OnDemand Training - Best Special Offers of the Year Ending Soon - Learn More

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

SANS Malware & Ransomware Solutions Forum

  • Friday, July 24, 2020 at 10:30 AM EDT (2020-07-24 14:30:00 UTC)
  • Jake Williams

Sponsors

  • Akamai Technologies
  • Cisco Umbrella
  • Cyberinc
  • Malwarebytes
  • VMRay

You can now attend the webcast using your mobile device!

  

Overview

VIEW AGENDA here & JOIN SLACK WORKSPACE here.

As organizations continue to deal with emerging threats in the malware space, its easy for some to take a complacent view and say malware havent we done this already? Weve been dealing with this for decades. And while people who take this view arent wrong we have been dealing with malware for decades the threats are evolving and so must our defenses and strategies.

The rise and evolution of ransomware is a great example of just such a progression. In the early days of ransomware, individuals were disproportionately impacted. The vast majority of businesses were well prepared to deal with a single machine (or even a few machines) infected through drive by downloads. Just have good backups and youll be fine. While that might have been true, it is true no more. Ransomware operators have upped their game, adopting APT style tactics and learning evasion techniques from traditional malware authors.

The state of play in the malware and ransomware game continues to change at a rapid pace. Those who are still trying to defend against yesterdays threats will find themselves woefully unprepared to deal with the attacks of today. Those same slow movers are likely to be devastated by whatever comes next. Security vendors have helped defenders by innovating with new classes of solutions that didnt exist even a few short years ago.

The challenge with so much innovation and so many choices is that customers can easily be overwhelmed with the hype-filled marketplace. Which solutions actually work for realistic threat scenarios, which solve unicorn problems, and which simply fail to deliver on the promise of usable security? SANS is convening a forum focused on malware and ransomware solutions that work, with a focus on providing specific technical advice directly from the vendor support engineers fighting on the front lines every day.

Relevant Security Operations Topics:

  • Next-gen antivirus
  • Application whitelisting solutions
  • Anti-ransomware solutions
  • Malware sandbox appliances
  • Real-time sandboxes for application containers
  • EDR/XDR
  • Network monitoring solutions for detecting malware command and control (C2)

Speaker Bio

Jake Williams

Jake Williams is a SANS analyst, senior SANS instructor, course author and designer of several NetWars challenges for use in SANS' popular, "gamified" information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attacks on-premises and in the cloud.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.