Name: How Dark Web Credentials Lead to a Software Supply Chain Attack
Start: 2023-11-30T16:27:00Z
End: 2023-11-30T16:27:57.000Z
Location: BrightTALK
Rating: 0

Centered on intelligent privilege controls, CyberArk provides the most comprehensive security offering for any identity - seamlessly securing human and machine identities accessing workloads from hybrid to multi-cloud, and flexibly automates the identity lifecycle all with continuous threat detection and prevention – protecting organization’s identities and most critical assets by enabling Zero Trust and enforcing least privilege.  

The techniques, tactics and procedures (TTP’s) used to bypass security controls continue to evolve at a rapid pace. Web-based applications have become essential to life and work, and our web browsers, which seemingly know everything about us, have become the prime targets for credential stealing attacks. In fact, threat actors and credentials stealing malware commonly target browsers to compromise stored credentials and session cookies, for they hold the secrets.
Like updating passwords on a regular basis, clearing web browser cookies is a cyber hygiene practice neglected by most. If hijacked, these cookies will enable attackers to bypass Multi-Factor Authentication (MFA), Single Sign-on (SSO) and gain access to critical business applications. Threat actors can use this technique as a jumping point to deploy malicious code, social engineer, and further carry out their attack.
Hear from Shay Nahari, VP of CyberArk Red Team and Andy Thompson, Research Evangelist of CyberArk Labs as they discuss and demonstrate how cookies and session IDs can be stolen with ease and how CyberArk Endpoint Privilege Manager (EPM) credential theft protection can prevent this and many other emerging techniques from being used against your organization.

No More Cookies for You: Attacking and Defending Credentials

In this webinar, Jeff Vealey explores least privilege in cybersecurity, using real-world examples of weaponized applications like PrintNightmare and Teams GIFMeControl. Beginning with a precise definition of least privilege, the analysis underscores its critical role in strengthening digital defenses.
Examining the historical backdrop of zero-day vulnerabilities, the webinar discusses traditional security approaches, setting the stage for understanding the power of least privilege in enhancing security postures and mitigating potential breaches. Together, we will focus on the proactive measures necessary to navigate the dynamic threat landscape successfully. This event aims to equip cybersecurity practitioners with actionable insights to fortify systems against emerging threats.

Mitigation of Zero Days Using Scripting and Dynamic Policy Application

Are you having challenges getting your PAM project phase 1 goals completed with your PAM vendor? Are you looking to expand beyond traditional PAM to meet modern security, audit and cyber-insurance requirements, but you may be questioning your PAM partner’s ability to support you. CyberArk works with companies just like you, to help you get your PAM program right.

The world has changed exponentially in the past 5 years and CyberArk has evolved with it. Success requires a native experience and integration with modern tools, creating a process that does not slow operations but measurably increases security and allows for improved audit.

Join us with CyberArk’s David Adamczyk VP, Sales Strategy and Development and Matt Tarr, Solutions Architect. We look forward to sharing how our investments in technology, people, and process have allowed us to partner with and enable organizations to meet their foundational and current needs without slowing the business.

PAM Growing Pains You Didn't Know You Had

How are you securing high-risk access beyond IT admins? Join CyberArk and "ChatGPT" to discuss strategies for evolving resource-strapped privileged access management (PAM) programs and better protecting vendors, engineers and workforce users.

This session explores how CyberArk's Identity Security approach can help organizations overcome these challenges in hybrid and multi-cloud environments while maintaining a strong operational posture.

Modern PAM Use Cases: Rewrite the Script On Your Identity Security Program

New identities, new environments and new attacks methods require a new approach to secure your organization’s most valuable resources. The threat landscape looks dramatically different today, and more than half of CISOs (52%)* feel their board and senior leadership are not completely prepared for the cyber risks they foresee.

Employees and third-party vendors work from anywhere, on multiple devices. Any human and machine identity can be assigned high-risk permissions and become a “privileged user.” Hybrid and cloud environments are massively complex. Threats, from AI-fueled ransomware to complex software supply chain attacks, are constantly growing in sophistication.
Topics covered include:
• Cyber debt resulting from exponential investments in digital and cloud initiatives
• Workforce trends that intensify insider threats
• An identity security approach that delivers measurable cyber risk reduction
Today’s threats require an identity security approach built to protect every identity (human and machine) across every environment. Get clarity on threats and perspective on how CyberArk and transformational organizations keep a step ahead of attackers.
*https://fticommunications.com/topic/trending-topics/ciso-communications-redefined/

Fireside chat: Trends Driving an Identity Security Approach

Watch this webinar to learn about common enterprise scenarios where passwordless authentication can be implemented and ways to approach passwordless adoption, including: transitioning to passwordless authentication, security benefits and considerations for various passwordless methods, real-world examples of customer implementations and what to look for when evaluating passwordless providers.

Going Passwordless for Enterprises Key Considerations for Success

Okta's support case management system was breached by a threat actor using stolen credentials. Watch as CyberArk resident experts, Khizar Sultan and Andy Thompson, deconstruct the events of this breach and share strategies organizations can take to mitigate the risks of identity attacks using strong security processes and operational procedures.

Mitigate Your Risk with Six Steps and New CyberArk HAR Tool

Your Privileged Access Management (PAM) program is invaluable in protecting your organization from cyberattacks. You are undoubtedly keeping your business and its most valuable assets more secure by deploying PAM controls to protect critical accounts from compromise. But the pressure is on, and all eyes are on you — the security expert — to keep your program agile and protect against tomorrow’s attacks...often with limited resources. What if you could optimize your PAM processes through automation to free up time and resources, all while tightening security? You may not be aware of the various ways you can make easy adjustments to your PAM program. Watch this webinar to learn ways to do more with less, strengthen zero trust and eliminate manual efforts.

3 Easy Ways to Automate PAM for a Huge Impact

The modern threat environment continues to evolve, with automation, the move to the cloud, software as a service, AI, new user expectations and increasingly sophisticated attacks from threat actors. How do we cope with those changes today - and the certainty that there will be new challenges tomorrow?

We do so by addressing the fundamentals of attack that don't change: Attackers use deception, steal identities and escalate privileges until they reach their target - and we evolve our defenses in line with the changed context.

"We can't secure everything on day one. We need a risk-based access approach. We need to categorize the access use cases and secure the highest-risk access first, said David Higgins, EMEA technical director, CyberArk.

In this interview with Information Security Media Group, Higgins also discusses:

-How to address the main challenges faced by defenders today;
-What our strategy needs to be in order to cope with tomorrow's unknown threats;
-How ID has played a key role in security and will continue to do so.

Since joining CyberArk in 2010, Higgins has worked to help the world's leading - and most complex - organizations to secure and protect their privileged access. Today, he advises clients on threats associated with privileged escalation, lateral movement and credential theft and discusses best practices and driving innovation around privileged management processes.

How PAM Tackles Accelerated Change in the Threat Landscape

Automate and secure your DevOps pipelines by shifting security left. See how CyberArk works hand-in-hand with Red Hat Ansible and OpenShift platforms.

Application Security & Automation with Red Hat

The goal of the Attack & Defend series is to inform organizations about current threats in an engaging way, while arming participants with best practices to reduce risk. For a reality-based experience with timely defense insights, we tap current CyberArk Labs research on threats seen and experienced in the wild, as well as insights gained from actual breaches our incident responders have addressed. We simulate a head-to-head battle.
In this session, we demo some of the most common misconfigurations in Cloud and DevOps environments that attackers can exploit and show you how to effectively mitigate risk. Zero-days grab headlines, but an attacker is more likely to use one of the exploits we demonstrate.

Underestimated Risk: Common Cloud and DevOps Misconfigurations

As a security leader you are challenged with identity proliferation due to cloud adoption, securing systems and applications, the ever increasing amount of vendors, contractors, and third-parties, and sprawling attack vectors. This evolving attack surface has exposed an urgent need for modern use cases in your PAM program.

Join us on-demand with CyberArk's Brandon Traffanstedt, Sr. Director Field Technology Office and Ryne Laster, Product Marketing Manager as they discuss the following modern PAM use cases:

• Just-in-time access to cloud workloads
• Reducing privileges in cloud roles to advanced credential management
• Vendor consolidation
• The role AI is playing in identity-based attacks

Whether you're building a new PAM program or rebuilding your current PAM strategy, the time to level up is now and CyberArk has you covered.

Why It's Time to Level Up Your PAM Program

Learn how PAM solutions address IT security audit requirements for privileged accounts by eliminating inconsistent processes, implementing least privileged, remediating compliance gaps, and streamlining session audit reviews. These processes help organizations meet global compliance and regulation frameworks where standards and certifications are required. CyberArk covers all industries and major compliance frameworks such as SOX, HIPAA, PCI DSS, NIS2 and a jumpstart to CMMC compliance as well as applies security controls to meet cyber insurance requirements.

In this webinar we covered:
• How Implementing a PAM solution can quickly reduce risk of privileged accounts and credentials, with reporting to satisfy audit and compliance
• Streamlining audit and compliance processes
• Industries and regulations where CyberArk solutions helps fill gaps
• Applying security controls to meet cyber insurance requirements

Ready to learn from industry experts how to ensure a more secure and
compliant future for your organization?

How to Achieve Continuous Audit & Compliance with PAM

Security-minded companies know that Access Management (AM) is more than protecting access against breaches. They deploy AM solutions to enable businesses, enhance user experience, and reduce IT overhead. Despite being a standard component of cybersecurity and a central pillar of the enterprise technology portfolio, Access Management programs vary greatly from company to company. Some IT organizations are laying the foundation, while others are well on the way to operational excellence. No matter where your organization is on the Access Management journey, the need to secure and maintain control of identities, as well as defend against modern attacks is always there. This webinar reveals the the best practices to create more secure and sophisticated Access Management programs that defend IT systems against cyberattacks, identity-focused security breaches, and data loss.

From Foundational to Exceptional: Best Practices for Access Management

On September 11 threat actors initiated a social engineering attack that led to the near shutdown of MGM Resorts International.  This attack highlights the importance of deploying a wide variety of robust security measures and best practices in an organization’s strategy for protecting identities, especially those that are highly privileged.
CyberArk resident experts, Khizar Sultan and Andy Thompson, examine the root causes and lessons learned from the MGM Resorts attack based on publicly available sources. They also provide insights into properly implementing effective security measures and highlight the consequences of failing to do so.

Anatomy of the MGM Hack: A CyberArk Labs Perspective

Strong Identity Security requires a multi-layered approach to mitigate risk and proactively protect your resources. The more opportunities to act on suspicious data, the better. In this webinar, learn how to orchestrate threat responses leveraging contextual identity data with CyberArk Identity Flows, a low-code orchestration solution.

Better Security with Threat Response Automation

The CyberArk Blueprint was designed to help organizations better understand the attack chain, assess their own security, provide Identity Security best practices and ultimately help build a plan to measurably reduce risk.

Gain actionable insights, including foundational concepts of Identity Security maturity into your strategy, priority initiatives to mitigate threats and making the most of your existing capabilities. We also share findings from a recent report on Identity Security maturity and explain how those insights play a role in the decision-making process.

Identity Security Blueprint to the Rescue

Organizations are experiencing an explosion of human and machine identities, driven by digital initiatives and rapid innovation. This in turn has significantly increased exposure to ransomware, software supply chain attacks and other threats, giving rise to a new generation of cyber criminals.
Cyber criminals continuously seek to make their attacks more resilient, more disruptive and harder to counter. Harder yes, but not impossible. Our extensive security experience is rooted in protecting privileged access, a practice that must extend beyond the IT admin to all identities – human and machine.
For a reality-based experience with timely defense insights, we tap current CyberArk Labs research on threats seen and experienced in the wild, as well as insights gained from actual breaches our incident responders have addressed. We will simulate a head-to-head battle.
In this session, our team will simulate a software supply chain attack in which an attacker uses credentials obtained on the dark web to breach a managed service provider (MSP) and execute ransomware on an unsuspecting customer.

How Dark Web Credentials Lead to a Software Supply Chain Attack

Identity Security

Cyber Attacks

Privileged Access Management

Supply Chain

Zero Trust

Supply Chain Attacks

Ransomware

Cyber Crime

Identity Management

Breach Detection

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How Dark Web Credentials Lead to a Software Supply Chain Attack

Presented by

About this talk

More from this channel