Webinar Archives

Upcoming Webinars
Phishing: Trends, Attacks and Defense Strategies
Date: Jun 14, 2018

View archived webinar

With over 1.2 million phishing threats detected in 2017 alone, enterprises are under constant attack.  While Ransomware has received the lion’s share of attention, everyday “beachhead” attacks were 2.5 times more prevalent.  
 
This session analyzes the phishing trends, attacks and defense strategies across global enterprises and will even offer some predictions of what to expect in 2018.

Real-World Ways to Fight Phishing
Date: Jun 12, 2018

View archived webinar

Despite our best efforts, most successful cyber attacks still begin with a humble phishing message. If your security awareness programs aren’t getting the job done, how do you do the basics better, and what new tools and techniques can you add to your arsenal?

Malicious Insiders: Real Defense for Real Businesses
Date: Jun 05, 2018

View archived webinar

Which one of your co-workers will it be? The disgruntled worker with oodles of access privileges? The jet-setting workaholic who will find a workaround for every security measure just so she can stay connected and keep working from anywhere, anytime? The eager-to-please front desk staff who always opens the door and shares documents to any stranger who comes along? Insider threats, malicious and accidental, can be anywhere, but your business cannot run without people who are helpful and hardworking. Too much end-user surveillance could damage employee morale. What are your options? In this webinar, learn how cybersecurity professionals can address the insider threat without shutting down business.

Threat Intelligence: Where to Start & What to Ask
Date: May 31, 2018

View archived webinar

The good news in IT security is that there is a growing list of resources and services that can inform you on the latest threats in cyber space and the criticality of each. The bad news is that with so many sources and so much data, using threat intelligence to improve your cyber defenses can be a bewildering process. In this session, you'll get a look at some of the different types and sources of threat intelligence data, and you'll get advice on how to choose the right ones – and how to use these varied information sources to improve your defenses.

Protecting Your Data In the Cloud
Date: May 24, 2018

View archived webinar

Cloud computing services and technology offer a level of efficiency and cost savings that most enterprises simply can’t pass up. But does the growing use of cloud technology create a growing threat to enterprise data? How can IT organizations track and secure data as it travels through the cloud? Do you need on-premises security tools to help secure an increasing number of cloud applications and service providers? In this session, a cloud security expert will discuss how rather than be afraid of cloud computing, security experts can take better advantage of the cloud to improve security across the board.

Migrating On-Premises Security Controls to the Cloud
Date: May 23, 2018

View archived webinar

As enterprises increasingly move traditional, data center-based applications and storage to the cloud, they face a variety of security challenges.

In this informative webinar, top experts in cloud security discuss the transition of legacy, on-premises security systems to the cloud, and how your organization can protect your data and operations against potential threats while expanding your use of cloud services.

The Impact of a Data Breach
Date: May 17, 2018

View archived webinar

To understand the cyber risk your organization faces, you need to understand the likelihood of a breach – and its potential cost. In this session, a top expert discusses the many – and sometimes hidden – costs of a data breach, including its impact on customers and end users. You'll also get insight on the frequency of data breaches and a better understanding of how likely it is to happen to your organization.

Ransomware Defense and Preparedness - Before the Attack
Date: May 15, 2018

View archived webinar

Ransomware is infecting more and more businesses each day – but there are ways to limit its impact. In this webinar top experts will discuss methods for preventing ransomware code from getting through your enterprise defenses, and how you can limit its reach.

Outsourcing IT Security: Strategies for Working with Third Parties
Date: May 09, 2018

View archived webinar

The growing IT security skills shortage means that many enterprises simply do not have the staff they need to handle new projects or ongoing threats. In addition, many businesses are increasingly relying on network and cloud service providers, taking key security functions out of their hands. How can enterprise security teams work with third-party contractors and service providers to improve overall security? In this Dark Reading webinar, a top expert discusses security outsourcing strategies, tools for measuring service provider security, and ways to use third-party services to supplement your in-house cybersecurity skills.

Bulletproof Your Digital Footprint From Emerging Threats
Date: May 08, 2018

View archived webinar

Whether or not you choose to participate in a digital channel, such as social media, cyber criminals can create fake accounts and domains that appear to represent your brand. Even in the dark web where corporations have clearly opted out, bad actors can plan attacks on your key personnel and physical assets. Learn how to enhance your security posture and protect your brand across social, mobile, domain and the dark web.
 

Cyber Threats to Industrial Control and Other Vertical-Industry Systems
Date: Apr 25, 2018

View archived webinar

Whether you work in utilities, manufacturing, health care, or another industry, it’s likely that you have purpose-built systems that are both digital and unprotected by conventional IT security tools. As your use of these vertical systems grows, how can you be sure that they won’t be hacked?  In this Dark Reading webinar, top experts offer insight on the threat posed to industrial control systems (ICS) and other vertical-industry systems, and how you can expand your enterprise security strategies to protect them.

Detecting and Mitigating Ransomware and Other Malware
Date: Apr 12, 2018

View archived webinar

In the past, most cyber attack campaigns were primarily random, and they simply exploited the most vulnerable systems they could find. Today, however, there is an increasing number of sophisticated attacks – in particular, ransomware -- that target specific companies, data, or even employees. These attacks are often extremely well-disguised and may escape the security tools that most enterprises use to screen out more random attacks. What tools and defenses are there to prevent targeted attacks on your organization? In this session, you will hear about the latest types of targeted attacks and what your enterprise can do to stop them.

Developing and Testing an Effective Incident Response Program
Date: Apr 05, 2018

View archived webinar

If your organization doesn't have a plan for handling a major data breach, you're already in trouble. In order to swiftly and effectively respond to a cyber compromise, you must develop a program for first response in the data center, and downstream response in the business units and in the public eye. This session offers some guidance on how to build an incident response plan that can identify and repair compromises as quickly as possible -- and how to test and practice that plan so that you're ready for the real thing.

Integrating, Coordinating, and Orchestrating Your Enterprise Security Tools
Date: Apr 04, 2018

View archived webinar

Over the past decade, enterprises have purchased a wide range of security tools and systems, many designed to solve only one problem. Today, security teams are looking for ways to aggregate and integrate the capabilities of these systems to help identify sophisticated threats and improve overall enterprise security.

In this Dark Reading webinar, attendees will learn strategies for tying security systems together and orchestrating them to build a better data defense.

How Online Attackers Research Your Organization
Date: Mar 21, 2018

View archived webinar

Whether they are large or small, most targeted cyberattacks begin with some simple research on your organization. This process of collecting “open source intelligence” (OSINT) may include discovering employee information on e-mail or social networks, investigating your enterprise via sophisticated search techniques or the Dark Web, or basic social engineering methods that fool trusted users into giving up credentials or other information. In this fascinating webinar, top experts discuss the methods that online attackers use to perform reconnaissance on your organization – and they offer advice on how you can make it more difficult for attackers to collect the information they need to launch an exploit.

Accelerate Your OODA Loop with Threat Intelligence and Orchestration
Date: Mar 14, 2018

View archived webinar

Today’s adversaries are moving faster than ever before, and for organizations trying to protect themselves against advanced and evolving threats, speed is essential. You need both orchestration and threat intelligence to be able to quickly make informed decisions for your organization. To demonstrate this, we’ll use the OODA loop. A decision making cycle, the OODA loop stands for: Observe, Orient, Decide, and Act. Not only is it vital to be able to complete the loop, but also important to accelerate it to keep up with adversaries. Register for this webinar to learn how to effectively shrink the attack surface and enable your team to make faster, more accurate decisions.

Why Hackers Attack: Understanding Threats and Motivations for Online Intrusion
Date: Mar 13, 2018

View archived webinar

To develop a strong defense, you must have a good understanding of who is likely to attack your organization – and why.

In this Dark Reading webinar, a top expert discusses the different types of attackers that may test your defenses, and the different methods that each category of attacker might use to penetrate your systems. You’ll also get advice and recommendations on how to use your knowledge of attackers to build a more effective, customized defense that increases the security of your critical data.

Security For the Internet of Things: A Practical Approach
Date: Mar 08, 2018

View archived webinar

Today’s IT environment increasingly employs a variety of devices that are intelligent and Internet-connected – but are not computers or phones. What’s the best strategy for securing these devices as they are added to your corporate computing environment? What can you do during the deployment phase to ensure that attackers don't use these devices as a means to compromise your corporate data? A top IoT security expert offers some insight.

Strategies for Improving Enterprise Application Security
Date: Mar 07, 2018

View archived webinar

Most online attacks begin when a hacker discovers a single vulnerability in an enterprise application. But how can organizations eliminate these vulnerabilities before they are exploited?  While most enterprises are focused on application scanning and remediation, many software development experts are advocating better, more secure application development initiatives that prevent vulnerabilities from occurring in the first place. In this webcast, experts on application security and the DevOps movement discuss the steps that enterprises can take to build security into the app development process.

Building Your Identity-aware Infrastructure
Date: Feb 22, 2018

View archived webinar

As the world of identity continues to evolve, the goals remain the same. A proper identity management program should ensure the right people have the right access to the right data at the right time. Identity governance is what helps you ensure those goals are attained.

Join Darran Rolls, the CTO & CISO of SailPoint, the leader in the Gartner Magic Quadrant for Identity Governance and Administration, as he demonstrates how to build an identity-aware infrastructure.

Insider Threats and Data Leaks: What You Dont Know CAN Hurt You
Date: Feb 22, 2018

View archived webinar

Major data leaks such as Edward Snowden’s release of NSA data are only the tip of the iceberg when it comes to insider threats. Every day, enterprises face the threat of losing valuable insider information – not only through malicious actions but through unintentional, accidental violations of security rules that lead to exposure of critical information. In this session, a top expert offers some essential advice on stopping data loss from within.

The Real Risks of Mobile Technology In the Enterprise
Date: Feb 15, 2018

View archived webinar

Most companies today have embraced a bring-your-own-device (BYOD) policy that enables end users to use their own tools to access corporate data. But how can you enforce security in such a flexible technology environment? And what are the real threats faced by today’s wireless devices?

In this session, a top expert will debunk some of the myths about mobile security while raising up some threats and vulnerabilities you may not know about.

Strategies for Monitoring and Measuring Cloud Security
Date: Feb 14, 2018

View archived webinar

There are many tools and processes for improving security in cloud IT environments, but many enterprise security teams still complain about their lack of "visibility" into the cloud. In this Dark Reading webinar, a top expert offers a look at practices and tools that will help your team monitor security in IT environments that incorporate many cloud applications and services. You'll also get advice on how to evaluate and measure cloud security, and how to work with service providers to improve it.

Strategies for Using Cyber Threat Intelligence
Date: Feb 13, 2018

View archived webinar

Between threat intelligence tools, industry ISACs, and a wide range of other services, IT organizations are flooded with ways to keep up to date on the latest security threats. But without mechanisms in place to actually use the information, these alerts provide little benefit. Learn how your IT organization can develop processes to quickly digest threat data and turn it into real actions, improving response to new threats and increasing overall security.

Securing End User Identities
Date: Feb 08, 2018

View archived webinar

Not so long ago, the notion of “endpoint security” focused on the management of desktop devices. But today’s end user employs a wide variety of devices in a wide variety of locations – many of which don’t belong to your organization. How can enterprises build a security strategy that identifies the end user and applies the appropriate security – no matter what their location or device? This session provides new insights on securing your end users.

GDPR: Gain Visibility and Control of Your Customers Data
Date: Jan 31, 2018

View archived webinar

Does your database contain personally identifiable information (PII) on EU citizens? If so, are you sharing it in compliance with GDPR? You must, if you are going to avoid crippling fines. PII belonging to European partners and customers is distributed across your organization: in your file shares, content management and cloud storage systems. It’s possible for organizations to have total visibility and control of their customers’ data—where content resides, which employees have access to it, and what they are doing with it. Having unified access to the systems that hold customer data and the ability to share this data securely will give your data protection officer peace of mind & help him/her sleep at night.
 
Join us for an informative webinar to learn how you can achieve your data privacy goals as it pertains sharing PII beyond your enterprise boundaries.

LTE in Unlicensed Spectrum: Driving Innovation in the Enterprise
Date: Jan 25, 2018

View archived webinar

Enterprise networking has long faced a standardized competitive environment largely defined by Wi-Fi solutions. That is about to change with the introduction of MulteFire, a new wireless solution that will bring seamless connectivity to users with enhanced coverage and capacity.

This new LTE-based technology can be deployed standalone in unlicensed or shared spectrum, allowing Enterprises to deploy private and neutral host LTE networks with fewer access points than traditional solutions, ultimately reducing CapEx. Harbor Research, a strategy and technology research firm that works with leading technology innovators, product OEMs and service providers, has forecast that the total addressable revenue for Enterprise markets deploying MulteFire will reach nearly $2.5B in 2023. In this webinar, the MulteFire Alliance joins Harbor Research to provide insight into how this technology will help venue owners and operators reduce costly distributed antenna systems and licensed carrier small cells, while ensuring coverage and capacity for users, regardless of carrier.

Becoming a Threat Hunter in Your Enterprise
Date: Jan 25, 2018

View archived webinar

For years, most IT security organizations have waited to detect new threats and then moved swiftly to defend against them. Today, however, there is a new wave of “threat hunting,” in which the security team takes a more proactive approach -- sinking hands into threat intelligence feeds, digging into behavioral analytics reports and following clues to a would-be attacker before they can do significant damage to critical data.
How do these enterprises build threat hunting programs? How do they staff them, and what tools and data do they need?

How to Talk to Management About Cybersecurity and Risk
Date: Jan 25, 2018

View archived webinar

As an IT professional, you’ve developed some ideas on how cyber attackers might compromise your enterprise data, and how you can defend against them. Now you have another challenge: how to present those threats and strategies to business managers who know nothing about IT security technology. How can you convey the current state of your IT security posture to top management? How can you make a business case for investing in additional IT security resources? 

In this informative session, you’ll get advice and recommendations on how to present security issues to your management – in language they can understand.

5 Things to Prepare For in Third-Party Cyber Risk Management in 2018
Date: Jan 18, 2018

View archived webinar

In 2017, we saw an increase in third-party related breaches bring a renewed focus to third-party risk management. But with this renewed focus, comes new challenges. From increased regulations and more involvement from the boardroom, to greater financial implications, third-party risk management has the potential to get more complicated in 2018.

Why Your IT Security Program Is Broken And How To Fix It
Date: Jan 18, 2018

View archived webinar

You may be compliant with every data security and privacy regulation. You may have your traditional IT infrastructure securely locked down. And yet despite that, you may have an IT security program that is failing -- failing to stop attackers and failing to support your organization. What's missing?

In this session, learn from a top expert how to shift away from an old, ineffective security mindset and towards one that is risk-based, threat-aware, and aligned to your business.

The State of the Enterprise Security Department
Date: Jan 11, 2018

View archived webinar

Cybersecurity has become one of the most critical issues in business, but have cybersecurity departments -- and the businesses they support -- adapted accordingly? Are they prepared for the caliber of data breaches and DDoSes organizations now experience? What are the chief threats that security departments face, and what are they doing about them? What are today's top priorities for security professionals and how do they relate to those of the CEO and board room? This session will explore all those questions, revealing data from two recent surveys of IT and security executives.

Fearless & Secure Cloud Migration
Date: Dec 14, 2017

View archived webinar

Business leaders throughout your organization are eager to move to cloud services, but your own enthusiasm is tempered by the knowledge of the threats. What if your databases are busted wide open through an unpatched web app? What if your entire operation is taken offline by an IoT botnet DDoS attack? What if something else security professionals haven’t dreamed of yet? Or what if moving to the cloud can actually improve your organization’s cybersecurity?

In this webinar, learn how to make a safe, secure migration to the cloud, that both manages risks and takes advantage of all the security benefits. Also, learn how other security pros are approaching their cloud security efforts.

Open Source Security for Containers in a DevOps World
Date: Dec 07, 2017

View archived webinar

Managing container infrastructure in a production environment is challenged by problems of scale. One of the biggest problems is trust—specifically trust of the application. To put it another way, can you trust that all containers in your Kubernetes or OpenShift cluster are performing the tasks you expect of them? If a container becomes compromised in some fashion, how many other containers are at risk and how far has trust been broken?

To answer those questions, you first need to implement security controls to define your trust model, and then, carefully study the attacker profile.

Cloud Security: Dont Go Blind While Playing in the Cloud
Date: Dec 06, 2017

View archived webinar

IT and security professionals identify security as the #1 barrier to moving applications to the cloud, according to the “2017 Cloud Adoption Survey” by Evolve IP. And IaaS cloud providers take no responsibility for secure configuration of the operating system or security monitoring, or for application security configuration or monitoring. Exacerbating the issue is that 85 percent of enterprises have a multi-cloud strategy, according to a January 2017 RightScale “State of the Cloud Survey.”

Ransomware: A Hunting We Will Go
Date: Nov 15, 2017

View archived webinar

Ransomware is one of the favorite flavors of malware and is particularly vicious and showing no signs of slowing down. Join this webinar as Senior Security Researcher Kyle Wilhoit helps us to understand ransomware trends, ransomware use cases, the financial workings behind the attacks and how to combat these attacks. Kyle will also look at some upcoming Ransomware predictions for 2018.

Building Security for the Internet of Things
Date: Nov 09, 2017

View archived webinar

Whether your business makes cars, uses medical devices, or employs any other "Internet-enabled" technology, you could be a target for online attackers. As the Internet of Things (IoT) becomes a broader reality in business, IT and security professionals are being challenged to find ways to secure Internet-enabled technology in all types of non-computer devices. How can IT develop and manage an effective security strategy for IoT technology?

In this webcast, experts discuss the most effective approaches to securing Internet-enabled systems and offer advice on monitoring and protecting next-generation IoT technology.

Ransomware: Latest Developments and How to Defend Against Them
Date: Nov 01, 2017

View archived webinar

Ransomware is one of the fastest growing types of malware, and new breeds that escalate quickly are just around the corner. Learn how ransomware can affect your organization and steps you can take to defend your systems and users against it.

Building a Cybersecurity Architecture to Combat Todays Risks
Date: Oct 25, 2017

View archived webinar

"Layered defense" has traditionally been the modus operandi of IT security, but this approach can't be counted on to stand up to today's threats and attacks. In addition, attack surfaces are growing every day as companies adopt technologies like cloud and the Internet of Things. We'll help you rethink IT security from a strategic, architectural perspective and outline ways to build a comprehensive set of defenses that can discourage and repel attackers.

Understanding Ransomware
Date: Oct 04, 2017

View archived webinar

The IT security industry has spent the last year wrestling with the growing threat of ransomware, in which a cyberattacker encrypts a victim enterprise’s data and then demands payment to decrypt it. But exactly how does ransomware infect your systems in the first place? Is all ransomware the same? How does it encrypt your data, and why is that encryption so hard to crack? Most importantly, what can you do to stop it – or at least prevent it from affecting your most sensitive information?

In this eye-opening webinar, top experts offer insight on how ransomware is created, how it is distributed, how it works, and how to limit its impact on your organization.

Identifying exposures and vulnerabilities in UC/RTC Environments
Date: Sep 28, 2017

View archived webinar

Businesses continue to evolve and rely more heavily on Unified Communications (UC) and Real Time Communications (RTC) based applications to run their normal day to day operations. However, the underlying networks, protocols and technologies that deliver UC and RTC have remained unchanged.   And because we live in an IP world--with VoIP and SIP common to all types of networks, reliance on traditional internet and data networking tools for real-time communications exposes UC networks to the same types of cyberattacks that affect all data networks. More importantly, it exposes the network to the inherent vulnerabilities of SIP communications that the traditional tool sets don’t address.  

This webinar will examine the security implications of using VoIP and SIP, how to best protect real-time communications traffic with tools you already have as well as with new tools, and how to orchestrate protections to prevent UC security from becoming just another isolated security silo.

Advancing UEBA: The Impact of Artificial Intelligence, Continuous Machine Learning, and Cloud Infrastructure
Date: Sep 20, 2017

View archived webinar

Organizations are increasingly faced by internal threats. Insider threats, compromised accounts, administrator abuse and other user-based threats are some of the most damaging threats and the hardest to detect. This has led to the development of user and entity-based analytics (UEBA) solutions, designed to address user based threats. Through the use of artificial intelligence (AI) and machine learning these solutions are making it possible to detect advanced threats that weren’t previously visible

In this webinar, Samir Jain, Senior Product Manager, UEBA and Mark Settle, LogRhythm Product Marketing Manager will discuss the evolving UEBA market and advancements in the technology fueling these solutions.

Finding and Fixing Application Security Vulnerabilities
Date: Sep 14, 2017

View archived webinar

Customer databases, enterprise applications, Big Data – the keys to your enterprise’s kingdom lie in its applications. But application security is often overlooked, both by software manufacturers and by internal app development teams. What steps can your organization take to find and repair application vulnerabilities – before your attackers discover them?

Top applications security expert Matt Tesauro, Senior Technical Project Coordinator for the OWASP Foundation, discusses key practices for scanning and securing applications and offers some insight on how to improve security in your software development organization.

IP Intelligence: The Utility Player for Your Online Business
Date: Aug 31, 2017

View archived webinar

In today’s connected world, it’s no longer enough to simply provide a fast, easy-to-use website. Customers expect an experience that is smooth, safe and personalized. The most successful brands – regardless of industry or target market – can identify who customers are and ensure they’re protected when they visit.

But customer demands aren’t the only thing constantly evolving. The threat landscape, along with the rules and regulations aimed at keeping the internet safe, are changing just as quickly in a boundary-less online world.  Fraud is rampant, while cyber attacks are more targeted and imposing. How does a CISO or CIO adapt?

That’s where IP Intelligence (IPI) comes in. IPI provides granular IP decisioning and Internet connectivity data, answering who, what, where, when and why consumers are connecting to their sites. IPI helps organizations sort out the good actors from the bad, improving the customer experience while keeping vital security systems safe and efficient.  

Join us as we explore the many benefits of IP Intelligence, and how you can use IPI to improve your customer experience, reduce fraud, improve security, protect digital content, and more. It’s the utility player for your online business.

Efficient Triage and Response Using Intelligence-Driven Orchestration
Date: Aug 31, 2017

View archived webinar

Finding ways to increase speed, accuracy, and efficiency when responding to threats should be the goal of any security team. Baking threat intelligence into the day-to-day efforts of detecting and responding to threats is a great way to see some of these benefits. Going further and leveraging the power of a playbook-driven orchestration platform can dramatically improve efficiency and consistency.

In this webinar, these concepts will be explored with practical guidance on how to use threat intelligence to feed orchestration which in-turn can drive automated triage or defensive actions. The result is a well-oiled machine where analysts can be situationally aware and quickly drive appropriate response to threats.

How to Talk to Your Management about IT Security
Date: Aug 30, 2017

View archived webinar

If you’re a security professional, you understand the cyber threat to your organization and the need for an effective defense. The one big problem: your top management doesn’t. In this useful and insightful webinar, top experts offer recommendations on how to measure the cyber threat posed to your enterprise, the posture of your online defenses, and the needs and achievements of your IT security department. This webinar will bring you some new methods for describing and measuring your cybersecurity initiatives so that they can be understood by even the most business-oriented executives.

Using Cyber Threat Intelligence Wisely
Date: Aug 23, 2017

View archived webinar

A wide range of threat intelligence feeds and services have cropped up to keep IT organizations up to date on the latest security threats. But without mechanisms in place to actually use the information, these alerts provide little benefit.

Prioritizing Threats to Your Enterprise Data Security
Date: Aug 10, 2017

View archived webinar

Today’s enterprises face a wide variety of cyber threats that range from financially-motivated cybercriminals to state-sponsored hackers seeking business intelligence. There are many data sources that can provide information about these threats – but how can you determine which threats pose the greatest danger to your enterprise? How can you analyze threat data and use it to help improve your organization’s cyber defense?

The Real Impact of a Data Security Breach
Date: Aug 02, 2017

View archived webinar

A major breach of your enterprise's critical data could potentially threaten the life of your business. In addition to the potential loss of customer data or intellectual property, a breached company faces public scrutiny, IT security overhauls, potential lawsuits, brand damage, and loss of customers.

Out of the Black Box: Making Security a Business Enabler
Date: Jul 20, 2017

View archived webinar

To maximize the return on cloud security investments, CISOs need a seat at the table. Unfortunately, getting them there isn’t always simple, especially when security is often handled in a clandestine way that doesn’t always clearly demonstrate its value.  

However, security doesn’t have to be dark and mysterious to work effectively. It needs to be flexible, reliable and, most importantly, transparent. This how you state the case for not just the relevancy of security to the organization, but how it can be a business enabler.

Stop the Stopgaps: How to Look for New Security Technologies
Date: Jul 19, 2017

View archived webinar

Businesses have been trusting security vendors to protect their endpoints for years, but those vendors can’t keep up with the speed of the evolving threat landscape. They are failing in their promise to protect their customers, and these failures have opened the door for Next-Generation Anti-Virus solutions. Desperate for relief, businesses are adding, or even replacing, their traditional AV with these NGAV solutions. And while the NGAV vendors have promised unbelievable levels of effectiveness, endpoints continue to get infected.

Given today’s threat landscape, combined with so many security options available today, it can be daunting when selecting new or alternative technologies to protect your business. Your security team has unique challenges; therefore, you should be asking your next security vendor how they will meet your requirements—both for today, and the future.

How Cyber Attackers Research Your Organization, And What To Do About It
Date: Jul 13, 2017

View archived webinar

For most online criminals, the first step in a major attack is to do research on the target organization. This “reconnaissance” may involve sending fake emails to employees, stalking executives on social media, making fraudulent phone calls, or other social engineering techniques that might yield credentials or help lay the groundwork for a more sophisticated attack. How do you know when your organization is the target of this type of reconnaissance – and what can you do to disrupt it?

In this eye-opening webinar, you’ll learn how attackers can take advantage of your website, employees’ social media, and other vehicles to learn about your organization – and get the ammunition they need to convince your end users to trust them.

How to Secure Your Endpoints from Ransomware and Other Trending Attacks
Date: Jun 28, 2017

View archived webinar

Attackers have shifted their tactics. They’ve discovered new ways to re-engineer tactics to make them easier to execute, more evasive, and more likely to deceive targeted users. Combined with targeting platforms that organizations falsely consider more secure, these sophisticated attacks, including ransomware, are proving very damaging to unprepared organizations.

'Hidden Tunnels' Help Hackers Launch Financial Services Attacks
Kelly Sheridan, Staff Editor, Dark Reading,  6/20/2018
Tesla Employee Steals, Sabotages Company Data
Jai Vijayan, Freelance writer,  6/19/2018
Inside a SamSam Ransomware Attack
Ajit Sancheti, CEO and Co-Founder, Preempt,  6/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-7682
PUBLISHED: 2018-06-22
Micro Focus Solutions Business Manager versions prior to 11.4 allows a user to invoke SBM RESTful services across domains.
CVE-2018-12689
PUBLISHED: 2018-06-22
phpLDAPadmin 1.2.2 allows LDAP injection via a crafted server_id parameter in a cmd.php?cmd=login_form request, or a crafted username and password in the login panel.
CVE-2018-12538
PUBLISHED: 2018-06-22
In Eclipse Jetty versions 9.4.0 through 9.4.8, when using the optional Jetty provided FileSessionDataStore for persistent storage of HttpSession details, it is possible for a malicious user to access/hijack other HttpSessions and even delete unmatched HttpSessions present in the FileSystem's storage...
CVE-2018-12684
PUBLISHED: 2018-06-22
Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file.
CVE-2018-12687
PUBLISHED: 2018-06-22
tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h.