will dissect recent notable CISA alerts and discuss how to answer the call with confidence when asked, “Are we exposed?”. 

Attend this webinar to find out more about: 
* The challenges of emerging threats 
* Recent notable threat activity reported by CISA 
* How to answer the call with confidence 
* The solution: Don’t speculate, Simulate 
* Validating exposure to immediate threats  
* Creating attack simulations for emerging threats

CISA Alert – Is our organization exposed?

You’ve made a significant investment in cybersecurity – are you fully using your security controls? Do you know if they’re working and configured correctly? Chances are, you might not know. In this webinar, cybersecurity veterans Brian Moran and Marcel Sokolovsky discuss the challenges of optimizing security controls and addressing the gaps that security controls aren’t telling you. 

The webinar will cover: 
* Identifying and addressing configuration gaps 
* Detecting control drift and prioritizing remediation 
* Ensuring coverage against emerging threats 
* Understanding how attackers evade your controls 

Speakers: 
* Marcel Sokolovsky, security controls evangelist 
* Brian Moran, senior director of product marketing 

Don’t miss your chance to learn practical steps to validate and optimize your security controls and stay ahead of evolving threats. Discover how automation and continuous testing can bolster your defenses and improve your security posture.

What Your Controls Aren’t Telling You: Gaps, Drift and New Threats

Security operations (SecOps) is a game of continuous improvement. Threat actors and attacks constantly evolve, so blue teams must also continually enhance their processes, skills, and controls to meet the challenge.  

Many SecOps teams have adopted a proactive approach to stay ahead of today’s threat landscape with security control validation. Production safe simulations offer a realistic environment that closely mirrors production systems, replicating actual working conditions so that SecOps teams can develop more effective strategies and responses. 

Join industry leaders as they discuss this shift in SecOps strategy and highlight how automated security validation can take your SecOps team to the next level.  

Panelists include: 
* Raphael Ferreira, Cybersecurity Manager
* Markus Flatscher, Senior Security Manager, Raiffeisen Bank International AG 

Register now for an informal discussion that will cover: 
* The impact of compliance regulations on SecOps 
* How offensive security testing can improve vulnerability management 
* Strategies and tools to stay ahead of emergent threats 
* The role of SecOps in exposure management

SecOps Roundtable: Security Validation and the Path to Exposure Management

Join Senior Solutions Architect and former pen tester, Jessica Redd, and Senior Director of Product Marketing, Brian Moran, for a discussion on the evolution of offensive security testing methodologies, which have transformed from manual pen testing to automated breach and attack simulations.  

You will learn how the transition from periodic vulnerability assessments to continuous security validation provides automated testing and optimization, so your controls can prevent or detect the next threat.  

During this webinar, we will cover:  
*  The limitations of traditional vulnerability assessments and penetration tests 
* How breach and attack simulation automates and enhances security testing  
* Best practices for implementing continuous security validation  
* Real-world use cases demonstrating the effectiveness of continuous control validation in protecting critical infrastructure  

Don’t miss this opportunity to learn first-hand insights on how to evolve your offensive security practices.

Offensive Testing Roadmap: Moving from annual pen tests to continuous control validation

Join us for an insightful webinar where we explore the evolution of offensive security testing methodologies, from traditional penetration testing to modern Breach and Attack Simulation (BAS) tools. Learn how organizations are transitioning from periodic vulnerability assessments to continuous security validation, ensuring their defenses remain resilient in the face of evolving threats. 

This session will delve into: 

The limitations of traditional vulnerability assessments and penetration tests. 
How Breach and Attack Simulation automates and enhances security testing. 
Best practices for implementing continuous security validation. 
Real-world use cases demonstrating the effectiveness of continuous control validation in protecting critical infrastructure. 

Whether you're a cybersecurity professional seeking to enhance your organization's security posture or a decision-maker aiming to optimize your security investments, this webinar will provide valuable insights to help you stay ahead in the dynamic threat landscape. 

Secure your spot today to learn how to evolve your offensive security practices!

It’s 2024 – why do you still rely on manual pen testing to validate your security posture? It’s labor-intensive, doesn’t reveal real-time vulnerabilities at scale, and typically happens only once or twice a year. This lack of automation combined with infrequent testing windows makes it impossible to have a clear and up-to-date understanding of the high-risk attack paths, vulnerabilities and misconfigurations happening inside your IT environment right now.  

There’s got to be a better way. And there is. But first, it’s time to stop waiting for Red Teams to take the first step when it comes to validating an organization’s security posture. Blue Teams can take matters into their own hands. By using their own managed security controls, they can do things like create rules in their EDR and WAF to block exploitation attempts from a known vulnerability. 

In this session, we’ll talk about the benefits and practical application of automatic, continuous security control testing. And how shifting the power dynamic between Blue and Red Teams can lead to a more optimized approach to security. One that can be automatically built into an existing environment and yield results such as automated testing, continuous validation and coverage at scale.  

Finally, we will show real-world examples of threats vs. actual attack paths, vulnerabilities vs. controls, and practical steps to remediation.

Hey, Blue Teams: Stop Waiting for Pen Tests to Find Gaps. It’s Time to Take Control of Your Offensive Testing.

Security and exposure validation has become a critical component for today’s cybersecurity strategy.

Join Cymulate in this webinar as we discuss The Principle of Security Validation and explore the best practices established by Cymulate to:

- Validate Security Controls
- Validate Threats
- Validate Operational Response

During this session, you will gain practical guidance for the continuous testing and validation of 12 key areas of your cyber defenses. The Cymulate platform captures a decade of red team / blue team experience in a comprehensive suite of attack simulations based on real threat actor scenarios and campaigns that can be used to:

- Validate and optimize your security controls
- Test your resilience against the latest emergent threats
- Meet the latest compliance regulations including PCI and DORA
- Conduct full kill-chain exercises to understand your security operations response

The Principles of Security Validation (IST / SGT)

Security and exposure validation has become a critical component for today’s cybersecurity strategy. 

Join Cymulate in this webinar as we discuss The Principle of Security Validation and explore the best practices established by Cymulate to: 

   - Validate Security Controls 
   - Validate Threats 
   - Validate Operational Response 

During this session, you will gain practical guidance for the continuous testing and validation of 12 key areas of your cyber defenses. The Cymulate platform captures a decade of red team / blue team experience in a comprehensive suite of attack simulations based on real threat actor scenarios and campaigns that can be used to: 

   - Validate and optimize your security controls 
   - Test your resilience against the latest emergent threats 
   - Meet the latest compliance regulations including PCI and DORA 
   - Conduct full kill-chain exercises to understand your security operations response

The Principles of Security Validation

Kubernetes has become the de facto standard for deploying applications in the cloud as organizations run business-critical applications on Kubernetes K8 clusters hosted by leading cloud services providers Microsoft Azure, Amazon AWS, and the Google Cloud Platform (GCP). 

In this research update, the Cymulate Threat Research Group decided to put the native security tools of each provider to the test against the types of attack techniques being used by threat actors to exploit K8 clusters. The native cloud security tools included: 
* Azure Cloud Defender  
* AWS GuardDuty  
* GCP Command Center 

The results of these security validation tests against the above native cloud security tools raise some concerns that your K8 cluster could get KO’d by a threat actor, which we believe is NOT OK. 

To find out more, attend this informative session to learn about: 
* The Cymulate Kubernetes research project 
* Research results and detection rates for native cloud security tools 
* Overview of the research findings 
* Cymulate recommendations to better secure Kubernetes environments

Research Webinar: Native Cloud Defenses vs Kubernetes Attacks

As business pressures increase, CISOs face an alarming disconnect from executive teams. WSJ recently published research highlighting that communication is at the root of the problem: 58% struggle to make the technical understandable to senior leadership, and 82% feel the need to sugarcoat their security reports in front of the board.  

Cybersecurity has moved to the board room requiring CISOs to communicate with executive teams and answer the questions: 1) How secure are we? 2) Are we exposed? and 3) How bad is it? 

Join top cybersecurity leaders as they discuss how security and exposure validation provides the proof and evidence to measure and baseline cyber resilience so CISOs can report on their company’s cyber risk in quantifiable terms and confidently advocate for continued investments and improvements. 

Panelists include: 
* Dan Baylis, CISO, LV= 
* Phillip Heyns, Global Cybersecurity Architecture & Engineering Manager

Register now for an informal discussion that covers:  
* How the role of CISO is changing in an ever-expanding, higher-stakes attack landscape 
* CISO communication struggles  
* Why insights and metrics are vital for reporting on their company’s cyber risk in quantifiable terms 
* The role of security and exposure validation in quantifying practical risk exposure to promote data-driven conversations about security performance and ROI

CISO Roundtable: Automated Security Validation & Metrics of Cyber Resilience

Regardless of the amount of efforts and resources invested, organizations never seem to be closing the gap between the number of existing and emerging vulnerabilities in their environment and the number of remediated ones. But how can you know if you are exposed to exploitable vulnerabilities?

In this Live Demo, we will show how Cymulate delivers Attack-Based Vulnerability Management that is a direct result of production–safe attacks launched proactively in your organization’s environments.

Live Demo : Vulnerability prioritization

Proactively validate your enterprise's SIEM and SOC by launching controlled attacks in a quick, simple, and scalable manner.

Live Demo - SIEM & SOC Validation

Just as application development requires quality assurance and regression testing to deliver usability and function without defects, cybersecurity demands its own quality program to maintain strong defenses. Threats evolve, and your attack surface sees continuous change, so security teams face a constant challenge to identify weaknesses, prevent drift, and strengthen overall resilience. 

Join this webinar to learn how exposure management evolves security operations with continuous security and exposure validation that: 
- Test controls and response capabilities 
- Correlates vulnerabilities, weaknesses, and gaps with active threats and mitigating controls 
- Benchmarks cyber resilience and strengthens your overall security posture.

Security Validation: Your Security Program Needs QA & Regression Testing

Security leaders recognize that the pattern of buying new tech and the frantic state of find-fix vulnerability management is not working. Rather than waiting for the next big cyberattack and hoping they have the right defenses in place, security leaders are now more than ever implementing a proactive approach to cybersecurity by taking action to identify and address security gaps before attackers find and exploit them. 

Cymulate presents its 2024 State of Exposure Management & Security Validation report with key insights gathered from more than 500 customers in the practice of exposure validation correlating vulnerabilities, threats and controls. 

Join this webinar to learn more about the key findings and participate in the discussion of the report and its key findings in the areas: 
- Top threats, vulnerabilities targeted & cyber resilience 
- Most common security weaknesses and gaps from poor configuration 
- Security control effectiveness

Cymulate Research: 2024 State of Exposure Management & Security Validation

Today’s cloud security recognizes that breaches are inevitable. 

You need defenses to identify attacks accurately and contain the threat. That’s the role of cloud detection engineering. Join this webinar to dive into real-world scenarios that improve your cloud security posture through applied concepts of the assumed breach mindset that combines visibility, advanced detection analysis, robust identity and access policies, segmentation, and continuous security assessments to validate controls and responses. 

Register now and explore the concepts of detection engineering that you can apply to your cloud security program.

Cloud Detection Engineering: Adopting an Assumed Breach Mindset - IST

Cloud Detection Engineering: Adopting an Assumed Breach Mindset

December's Threat Research Lab Update explores well-understood attack tactics and methods that are getting new life breathed into them in current attack campaigns.

December Threat Research Lab Update

The cybersecurity community identifies and tracks new threat activity every day. Each new activity can have different levels of priority, affect different systems, and require different solutions. To stay up to date on the current threat landscape, check out our monthly Threat Research Update webinar. Our dedicated Cymulate Threat Research Group monitors and collaborates with the industry to prepare for and test emergent threats. These monthly updates are a valuable resource for security professionals who need to keep track of the latest threats. 

This month’s deep dive will go into the recent ransomware activity regarding MOVEit Transfer 0-day (CVE-2023-34362) and GoAnywhere MFT, which is a CL0P ransomware from an affiliate called Lace Tempest. 

Attendees will gain valuable insights of:  

- The phases of intrusion  
- The Threat Actor Profile (Who did it, motivations, origin, why they choose the targets)   
- What happened and how the actor propagated   
- How Cymulate detected the propagation and replicated it   
- What to do in the future

Cymulate Threat Research Lab Update: July 2023

Cyber Attacks

Cyber Resilience

Cyber Security

Security Intelligence

Ransomware

Threat Detection

Threat Assessment

Threat Management

Threat Hunting

Malware

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Cymulate Threat Research Lab Update: July 2023

Presented by

About this talk

More from this channel