Overview
The SANS Threat Analysis Rundown (STAR) is an all-new live streaming series that brings you the inside scoop on what you need to know about cyber threats. Hosted by SANS Instructor Katie Nickels, this series will bring you different voices from around the community to ensure you're up-to-date on what's happening in the threat landscape so you can take action.
Every day, analysts track what adversaries are doing and how we can better protect our networks based on that - but it's often overwhelming to track everything. STAR will let you hear from the people who do this on a daily basis and break down that information to let you take action on it in your own organization. STAR will approach threats from all angles, and you'll get different takes each month. Some months we'll focus on specific adversaries or malware, and some we'll focus on a broader view like industry targeting.
This is an all-new webcast series from SANS focused on:
- Actionable information about current threats
- Bringing together different perspectives from the community
- Highlighting opinions of experts who track threats daily
Important Developments in Ransomware Trends and Exploitation of Major Vulnerabilities
Guest Speaker: Kevin Holvoet
Read this episode's Blog for important links and resources
Archived Sessions
Kaseya VSA attack - July 27, 2021 Katie is joined by John Hammond, Senior Security Researcher at Huntress Labs. Katie and John will chat about the recent Kaseya VSA attack that deployed REvil ransomware, including the latest updates on what happened and what defenders should think about for future potential attacks like this one. Katie and Ryan chat about open sources they use to track the many threats in the ransomware ecosystem, including malware families that commonly lead to ransomware. |
Dissecting BadBlood: an Iranian APT Campaign April 29, 2021 In this webcast, the speakers went over:
|
Making sense of SolarWinds through the lens of MITRE ATT&CK(R) March 04, 2021 In this webcast, speakers went over:
|
Quantifying Threat Actor Assessments January 28, 2021 In this webcast, speakers went over:
|
Behind the Scenes of Law Enforcement and Private Industry Cooperation December 16th, 2020 In this webcast, speakers went over:
|
Making Order out of Chaos: How to Deal with Threat Group Names November 30th, 2020 In this webcast, speakers went over:
|
Spooky RYUKy: The Return of UNC1878 October 28th, 2020 In this webcast, speakers went over:
|
The Value of Commercial Threat Intelligence Sources September 15th, 2020 Two researchers presented their peer-reviewed paper on commercial threat intelligence sources, published recently at USENIX Security 20. They described what the services of two leading vendors consist of, and find that there exists hardly any overlap between their indicator sets - even for specific threat actors - raising the question about coverage. Further, they spoke to 14 professionals who seem to be optimizing not for coverage in their selection of sources, but rather for the time spent by analysts. This session provides empirical insights into the market for commercial threat intelligence and discussion of the implications for professionals. |
Becoming the Adversary: Creating a Defensive Lab to Understand the Offense August 20th, 2020 In this webcast, speakers went over:
|
The Only Constant is Change: Tracking Adversary Trends June 16th, 2020 In this webcast, speakers went over:
|
Threat Hunting and the Rise of Targeted eCrime Intrusions May 26th, 2020 In this webcast, speakers went over:
|
How Threats are Responding to COVID-19 April 10th, 2020 In this webcast, speakers went over:
|
xHunt - An Anime Fan's Attack Campaign in the Middle East March 25th, 2020 In this webcast speakers went over:
|
Cyber Threats To Electric Industry February 12, 2020 In this webcast, speakers went over:
|
Presenter Bio
Katie Nickels
Katie is a SANS instructor for FOR578: Cyber Threat Intelligence and a Principal Intelligence Analyst for Red Canary. She has worked on cyber threat intelligence (CTI), network defense, and incident response for nearly a decade for the DoD, MITRE, Raytheon, and ManTech. Katie hails from a liberal arts background with degrees from Smith College and Georgetown University, embracing the power of applying liberal arts prowess to cybersecurity. With more than a dozen publications to her name, Katie has shared her expertise with presentations at BSidesLV, the FIRST CTI Symposium, multiple SANS Summits, Sp4rkcon, and many other events. Katie is also a member of the SANS CTI Summit and Threat Hunting Summit Advisory Boards. She was the 2018 recipient of the President's Award from the Women's Society of Cyberjutsu and serves as the Program Manager for the Cyberjutsu Girls Academy, which seeks to inspire young women to learn more about STEM. You can find Katie on Twitter @LiketheCoins