Name: What is true Attack Surface Management (ASM)? Why it’s time to rethink how you manage your attack surface
Start: 2025-03-27T15:00:00Z
End: 2025-03-27T15:00:39.000Z
Location: BrightTALK
Rating: 5

Searchlight Cyber provides organizations with relevant and actionable threat intelligence, to help them identify and prevent criminal activity. Originally founded in 2017 with a mission to stop criminals acting with impunity on the dark web, we have been involved in some of the world’s largest dark web investigations and have the most comprehensive dataset based on proprietary techniques and ground-breaking academic research. The company has expanded and evolved, adding external threat management capabilities to create a Continuous Threat Exposure Management platform for organizations. Today we help government and law enforcement, enterprises, and managed security services providers around the world to identify threats and prevent attacks. 

About Assetnote
Founded in 2018, Assetnote was born from the collective expertise of some of the leading minds in offensive security, and has grown to reflect the values and ability of our brain trust. Pioneering the Attack Surface Management category, Assetnote’s Continuous Exposure Management platform closes the gap between the attacker’s and defender’s perspectives with industry-leading real-time awareness of your evolving attack surface and the exploitable security exposure identified within. Monitoring millions of assets every hour for our customers, we are proud to be the chosen security platform for a wide array of organizations, from innovative startups to members of the Fortune 500, FTSE 100, and ASX 200. To find out more visit assetnote.io.

Join Searchlight Cyber as we explore partnership opportunities for MSSPs and VARs looking to stay ahead in dark web intelligence and Continuous Threat Exposure Management (CTEM). Learn how we can work together to meet growing customer demands and drive business growth.

- Be the first to know when cybercriminals are targeting your customers
- Enhance your offering and meet the demand for dark web intelligence
- Increase your margins with dark web intelligence

“Preventive cybersecurity will become increasingly important for businesses in the coming years and the addition of the pre-attack intelligence provided by Searchlight Cyber complements the growth of the more conventional protection market, such as SOC and EDR. ”

Julien Lopizzo, CEO and founder of Semkel

Discover the benefits of Searchlight Cyber's Partner Program

Cybercrime is a growing trillion-dollar industry, driven by the recent proliferation of infostealers and the increasing accessibility of AI tools. Despite years of countermeasures, threats continue to outpace defenses, leaving organizations vulnerable to attacks. In this webinar, Caleb Barlow, CEO of Cyberbit and former IBM X-Force leader, dives into the roots of cybercrime and draws insights from his 2016 TED talk, which has been viewed over 1.7 million times, to explain what has changed in the past decade (and what hasn’t). Join us to learn:

- Why cybercrime remains so profitable
- The rise of infostealers and their off-the-shelf availability
- How to make your organization a harder target for criminals
- The critical role of threat intelligence sharing in disrupting attacks

With crime increasingly shifting to the dark web, Caleb will also give insights on why security teams need access to this intelligence source and how without reliable access to this critical data, you have a massive blind spot in your operations - leaving you blind to criminality being planned on the dark web - including ransomware attacks, targeting of your VIPs and executives, and the trafficking of illicit goods and sensitive information.

Where is cybercrime coming from in 2025?

It’s time for the bi-annual state of ransomware on the dark web report. In this webinar, you’ll find out which groups are most prolific, the emerging groups to watch, and the tactics lookout for in 2025.

In this webinar, we’ll be joined by cybersecurity experts, including Searchlight Cyber’s Head of Threat Intelligence, Luke Donovan, for a statistical analysis and profiles on the groups who claimed the most victims in 2024 and look likely to remain active in 2025. Additionally, our experts will share a review of the impact law enforcement had on disrupting major groups and how this might change how ransomware gangs and cybercriminals conduct their operations this year. 

Register today for unique insights into:
- Profiles on the most prolific ransomware groups in 2024
- A look ahead to the groups to monitor and investigate in 2025
- See how security professionals can build profiles on ransomware groups

We’ll also cover the most common ransomware questions you’ve asked, ensuring we address your specific concerns. Register for the webinar and submit your questions to be answered live.

The Ransomware Report 2025: Dark Web Trends, Groups & Insights

The same threats posed by the dark web to businesses and individual create opportunities for cybersecurity and investigation teams. In this final episode in the series, we invite CEO and Co-Founder, Ben Jones back to talk about why he founded Searchlight Cyber and explain how monitoring the dark web for attributes linked to your external threat surface, such as domains, IP addresses, and employee credentials, can help you spot the earliest signs of criminals targeting your business and resolve risks before they turn into costly incidents.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

How can businesses protect themselves from dark web threats?

What are the challenges with crawling and scraping data from the dark web to capture sensitive information, such as the auctioning of vulnerabilities or employees advertising insider access on forums - ideally before threat actors erase the evidence? We speak with Head of Product at Searchlight Cyber, Dave Osler and Lead Data Engineer, David Andreas, to understand the pros and cons of the different approaches security and investigation teams can leverage to defend themselves against threats on the dark web.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

How does Searchlight gather data from the dark web?

Given that the dark web is primarily used to facilitate illicit activities (according to research, 65% of searches on the dark web are for explicitly illegal content), you might wonder why can't we simply shut it down? While this may seem like a straightforward solution to tackle the rampant sales of illegal goods, data, and organized crime, the answer isn’t so simple. Over to Dr. Gareth Owenson, Co-Founder and CTO of Searchlight Cyber, to explain more.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

Why can't law enforcement just close the dark web for good?

Are dark web purchases guaranteed? How anonymous are cryptocurrency transactions in these shadowy corners of the internet? And how do criminals turn digital coins into spendable cash? (after all, you can’t buy a sports car with crypto – yet.) To tackle these questions, we’ve invited back Searchlight Cyber’s Head of Threat Intelligence to break down the dark web’s underground economy.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

What role does cryptocurrency play on the dark web?

There’s ‘no honour among thieves’, so how do cybercriminals monetize their illicit activities while evading detection from law enforcement on the dark web? Joe Honey, Threat Intelligence Engineer at Searchlight Cyber joins us to explain how hackers use the dark web, master their ‘craft’, and how security teams, can investigate and defend against the attacks from these threat actors.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

How do hackers use the dark web?

The dark web is home to many such digital black markets that operate largely in the same way to e-commerce sites we use everyday. However, unlike these familiare sites, the dark web is far more volatile, with new markets closing and opening all the time. In this webinar, Luke Donovan, Head of Threat Intelligence at Searchlight Cyber, guides us through some of the autoshops and escrow marketplaces you should be monitoring.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

Where are items bought and sold on the dark web?

Despite its recent rise in popularity, I2P has existed as long as Tor. In this webinar, Dr. Gareth Owenson, CTO and Co-Founder of Searchlight Cyber, breaks down the differences between I2P, Tor, Lokinet, Zeronet, and the multiverse of anonymity networks that exist – and shares why certain darknets rise to prominence while others remain in the shadows.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

What’s the difference between I2P and Tor? Are there other dark webs?

Headlines often shine a light on the criminal applications of the dark web, but is that the full story? Ben Jones, CEO and Co-Founder of the dark web intelligence company looks into the ethical applications for anonymous networks such as Tor – from providing safe and private spaces for whistleblowers to protecting those living under oppressive regimes.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

Who uses the dark web and why - are there any positive uses of the dark web?

Do ransomware groups operate like a business? That’s the question we ask Luke Donovan, Head of Threat Intelligence at Searchlight Cyber – helping us understand how ransomware groups use the dark web to plan attacks, communicate anonymously, profit from their stolen data,  and, in some cases, even maintain dedicated human resources teams.

How do ransomware groups operate on the dark web?

If your company’s information ends up on the dark web it’s more than just a data leak, it’s potentially an open door to a major cyber incident. To help us understand the risks of falling victim to breaches, leaks, and vulnerabilities – and how exposed data can be used to launch a cyber attack – we’re joined by Luke Donovan, Head of Threat Intelligence at Searchlight Cyber.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

What are the risks if your business’s information ends up on the dark web?

As the word “dark” hints at, the dark web refers to a part of the internet that is in the shadows and inaccessible through regular search engines or internet browsers. But how does it work? There’s no better person to answer this question than Dr. Gareth Owenson, CTO and Co-Founder of Searchlight Cyber and a world leader in Tor dark web research.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

How does the dark web work?

In the first video of our 12-part series, Searchlight Cyber’s CEO and Co-Founder explains what the dark web is and the threats posed by criminals operating in this hidden part of the internet – plus how it can also present opportunities for security and criminal investigation teams.

This video is part of the '12 Days of Dark Web FAQ' webinar series. Find all previous episodes here: https://series.brighttalk.com/series/7011?utm_source=SearchlightCyberUK&utm_medium=BrightTALK&utm_campaign=7011

What is the dark web (and why should cybersecurity professionals care about it)?

How do you identify threats to your business on the unindexed internet that is the dark web? That’s the question we answer on this webinar as we explore the practical techniques, tools, and search strategies to help cybersecurity teams proactively detect cybercriminal activity targeting your organization, from early signals of phishing as a service campaigns to real-time indicators that initial access brokers are listing VPN access to your network – sometimes for as little as $10.

Joining us will be the founder and director of managed security services provider Talanos, who will share insights and real-world examples on identifying both historical and real-time threats – and crucially, what action you should take once you’ve detected them.

In this cybersecurity webinar, we cover:

- Search queries, tools, and techniques to decipher initial access broker listings
- The importance of monitoring for phishing sites before they are weaponised
- How you can use dark web tools to take action once threats are identified

Even if you can’t join live, register now to receive a copy of the recording as soon as it’s available. We look forward to seeing you on the webinar soon.

How to identify criminals talking about your business on the dark web

A lot can change in six months in the world of ransomware - just ask LockBitSupp.

In this webinar, we looked at how the threat landscape has shifted in the first half of 2024. Through in-depth analysis of dark web data, we also revealed the most prolific ransomware groups seeking to fill the vacuum left following the disruption of ransomware group Lockbit. Additionally, we uncovered the emerging groups and regional threats, based on the data in our dark web investigation platform, Cerberus. Monitoring these trends is essential for adjusting your security strategy for the remainder of the year.

IN THIS RANSOMWARE WEBINAR WE COVERED:
- The most active groups in the first half of 2024 (H1 2024)
- What attacks by groups such as Qilin tell us about the ongoing threat of ransomware
- How recent law enforcement actions are changing the ransomware landscape
- How you can reduce the threat of ransomware with dark web intelligence

KEY MOMENTS OF THE WEBINAR
02:40 - How has the ransomware landscape changed since 2023?
04:02 - The number of ransomware victims in 2024 H1
05:25 - The 5 more prolific ransomware groups in 2024 H1
06:55 - What is ransomware as a service? (RaaS)
09:36 - New and emerging ransomware groups in 2024
11:35 - Who is RansomHub?
13:18 - Who is Qiulong Ransom?
15:32 - Who is DarkVault?
18:51 - Who is APT73?
21:05 - The evolution of ransomware group's TTPs
34:34 - NCSC recommendations: Learning from past breaches
36:46 - How you can prevent and detect ransomware
40:21 - Live demonstration: Ransomware dashboard for law enforcement and enterprise
43:38 - Live demonstration: Dark web search and investigation in Cerberus
46:09 - Live demonstration: Threat actor investigation in Cerberus
49:21 - Live demonstration: Enterprise security investigations in Cerberus
53:04 - Takeaways: How your organization can fight back against ransomware groups
54:54 - Live audience Q&A

Ransomware in H1 2024 - Dark Web Trends, Groups & Insights

In this session, we're joined by Michael Gianarakis and Shubham Shah, the co-founders of Assetnote, where we'll break down the flaws in traditional ASM and explore how teams can take a more proactive approach that actually helps security teams reduce risk. Topics we'll cover include:

- The risks of 'shadow exposure' (the hidden attack surface) where threats are introduced by third-party tools like ServiceNow, Citrix, and Slack
- Why IP-based scanning is not enough when managing modern cloud and CDN environments
- The importance of proactively closing the time gap between exposure detection and mitigation 

We'll explore why the traditional concept of network perimeter security is no longer enough to defend against today’s evolving cyber threats. As organizations rapidly adopt cloud tools and shadow architecture, their true attack surface expands exponentially – exposing them to phishing, leaked credentials, and the persistent risk of ransomware attacks.

If you’ve ever watched a sci-fi film, you’ll know that no matter how impenetrable an opposition’s defences may seem - there is always a chink in the armor that can be exploited - an opening that can be exploited. Whether it’s the Death Star in Star Wars, the City Destroyer in Independence Day, or The Borg Cube from Star Trek, attackers always find a way in. Similarly, in the world of cybersecurity, today’s perimeter defenses are no longer enough to keep intruders at bay.

Register today for your chance to hear from two of the most preeminent minds in Attack Surface Management as they answer:

- What are the top threats companies should be monitoring to bolster their ASM programs
- How to align this with your security objectives, risk tolerance, and business goals
- What strategies and practical steps should security teams take to strengthen their cybersecurity posture

What is true Attack Surface Management (ASM)? Why it’s time to rethink how you manage your attack surface

Attack Surface

Attack Surface Management

CTEM

Cybersecurity

Threat Detection

Cyber Attacks

Vulnerabilities

Vulnerability Intelligence

Vulnerability Management

Vulnerability Scanning

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Leadership styles are continually evolving to incorporate new ways of thinking about employee satisfaction, motivation and performance. Find webinars and videos on the strategies, techniques and qualities that make an effective leader. By participating in this community you will gain insight into current leadership theories and how to optimize employee performance.

Leadership

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

What is true Attack Surface Management (ASM)? Why it’s time to rethink how you manage your attack surface

Presented by

About this talk

More from this channel