Dark Reading Cyber Security Crash Courses
Dark Reading Courses

You've Been Breached! Crash Course  

Thursday, November 10 - Thursday, December 22
Our Lecturer
X
Zach Wikholm, Research Developer, Flashpoint
Zach Wikholm, Research Developer, Flashpoint

Zach Wikholm is a Research Developer at Flashpoint where he specializes in information security and Internet of Things (IoT) risk analysis. Driven by lifelong interests in cyber threat research, emergent malware, and all things open-source (especially Linux), Zach has built a career around designing custom systems to help organizations achieve the optimal balance between security and usability. Prior to Flashpoint, Zach's extensive experience in security engineering and IT consulting led to his role managing all internal security and network infrastructure operations as the Director of Security at CARI.net. He lives in San Diego with his wife and two dogs.


HIDE


Presenter: Gunter Ollmann, CSO, Vectra Networks
Sponsor Speaker: Jerome Segura, Lead Malware Intelligence Analyst, Malwarebytes
Dec 8 1PM
In the past, most cyber attacks simply exploited the most vulnerable systems. Today, however, there is an increasing number of sophisticated attacks that target specific companies, data, or even employees. These attacks are well-disguised and may escape conventional security defenses. What tools and strategies are there to prevent these exploits? In this session, you will hear about the latest types of targeted attacks and what your enterprise can do to stop them.

Presenter: Bhaskar Karambelkar, Data Science Lead, ThreatConnect
Dec 15 1PM
The good news in IT security is that there is a growing list of resources and services that can inform you about the latest threats in cyber space. The bad news is that with so many sources and data, using threat intelligence to improve your cyber defenses can be a bewildering process. In this session, you'll get a look at some of the different types of threat intelligence data, and you'll get advice on how to choose the right ones and integrate the information to improve your defenses.

Presenter: Andy Jordan, Security Associate, Bishop Fox
Dec 22 1PM
If your organization doesn't have a plan for handling a major data breach, you're already in trouble. In order to swiftly and effectively respond to a cyber compromise, you must develop a program for first response in the data center, and downstream response in the business units and in the public eye. This session offers some guidance on how to build an incident response plan, and how to test and practice that plan so that you're ready for the real thing.

Archived Tracks

Enterprise Defense Crash Course  

Thursday, September 22 - Thursday, October 27
Our Lecturer
X
Chris Eng, VP Research, Veracode
Chris Eng, VP Research, Veracode

Chris Eng (@chriseng) is vice president of research at Veracode. Throughout his career, he has led projects breaking, building, and defending software for some of the world's largest companies. He is an unabashed supporter of the Oxford comma and hates it when you use the word "ask" as a noun.


HIDE


Presenter: Chris Eng, VP Research, Veracode
Sep 22 1PM
Customer databases, ERP, Big Data the keys to your enterprises kingdom lie in its applications. But application security is often overlooked, both by software makers and by internal development teams. What steps can your organization take to find and repair application vulnerabilities before your attackers discover them? A top app security expert discusses key practices for scanning and securing applications.

Presenter: Rich Mogull, Analyst & CEO, Securosis
Sep 29 1PM
Cloud computing services and technology offer a level of efficiency and cost savings that most enterprises simply cant pass up. But does the growing use of cloud technology create a growing threat to enterprise data? How can IT organizations track and secure data as it travels through the cloud? In this session, a cloud security expert will discuss the key danger points in cloud computing and the latest technologies and practices for cloud security.

Presenter: Michele Fincher, COO and Chief Influencing Agent, Social-Engineer
Sponsor Speaker: Stu Sjouwerman, Founder and CEO, KnowBe4, LLC
Oct 6 1PM
Most major data breaches start with the compromise of a single endpoint a PC, a mobile device, a user who unwittingly gives up credentials. What can your organization to protect its endpoints? How can you create and enforce end user policies that protect your corporate data? In this session, a top expert discusses how endpoints and end users are most frequently compromised and how to keep your end users from falling victim.

Presenter: Andrew Blaich, Security Researcher, Lookout
Oct 13 1PM
Everyone is saying that the introduction of mobile devices and bring-your-own-device (BYOD) policies is a security risk to the enterprise. But exactly where do those risks come from? In this session, a top expert will debunk some of the myths about mobile security while raising up some threats and vulnerabilities you may not know about.

Presenter: Randy Trzeciak, Director, Insider Threat Center, CERT
Oct 20 1PM
Major data leaks such as Edward Snowdens release of NSA data are only the tip of the insider threat iceberg. Every day, enterprises face the threat of losing insider information not only through malicious leaks but through unintentional violations of security rules. How can organizations spot the signs of a data leak and stop it before it goes too far? How can IT help prevent accidental leaks of sensitive data? A top expert offers key advice on stopping data loss from within.

Presenter: Drew Vanover, Director of Technical Solutions, Blue Coat
Oct 27 1PM
As enterprises add new networking capabilities, SDN, and virtualized server environments, the risks they face are changing as well. In this informative session, a top expert on infrastructure security will discuss the latest threats to networks and servers and how your organization can mitigate them.

Upcoming Webinars
Webinar Archives
7 Key Cloud Security Trends Shaping 2017 & Beyond
Date: Dec 15, 2016
View webinar
Cloud computing is enabling business transformation as organizations accelerate time to market and business agility. Evolving cloud technologies and approaches, however, can create security gaps and human errors. Data protection rests with you and your organization and not the cloud provider.

4 Keys to Improving Security Threat Detection
Date: Dec 15, 2016
View webinar
In this webinar, Ixia will show how to combine the four keys to improving security threat detection into a Security Fabric to deliver greater context and intelligent distribution to monitored traffic. You will learn how to create actionable threat intelligence specific to your organization and increase the value of your existing security tool infrastructure.

[Secure Application Development] New Best Practices You Need
Date: Dec 14, 2016
View webinar
The rapidly-changing app environment brings new challenges for information security. Learn how your enterprise can combine emerging app development methods, cloud services capabilities, and new security practices to create a fast and more secure application environment.

Exploit Kits: How to Protect Your Organization
Date: Dec 08, 2016
View webinar
Today's attackers are using exploit kits to automatically find vulnerabilities in common systems. As the use of these attacks increase, so does your chance of being compromised. In order to better protect your organization, you'll need to understand the inner workings of exploit kits.

[Ransomware] Taking the Mystery out of Ransomware
Date: Dec 07, 2016
View webinar
Lost data. Systems locked down. Whole companies coming to a grinding halt. When it comes to ransomware, the damage it can do to your company is immense. Many companies are perplexed by ransomware and don't know how to best protect themselves - but there's no reason to remain in the dark. Join us for this informative webinar presented by Michael Mimoso from Kaspersky Lab's GReAT team as we take the mystery out of this growing threat.

[Security] How Organizations Are Gaining a Radical Advantage with Bug Bounties
Date: Dec 07, 2016
View webinar
Despite thousands of large and small organizations running bug bounty programs, there is still a lot of fear and uncertainty about these in the cybersecurity community. In this webinar we will explore 7 myths about Bug Bounty programs, the hackers who are involved, and the impact they are having on the security posture of organizations around the world.

[Cybersecurity] Build & Maintain an Effective Cyberthreat-Hunting Team
Date: Dec 07, 2016
View webinar
As online attackers and exploits get more sophisticated, many enterprises are discovering that more traditional, passive methods of detecting cyberthreats aren't working as well as they used to. To help find and eradicate sophisticated threats more quickly, enterprises are building "threat hunting" programs to actively analyze internal telemetry and external threat intelligence data, and to better prevent the compromise of critical business data.

Secure Your Organization against Phishing Attacks
Date: Dec 06, 2016
View webinar
Most major cyberattacks on enterprises begin with a social engineering attack, in which an employee is fooled into downloading malware or giving up online credentials. These attacks often come as realistic-looking phishing emails that purport to be from a colleague or trustworthy source. To prevent these attacks, you need to know who attackers are looking for inside your organization, how they choose their phishing victims, and what methods they use.

[Security] Dramatically Improve Your Security Response Program with Automation
Date: Dec 06, 2016
View webinar
Automation in Security. Most enterprises talk about it - but are they really doing it? And if so, where does good automation end? Tools that enable automatic blocking or isolate a compromised system can inadvertently take down critical business applications. However, there are security tasks that can be safely automated, giving back time to security teams - without putting systems or jobs at risk.

Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Five Emerging Security Threats - And What You Can Learn From Them
At Black Hat USA, researchers unveiled some nasty vulnerabilities. Is your organization ready?
Flash Poll
Dark Reading Strategic Security Report: The Impact of Enterprise Data Breaches
Dark Reading Strategic Security Report: The Impact of Enterprise Data Breaches
Social engineering, ransomware, and other sophisticated exploits are leading to new IT security compromises every day. Dark Reading's 2016 Strategic Security Survey polled 300 IT and security professionals to get information on breach incidents, the fallout they caused, and how recent events are shaping preparations for inevitable attacks in the coming year. Download this report to get a look at data from the survey and to find out what a breach might mean for your organization.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Security researchers are finding that there's a growing market for the vulnerabilities they discover and persistent conundrum as to the right way to disclose them. Dark Reading editors will speak to experts -- Veracode CTO and co-founder Chris Wysopal and HackerOne co-founder and CTO Alex Rice -- about bug bounties and the expanding market for zero-day security vulnerabilities.