Special Offer w/ OnDemand: Get an iPad (32 G), Galaxy Tab A, or Take $250 Off OnDemand Training thru Jan 27


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Why So Many Endpoint Attacks Are Still Going Undetected - And What You Can Do About It

  • Wednesday, May 25, 2016 at 1:00 PM EDT (2016-05-25 17:00:00 UTC)
  • Mark Stacey, Chris Ahearn, John Pescatore


  • RSA

You can now attend the webcast using your mobile device!



Ransomware attacks have surged over the past several months, with large-scale, targeted attacks on the rise. The RSA Incident Response team has recently responded to several of these incidents at client sites.

Learn more about attack trends from SANS expert, John Pescatore, then hear from RSA experts about what your organization can do to detect them, including:

  • Why advanced endpoint attacks like Ransomware are going undetected
  • How to confirm infections quickly
  • Why live memory analysis is critical

See all the details of what's required to quickly detect today's advanced endpoint threats, during this technical webcast.

Speaker Bios

John Pescatore

John Pescatore (moderator) is the director emerging security trends for the SANS Institute. A former vice president and distinguished analyst at Gartner, Pescatore has over 30 years of experience in computer, network and information security. Prior to joining Gartner, he was senior consultant for Entrust Technologies and Trusted Information Systems and a security engineer for the U.S. Secret Service and the National Security Agency.

Chris Ahearn

Chris is an experienced security architect and analyst with over 15 years in the security industry where he has been on the front lines responding to and handling network security threats, conducting network and host forensics across the enterprise, and managing global intrusion cases. He is passionate about detecting and responding to threats on a global scale and helping organizations defend themselves. Chris has provided his services to clients to help architect, implement, manage and operate incident detection and response programs for several Fortune 500 customers across the world.

Mark Stacey

As part of RSA’s Incident Response team, Mark is responsible for network and host forensics and malware analysis while supporting clients perform incident response. He has over 10 years of experience working in network security operations and research for the U.S. government and private sector.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.