homepage
Open menu
Contact Sales

Rekt Casino Hack Assessment Transformational Series Weak Security Program, Unprotected Systems, and Poor Detection & Response Part 2 of 4

  • Wednesday, 10 Feb 2021 11:59AM EST (10 Feb 2021 16:59 UTC)
  • Speaker: Kevin Garvey

The fictitious Rekt Casino fell victim to a ransomware attack which resulted in personal identifiable information, HR records, and financial information being exfiltrated. The root cause of the problem was a lack of governance, risk, and compliance, along with properly configured technical and administrative controls. It could also be argued that Rekt Casino lacked a strategic plan as well as an inherent security culture. Looking at the history of Rekt Casino, we are going to identify when the transition from the old school approach of information security could have been transitioned to the enterprise risk management approach.

The mistake organizations often make is to focus on defenses such as endpoint protection, firewalls, and intrusion prevention without a good understanding of what the threats actually are. It's as if Rekt Casino fortified their castle to protect against bows and arrows, yet the adversaries attacked with a trebuchet. '

If the executives, technology team, and board of directors had been paying attention to news stories, security guidance, employees ' approach to protecting company assets, or even attending security-related conferences, they would have gotten the message that security had become a critical concern due to the threat landscape. It's not enough to acknowledge that security requires more attention, you also have to act on that knowledge.

In this Part 2 of 4 webcast, we will quickly review the overarching history of Rekt Casino, what they had in place for protections, and the outcome. Then we will dive deep into what could have been done to prevent the breach from occurring in the first place in regards to a security program built to protect data, systems, networks. We will dive into topics such as:

  • Building a strong security program
  • How best to protect networks, systems, and data
  • Leading Modern Security Initiatives
  • Detecting and Responding to Attacks

Don't wait! Register now for the other webcasts in the series!

Login to Register

Related Content

Blog
ECE_-_Blog_-_Enhancing_Your_Cyber_Defense-_Comparing_Simulations_and_Tabletop_Exercises_340_x_340.jpg
Cybersecurity Leadership
Enhancing Your Cyber Defense: Comparing Simulations and Tabletop Exercises
Simulation and tabletop exercises are both valuable tools for enhancing incident response and strengthening organizational resilience.
Chris_Wilkes_-_370x370_-_headshot.png
Chris Wilkes
read more
Blog
NIS2_-_Blog_-_Beyond_Compliance-_Leveraging_NIS2_for_Enhanced_Cyber_Resilience_and_Leadership_Accountability_340_x_340.jpg
Cybersecurity Leadership
Beyond Compliance: Leveraging NIS2 for Enhanced Cyber Resilience and Leadership Accountability
To meet NIS2 risk assessment standards, organizations have multiple steps laid out ahead of them.
370x370_James-Tarala.jpg
James Tarala
read more
Blog
N2C_blog_image.png
Security Awareness, Cybersecurity Leadership, Cloud Security, Open-Source Intelligence (OSINT), Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting, Cybersecurity and IT Essentials, Cyber Defense, Offensive Operations, Pen Testing, and Red Teaming, CyberLive, Workforce Development, Career Development, Why Certify, Imposter Syndrome, NetWars, Mentorship, Job Hunting, Operating System & Device In-Depth, Artificial Intelligence (AI)
A Visual Summary of SANS New2Cyber Summit 2024
Check out these graphic recordings created in real-time throughout the event for SANS New2Cyber Summit 2024
370x370-person-placeholder.png
Alison Kim
read more