Ending Soon: Get a MacBook Air or Surface Pro 7 with 5 or 6 Day Training - Best Offers of the Year!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Sorry, the slides for this webcast are not available for download.

SANS Malware & Ransomware Solutions Forum

  • Friday, July 24, 2020 at 10:30 AM EDT (2020-07-24 14:30:00 UTC)
  • Jake Williams


  • Akamai Technologies
  • Cisco Umbrella
  • Cyberinc
  • Malwarebytes
  • VMRay

You can now attend the webcast using your mobile device!




As organizations continue to deal with emerging threats in the malware space, its easy for some to take a complacent view and say malware havent we done this already? Weve been dealing with this for decades. And while people who take this view arent wrong we have been dealing with malware for decades the threats are evolving and so must our defenses and strategies.

The rise and evolution of ransomware is a great example of just such a progression. In the early days of ransomware, individuals were disproportionately impacted. The vast majority of businesses were well prepared to deal with a single machine (or even a few machines) infected through drive by downloads. Just have good backups and youll be fine. While that might have been true, it is true no more. Ransomware operators have upped their game, adopting APT style tactics and learning evasion techniques from traditional malware authors.

The state of play in the malware and ransomware game continues to change at a rapid pace. Those who are still trying to defend against yesterdays threats will find themselves woefully unprepared to deal with the attacks of today. Those same slow movers are likely to be devastated by whatever comes next. Security vendors have helped defenders by innovating with new classes of solutions that didnt exist even a few short years ago.

The challenge with so much innovation and so many choices is that customers can easily be overwhelmed with the hype-filled marketplace. Which solutions actually work for realistic threat scenarios, which solve unicorn problems, and which simply fail to deliver on the promise of usable security? SANS is convening a forum focused on malware and ransomware solutions that work, with a focus on providing specific technical advice directly from the vendor support engineers fighting on the front lines every day.

Relevant Security Operations Topics:

  • Next-gen antivirus
  • Application whitelisting solutions
  • Anti-ransomware solutions
  • Malware sandbox appliances
  • Real-time sandboxes for application containers
  • Network monitoring solutions for detecting malware command and control (C2)

Speaker Bio

Jake Williams

Jake Williams is a SANS analyst, senior SANS instructor, course author and designer of several NetWars challenges for use in SANS' popular, "gamified" information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attacks on-premises and in the cloud.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.