Name: Referral Logs: The Secret Weapon to Combat Phishing Attacks (Part 2)
Start: 2023-06-27T17:00:00Z
End: 2023-06-27T17:00:40.000Z
Location: BrightTALK
Rating: 4.5

Thought provoking webinars featuring cybersecurity subject matter experts discussing recent trends on generative AI,  information security, phishing attacks, threat intelligence, large language models, trademark infringement, online scam and fraud, SecOps excellence, dark web insights, brand protection, and more!

The channels is educational for for CIOs, CISOs, S/VPs, Directors, Managers, Architects, Engineers, SecOps and Analysts in Security and IT. 

Election years always introduce a variety of new online scams and potential fraud to be aware of as a consumer. The 2024 US Presidential Election is no exception: this year we’ve already seen AI-driven phishing scams, deep-fake videos and images, and foreign threat actors targeting the US election; all highlighting how the risk of phishing and fraud tactics targeting voters and the electoral processes is increasingly prevalent. 

Join us for an in-depth exploration of the critical cybersecurity threats facing the 2024 US Presidential Election, including election data the Bolster’s Research team has collected into phishing domains and international threat actor groups. Our panel will provide insights into identifying, combating, and mitigating these threats, and answer your questions surrounding election fraud. 

Join us Wednesday October 9th to discuss the election data and fraud trends we are seeing, including: 
- Nation-state threat actors are launching US presidential related phishing attacks, with China, Russia and Iran driving 75% of the activity. 
- A deep dive into the threat actor groups targeting the US, including common aliases and methods of attack associated with each group. 
- The sharp increase in domains targeting voters, that include keywords such as “kamala”, “trump”, and “election”. 

Register today!

Guarding the Ballot: Uncovering Phishing and Fraud Tactics Targeting the 2024 Presidential Election

Discover the latest applications of generative AI in effectively detecting and eradicating phishing and scam websites. The internet is vast and full of malicious threats targeting your organization through multiple channels. With the new developments in AI, it is now possible to enable the detection of hacker activity and remove any malicious content at the source, wherever it may be on internet. Watch this demo to see how Enterprises today are using genAI to scale up and down the removal of malicious content and thus provide a safe online experience for their employees, partners, and customers.

Using AI to Detect and Eradicate Phishing Threats at Internet Scale

Back in January, we brought you the latest in phishing and scam trends based on 2023 data. Stay in the loop with the next edition of our phishing insights series, highlighting key trends from 2024 so far.  

Phishing and scam trends are constantly evolving to reflect new technology accessible to hackers, as well as consumer interest and spending habits. Bolster has tracked phishing and online scam data across the web, social media, mobile app stores, and the dark web since launching our products in 2019, and are continuing to share our insights to help elevate the global digital ecosystem against cyber attacks.  

Join our webinar on Thursday August 1st to learn: 
- How the 2024 US Presidential Election is impacting phishing attacks 
- The mid-year updates on daily phishing site frequency, geo-specific scam data, and industry phishing trends 
- How attackers aren’t limiting phishing schemes to one channel vector, but instead how multi-channel attacks are the name of the game 
- What the Bolster Research Lab predicts for the rest of 2024 

Register today to join our free event!

2024 Phishing and Scam Trends: Key Data from the First Half of the Year

Executive impersonation attacks enable cybercriminals to exploit the authority and trust associated with high-level executives to deceive employees and facilitate fraudulent activities. One study found executive impersonation attacks increased by 131% between Q1 2020 and Q1 2021, costing enterprises around $1.8 billion in damage. 

From fake recruitment campaigns, to texts from company leaders looking for an “urgent favor”, executive impersonations play on real human emotion, often mimicking a conversation a victim might really expect from an executive or employer. This webinar aims to shed light on the alarming rise of executive impersonation attacks and provides businesses with actionable strategies for detection and mitigation. 

Join us on July 23rd to hear from our experts in scam detection to learn:  
- How to identify executive impersonation attacks targeting your business and consumers 
- Tips for quick remediation of executive impersonation attacks 
- Real-world stories from Bolster customers on impersonation scams they experience 
- How to monitor for and manage executive impersonations in the Bolster platform 

Register today!

Master of Disguise: How to Identify and Remove Executive Impersonation Scams

Business Email Compromise (BEC) attacks continue to be a significant and evolving threat to organizations of all sizes. These attacks often involve impersonating high-level executives, vendors, or trusted contacts within an organization to manipulate recipients into complying with fraudulent requests, including transferring funds, sharing sensitive information, or taking actions that benefit the attackers. 

 According to Gartner “73% of organizations reported at least one BEC attempt in 2023, with financial losses estimated by the FBI at $2.9 billion”. BEC scams and executive impersonation attacks are becoming more realistic and human-centered, making them increasingly difficult for employees to identify. Businesses need to have multi-channel protection measures in place to proactively identify early indicators of BEC attacks, and stop them before they hit inboxes. 

This webinar aims to explore the anatomy of a BEC attack by diving into the early indicators that can help organizations identify and mitigate these threats effectively. Join Bolster leaders as they discuss: 
- The 5 most common types of attacks, including fake invoices, account compromise, and more 
- The attack sequence of a BEC attack and why they are so effective 
- Where in the attack sequence you can add security measures to mitigate risk 
- How to stop these attacks at the source  

Register today to gain valuable insights into the best mitigation strategies for combatting BEC attacks. With the right AI-powered detection, your business can prevent financial and reputational impacts of BEC attacks targeting your consumers, employees, and prospects.

Anatomy of a BEC Attack & How to Stop at the Source

When your team discovers an app impersonating your business, or a website pretending to sell your products, it's your top priority to take down the malicious content. Dealing with various hosting providers can become a time-consuming, tedious process if the right technology isn’t utilized, resulting in slower takedown speeds and more expansive attacks across multiple channels. 

In this webinar, we discuss how we have trained and deployed state-of-the-art Security Operations co-pilot here at Bolster to elevate the takedown process for our customers. These models plug into our infrastructure on multiple levels, and fully automate our workflows from detection and monitoring, through takedown, based on years of takedown experience.  

Join us to hear from our Bolster Machine Learning Engineer Adithya Singh on how to integrate leading automation and LLM solutions like Bolster’s co-pilot into software pipelines to better protect your business, including:  

- Bolster’s state-of-the-art co-pilot, highlighting automated non-API based takedowns to facilitate the takedown process with registrars and hosting providers. 
- Real-world tips for utilizing state-of-the-art generative AI-based LLM to eliminate the need of any human intervention in takedowns. 
- How Bolster has simplified the training and testing of our models with HuggingFace’s Transformer API.  
- The explosion on the Natural Language Processing landscape, our predictions for the future, and how Bolster is harnessing this technology. 

Join us for this live discussion!

Fly Through Phishing Takedowns: How CoPilots Protect From Multi-Channel Attacks

Join us in this informational webinar where we cover 5 easy ways you can integrate Large Language Models (LLMs) in your current phishing detection strategy. Adithya Singh, Machine Learning Engineer at Bolster, will explore the practical applications of Large Language Models (LLMs) in enhancing security measures within your organization. These state of the art have optimized Bolster’s brand detection, takedown workflows and computer vision metrics. We discuss how Bolster has utilized LLMs to enhance security against phishing attacks and typosquat scams. Also, find out new upcoming ways Bolster will be using LLMs in 2024 to enhance your cybersecurity. 

In this session, you will learn about: 
- LLMs in brand detection 
- Webpage Intent detection 
- The SecOps Copilot 
- LLMs in threat hunting 
- Full threat detection with LLMs

5 Easy Ways to Use LLMs to Better Detect Phishing Attacks

The dark web has always been a troublesome place for cybersecurity leaders; but it's important now more than ever to monitor the dark web to identify threats targeting your business. From credit card information, to stolen credentials, to personally identifiable data (PII) on your customers and employees, any amount of information is bad when found to be in the hands of threat actors. 

With proper dark web monitoring technology and resources in your toolbox, your business can quickly identify risks, prioritize the biggest threats, and take steps to remediate before risks result in data breaches or other cybersecurity incidents. Join us on Thursday March 28th at 11am PST/2 pm EST for a live discussion on dark web monitoring success with our Bolster experts. 

In this webinar, Bolster’s VP of Product & Strategy Alain Mayer will discuss how to effectively protect your business on the dark web, including: 

- What trends we are seeing on the dark web in 2024 
- How Bolster customers are monitoring the dark web, what’s working and not working 
- What changes we can make to our dark web monitoring strategies to combat attacks 
- What steps to take when data is discovered on the dark web 
- A demo of Bolster’s AI-driven Dark Web Monitoring platform (including some new updates)

5 Steps to Successful Dark Web Monitoring for Real-World Threats

Join us as we dive into Bolster’s annual report, “2024 State of Phishing and Online Scams”, where we review the key findings from our Bolster threat research team. In this exclusive webinar, Abhilash Garimella, Head of Research at Bolster, sits down with Monnia Deng, Head of Marketing at Bolster, as they talk through research methodology, key insights, and never-before-seen phishing kit analysis that was uncovered this past year.

In this exclusive sit down, expect to get answers to the following questions:
• How has this past year’s volatility in the financial markets affected phishing techniques?
• What can organizations across different verticals expect month to month? 
• How the infrastructure to the phishing attacks have shifted? 
• What are the most common types of attacks and the best ways to mitigate? 

Don’t miss this first-hand conversation between the authors of the “2024 State of Phishing and Online Scams” report as they reveal top emerging threat vectors and attack techniques utilized by online scammers, as well as the best ways organizations can protect themselves.

2024 State of Phishing and Online Scams: Key Findings

Vision Transformers are quickly emerging as the top method in solving computer vision tasks for anti-phishing use cases due to the immense success of transformers in the NLP domain. For the longest time, CNNs and hashing systems have been go-to methods to solve image classification problems. However, many limitations of these methods have given rise to powerful vision transformers like SWIN which is taking the field of computer vision by storm. 

Join us as we do a technical deep dive into how image similarity search to solve image classification and remarkable capabilities of SWIN transformers, which leverage the power of self-supervised learning and visual recognition to identify sophisticated phishing campaigns.  

Adithya Singh, Machine Learning Engineer at Bolster, will discuss how SWIN transformers can be used for:  
- Analyzing complex visual cues for threat categorization  
- Detecting subtle manipulations in the visual data 
- Distinguishing with high fidelity legitimate websites from malicious ones;  
- and being added to your existing tools for phishing and scam detection

Sink or SWIN? Image Similarity Search with ViT to Stop Phishing Attacks

Struggling with malicious or suspicious domains mimicking your brand and targeting your customers and employees? Join our master class where Bolster covers delves into in-house malicious domain takedowns and best practices and helpful tips. 

In this webinar, you will learn all the best tips and tricks to take down domains like a pro! Femi Igberase, Principal Solutions Engineer at Bolster, will share how to develop an In-house takedown strategy, tools and techniques for investigation, legal considerations, effective takedown techniques, and more. You will get firsthand demonstration on: 

• Building the takedown strategy tailored to your organization’s needs
• Leveraging the tools and techniques used in the investigation and evidence gathering process
• Understand the legal considerations and navigate jurisdictional challenges effectively
• Using proven takedown techniques and best practices for successful takedowns

Mastering In-House Malicious Domain Takedowns: Strategies and Best Practices

Along with the new year, it’s time to level up your cyber defense strategies with the newest developments in AI technology as it pertains to security use cases. GPTs (Generative Pre-Trained Transformers), a part of Artificial Intelligence (A.I.), are creating new problems for security practitioners and the battle against the evolving surging phishing threats. To combat against these evolving threats aided by A.I., security practitioners need to get wise about the new trends in digital fraud.   

In this webinar, we’ll dive into new hacking tools that leverage GPTs, and their effectiveness at taking down traditional security defenses. From conversational A.I. that provides hacking aid, to A.I. that autonomously creates malware, GPT-based hacking tools are gaining rapid popularity (and for good reason). 

Register for the webinar to learn: 
- Our predictions for the evolving use of A.I. for digital fraud 
- The ethical concerns surrounding these new GPT tools 
- What businesses can do to mitigate novel digital attacks arising in 2024

2024 Trends for GPTs in Digital Fraud

The holiday season is upon us, and unfortunately that means so are the phishing and scam attacks. Hackers utilize the heightened consumerism and deal-centered shopping days to target unsuspecting customers and brands. Our Bolster Research Team is back for the second year in a row to discuss this year’s trends, and help you protect your digital assets. 

2023 Has been quite the year for scammers targeting the retail industry; we uncovered one of the largest brand impersonation attacks towards large retail companies earlier this year, and the trend has continued since. Join us for our upcoming webinar to hear the latest on phishing and scam attacks targeting businesses, including: 

- The most common holiday scams in 2023 
- Real-world examples of phishing scams targeting brands (and lessons learned from the attacks) 
- How to safeguard your business against holiday-specific scams, including phishing sites, gift card scams, fake sales, and more 
- Actionable steps to respond to an active threat against your business

Protecting Your Customers (& Your Business) from Holiday Scams: The 2023 Edition

From fake accounts to elaborate scam campaigns, Roblox faces a diverse group of cybersecurity threats targeting their popular online platform. As a video game developer with digital currency translating to real-world money, Roblox must constantly stay vigilant against social media impersonation, web spoofing, and other scam tactics that aim to steal sensitive financial data from their users.  

Roblox relies on Bolster to combat an evolving suite of cybersecurity threats, with automated detection and takedown technology that works across social, web, and app stores. In this webinar, hear from Roblox’s team of cyber risk professionals on how they’ve reduced the online attack surface for their customers.  

In this panel discussion, learn:  
1. What types of online threats Roblox experiences 
2. How Roblox protects the integrity of their gaming network 
3. What are best practices for reducing the attack surface 
4. How Roblox integrates digital risk protection into their environment

Out Playing the Hackers: How Roblox Protects Their Brand from Impersonations

In this webinar, we discuss how we have trained and deployed state-of-the-art large language models from the BERT and GPT families in the Bolster Security platform to elevate the efficacy of protection we deliver to our customers. These models plug into our infrastructure on multiple levels, and fully automate our workflows from detection and monitoring, through to takedowns. Our host will take you through the performance of these large language models on standardized metrics. Furthermore, we will expand on the ideas of strategies to integrate LLMs into software pipelines like zero-shot and fine-tuning based learning. 

In this webinar, you’ll hear from the Bolster threat research team on: 

- Our revamped intent detection module, which now integrates Convolutional BERT LLM using the revolutionary Transformer architecture. 
- How Bolster has simplified the training and testing of our models with HuggingFace’s Transformer API. 
- The explosion on the Natural Language Processing landscape caused by Generative AI based LLMs like GPT and LLaMa and how Bolster is harnessing this technology. 
- The all-new automated takedowns for tackling fake mobile app phishing attacks, which deploys a state-of-the-art generative AI-based LLM to eliminate the need of any human intervention in takedowns. 

Join us Tuesday, October 17th at 11am PST/2pm EST

Leveraging LLMs for Phishing Detection and Takedowns

From typosquat domains to calculated phishing attacks, it’s a headache for businesses to manage the evolving world of digital risk from the open web to the dark web. However, with access to billions of data points combined with powerful machine learning, organizations can find ways to protect their online brand from malicious actors looking to harm it.  

Join us for our fireside chat with Bolster customer Mercury Technologies, a banking service for startups, to hear how they’ve utilized the Bolster web, social media, and dark web monitoring capabilities to mitigate risks targeting their banking business on all parts of the Internet. In this webinar, you’ll hear from Mercury Information Security Architect Sebastian Whiting and Bolster Chief Technology Officer Shashi Prakash on Mercury’s experience using Bolster to combat digital threats, including: 

1. Identifying the misuse of their brand across the web 
2. Combating phishing scams omnichannel 
3. Getting visibility into dark web activities against their brand  
4. Responding to digital threats and strengthening the Mercury brand

Brand Protection and Dark Web Monitoring: A Fireside Chat with Mercury

Bolster’s exclusive research uncovered a massive brand impersonation scam campaign this past year. Bolster’s threat research team discovered this campaign, which specifically targeted 100+ popular clothing, footwear, and apparel brands, including Nike, Puma, Adidas, and many others, caused significant damage. 

Join us in this webinar to learn how our research team uncovered this brand impersonation campaign, the threat actors and their tactics behind it, and ways to protect your organization from similar phishing campaigns. In this webinar, Bolster will do in depth into: 

• How we uncovered an extensive network of fraudulent websites with over 3,000+ active domains
• When the campaign started and their techniques to stay under the radar for years 
• Where the most significant increase in activity occurred and the damage that was done 
• The current state of the retail phishing campaign and how to protect your organization and customers

Uncovering 6000+ Phishing Sites In a Widespread Impersonation Campaign

Phishing attacks are on the rise, organizations need to find more ways to combat attackers. In this part two of our “Secret Weapon to Phishing” series, a little-known secret to protect organizations is referral logs. 

Referral logs are a part of your web server's log that tracks the traffic to your site and through analysis, organizations can gain valuable insight into the activity on a site, including which pages are accessed the most, the average length of a session, and more.

Join us for this webinar to learn more about how referral logs can be used to combat phishing attacks where Abhilash Garimella, Head of Research at Bolster, covers: 

• Attacker techniques and strategies that are caught by referral logs  
• Deployment tips to enable referral logs in your organization
• Best ways to analyze referral logs to detect and then take action on phishing activities
• Real-world examples of how referral logs have been used to combat phishing attacks and protect your sensitive data

Referral Logs: The Secret Weapon to Combat Phishing Attacks (Part 2)

Phishing

IT Security

Risk Management

Risk Mitigation

Security Analysis

Security Awareness

Security Operations

Cyber Attacks

Web Security

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful emerging technology insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on technologies like 3D printing, pervasive robotics, natural interfaces, connected everything and cognitive systems.

Emerging Technologies

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Referral Logs: The Secret Weapon to Combat Phishing Attacks (Part 2)

Presented by

About this talk

More from this channel