Pittsburgh Cybersecurity Conference

MXDR helps organizations detect and respond to cyber-attacks before the attacker’s objective is completed. This presentation will cover:

• What is ‘getting left of bang’?
• Why is it so hard?
• How MXDR makes it easy
• Customer use cases
• 2023: Findings from 35,000 Customer SitReps
• How AI will drive the “Autonomous SOC”

Our presentation will show how MXDR compresses mean-time-to-detect and mean-time-to-respond at the lowest possible cost, and how AI will soon collapse all three.

Recent Arctic Wolf research discovered that 48% of organizations identified a data breach incident within the last 12 months, despite over $71B USD being spent on mitigation efforts every year. When we factor in the average cost of a ransomware attack growing year-over-year, it becomes obvious these attacks are big business with no end in sight. Still the question remains, what do we do to address and prepare for future threats and how are cybersecurity leaders taking steps to secure their organizations? This discussion will focus on Arctic Wolf research into security threats and trends facing security teams and what are the top threats predictions practitioners should be preparing for.

The shift to the cloud has driven most organizations to place their sensitive data in SaaS apps. This has triggered a chain reaction, turning the browser into the most critical working interface and making account takeover the ultimate adversary goal.

As a result, malicious browser extensions, compromise of reused passwords, and advanced phishing attacks are increasing in volume and sophistication, and prove to be a challenge security teams cannot overcome.

In this session we’ll take a closer look at account takeover attacks. We’ll analyze their flow and understand the multiple ways they use and exploit the browser –  accessing the critical identity data it stores, as a place to lure victims to with social engineering, and, most importantly, a malicious access vector to targeted SaaS resources. Through this analysis we’ll come to understand why these attacks are a blind spot for today’s network and identity controls. We’ll conclude by revisiting the browser and show how a security mechanism that operates on the browser session itself can fundamentally change the equation and make protection against account takeover within reach.

In today’s ever-evolving threat landscape, securing your assets and infrastructure has become a formidable challenge. Traditional defense walls have fallen with rise on-the-go workforces and the relentless onslaught of cyber adversaries. Adversaries now armed with generative AI, evading defenses and fooling users. But fear not, there’s a beacon of hope from the most fundamental internet infrastructure used for almost everything on the web—DNS.

In this session, we’ll break down the power of DNS as a pivotal web security element in safeguarding your business against ransomware and other insidious threats:

• Unmasking the Phishing Threat: How deceptive phishing tactics open the door to digital mayhem and how to spot them to keep your organization safe.
• Multi-Layered Defense with Web Filtering Using DNS: Discover why the DNS layer is your first line of web defense and how it can safeguard your assets and infrastructure from ransomware attacks.
• Using AI to Supercharge DNS: How AI can be used to keep up with the constantly evolving Internet and how ML can be used to analyze each DNS query to prevent zero-day threats before they have a chance to resolve and infect a machine.
• Compliance and Security Frameworks: Using DNS as a web defense isn’t just a nice-to-have; it’s increasingly essential for staying compliant with the big cybersecurity standards like ISO 27001, CMMC, and NIST.