How Network Detection Helps Fill The Gaps – Steve Porcello – ESW #207

Sponsored By

sponsor
Visit https://securityweekly.com/gigamon for more information!

The recent surge of ransomware attacks has highlighted a shift in tactics employed by threat actors looking to extort organizations. Their methodology has changed from a quick, opportunistic attack to a prolonged, targeted approach. This shift in methodology presents threat groups with the opportunity to encrypt more critical data, but also presents security teams with the opportunity to detect activity before data is encrypted. In this talk we’ll explore how this allows security analysts to use network detection and response capabilities to discover malicious activity between initial compromise and encryption.

This segment is sponsored by Gigamon.

Visit https://securityweekly.com/gigamon to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

How Network Detection Helps Fill The Gaps

https://atr-blog.gigamon.com/2020/03/18/quality-control-keeping-detections-fresh/

https://www.youtube.com/watch?v=LDpQ0Hy54P4&list=PLMnYhIkmPmIdD1ZCAwLn9AP8wYyG24nEk&index=4

https://blog.gigamon.com/2018/09/27/how-threat-hunting-can-evolve-your-detection-capabilities/

Hosts

Adrian Sanabria
Adrian Sanabria – Senior Research Engineer
Matt Alderman
Matt Alderman – CEO
Paul Asadoorian
Paul Asadoorian – Founder & CTO

Guests

Steve Porcello
Steve Porcello – Senior Security Engineer

Announcements

  • Join Amit Bareket, Co-founder & CEO of Perimeter 81 & Paul Asadoorian for a technical deep-dive into the problems inherent in legacy VPN technology. Together they will explore solutions for the modern workforce & how momentum toward perimeter-less architecture is helping redefine the future of cybersecurity. Register Now by visiting https://securityweekly.com/perimeter81