Threat Detection

Cloud Insecurities - How to threat hunt in hybrid and multi cloud environments

Sep 27, 2022 By Corelight In Corelight

Amidst a record number of workloads moving to the cloud – security teams must not only confront the cyber-skills shortage, but also a general lack of cloud expertise. Corelight and guest Forrester will share best practices for building threat detection, hunting, and incident response capabilities to the cloud and upskilling your existing SecOps team. Watch this on demand webcast to learn.

View Video

Corelight

Read more about Cloud Insecurities - How to threat hunt in hybrid and multi cloud environments

[Demo Video] Corelight + CrowdStrike Falcon XDR

Sep 26, 2022 By Corelight In Corelight

See how Corelight + CrowdStrike Falcon XDR correlates suspicious telemetry from across attack surfaces to show the full picture of adversary activity, and accelerate detection and response.

View Video

Corelight

Read more about [Demo Video] Corelight + CrowdStrike Falcon XDR

How to Defend Against Threats with Falcon Intelligence

Sep 20, 2022 By CrowdStrike In CrowdStrike

In this video, we will review a Falcon Intelligence use case and see how intelligence automation can help improve incident investigation times and your organization's overall security posture.

View Video

CrowdStrike

Read more about How to Defend Against Threats with Falcon Intelligence

Recognizing and Stopping Insider Threats in the Healthcare Industry

Sep 11, 2022 By Damian Chung In Netskope

As a direct result of COVID-19 burnout, the ongoing Great Resignation trend might be impacting healthcare more than any other industry. Research shows that healthcare has already lost an estimated 20% of its workforce over the past two years. This turnover is happening top-to-bottom throughout organizations. Doctors are switching between hospitals, administrative staff are leaving the industry, and technology teams are being lured away by higher paying jobs in other sectors.

Read Post

Netskope

Read more about Recognizing and Stopping Insider Threats in the Healthcare Industry

SANS Protects: The Network

Sep 8, 2022 By Corelight In Corelight

SANS Protects is a series of papers focused on the most prevalent threats to specific, critical components of your environment as well as actions you can take to mitigate those threats and thwart threat actors. In this webcast, sponsored by Corelight, SANS Certified Instructor Matt Bromiley will examine current, prevalent network threats and how adversaries use them to take advantage of, and maintain footholds in, victim environments.

View Video

Corelight

Read more about SANS Protects: The Network

SANS 2022 Report Moving to a State of Zero Trust

Aug 31, 2022 By Corelight In Corelight

In this webcast, SANS certified instructor Matt Bromiley will explore the concept of zero trust and what it means to security teams and your overall security posture. As a concept, zero trust is relatively straightforward: Trust no one until verified, inside or outside the network. However, this is often easier said than done, especially for systems built on legacy authentication models. Matt will also examine what a zero trust implementation looks like, how this can stop adversaries dead in their tracks, and what your organization can do to begin moving toward a state of zero trust.

View Video

Corelight

Read more about SANS 2022 Report Moving to a State of Zero Trust

How to Benchmark Your Threat Hunting Readiness and Prepare for the Next Step

Aug 26, 2022 By Corelight In Corelight

Many organizations want to start threat hunting but struggle with knowing where to begin, how to measure success, and how to scale an effective program. This presentation draws on the experience of elite hunters and teams around the world and will discuss an actionable threat hunting maturity model and help you prepare for each step of the journey with specific guidance, concrete examples, and sample threat hunts.

View Video

Corelight

Read more about How to Benchmark Your Threat Hunting Readiness and Prepare for the Next Step

Network Forensics & Incident Response with Open Source Tools

Aug 26, 2022 By Corelight In Corelight

Open source security technologies such as Zeek, Suricata, and Elastic can deliver powerful network detection and response capabilities, and the global communities behind these tools can also serve as a force multiplier for security teams, such as accelerating their response times to zero-day exploits via community-driven detection engineering and intel sharing. This presentation will review popular open source technologies used in network DFIR and cover use cases, integrations, and open source design patterns.

View Video

Corelight

Read more about Network Forensics & Incident Response with Open Source Tools

MAC Spoofing Detection with Forescout

Aug 22, 2022 By Forescout In Forescout

Learn how to tackle a common problem known as “MAC Spoofing” faced by many security teams looking to control access to the network. In this video you will gain an understanding what MAC Spoofing is, why it's a problem, and how Forescout is uniquely positioned to help detect it. You will be able to differentiate between the two primary MAC Spoofing scenarios and the strategies used for detection and learn how to configure Forescout to detect both scenarios and test successfully.

View Video

Forescout

Read more about MAC Spoofing Detection with Forescout

Trustwave Security Colony Noted as a Differentiator in Managed Detection and Response Market According to IDC Link Report

Aug 16, 2022 By Trustwave In Trustwave

Trustwave’s new MDR offerings garnered recognition from IDC as differentiated due to the inclusion of Security Colony as part of the offering. Security Colony, now bundled in with Trustwave MDR offerings, is a Resource Library of 400+ documents derived directly from real-life consulting engagements with clients. The project deliverables have been anonymized and made available to clients.

Read Post