Persistence is one of the main aspects that hackers pay special attention to during the malware development and attack phase. The goal is very simple: to be as stealthy as possible. Usually, attackers aim to maintain the presence in the target's network by installing malware on various workstations and servers. However, the main challenge for them is that the malicious code needs to be available also after reboot, so the best solution would be to put it in a place that is not discovered by most of the monitoring tools. Sneaky, right? And when this persistency remains, the problems begin, and ransomware comes to action. Since there are so many places on Windows to stay hidden even from well-known monitoring tools, it would be great to become familiar with at least some of them, especially the uncommon ones! During this session, Paula Januszkiewicz, CEO and Founder of CQURE, Microsoft MVP and RD, Cybersecurity expert demonstrates several less common persistence methods we all should be aware of! All the scenarios which will be shown are taken from real life, so don't miss it and leave with suggestions & ideas how to attain the next level of security in your workspaces.

Crouching Admin, Hidden Hacker: Privileged Access & the Unnoticed Masters Part 2 Are there cyberattacks that are effective, reliable, and almost always work? Of course! Even when an organization’s infrastructure is well managed, patches are regularly installed, and the network is monitored – there are hackers that still find their way quietly in; be it via a misconfiguration, social engineering, or long-forgotten privileged account. There is always a hidden hacker waiting to strike! In this webinar with hacker, pen tester, Enterprise Security MVP and cybersecurity expert, Paula Januszkiewicz, learn: What are the biggest mistakes people make in multi-cloud and infrastructure security? Can moving to the Cloud help diminish the risk of a cyber breach? And how can you measure its effectiveness? How do hackers exploit misconfigurations to gain privileged access to accounts? How to protect against ransomware, malware, APTs, and even malicious insiders with a Zero Trust approach to security. Leave this webinar with world-class tips on how to attain the next level of security in your workplace…no crouching admin necessary.

The number of cyberattacks and breaches rises every year. The complexity and sophistication of attacks is also rising, and businesses have to reckon with extortion, regulatory reporting, and legal implications of each breach. Unfortunately, very few are prepared to deal with major attacks and breaches can produce catastrophic consequences. But there is a way to better mitigate risks: extending your technical incident response program to cover executive teams and their plans for leading through cyber crises. Join this session to learn: Cyber crisis that developed into catastrophes What went wrong? How could it have been handled differently? What preparatory steps would enable teams to take control? Core elements of a cyber crisis plan The difference from technical incident response plan Understanding the critical role executive level plans have How to reduce adverse effect How to save money How to have a limiting impact to internal teams

For many years IT (information technology) networks have operated independently of OT (operational technology) networks. But digital transformation and the cloud drove convergence of the two as OT networks were connected to other networks and (ultimately) to the Internet. While this convergence brings new opportunities, it has also fostered a need for IT and OT teams to work together to ensure operations are protected and available. In a world where bad guys can search for misconfigured or vulnerable OT infrastructure using technologies like Shodan, the OT side of the house can represent both tempting targets and a pathway into the organization for lateral movement. In this session hosted by BeyondTrust, Diana Kelley will take a look at the differences between IT and OT and at the important characteristics that are shared across both. Rather than being at odds with each other, IT and OT teams can be better together. Topics to be discussed: Why availability is so important in an OT environment How segmentation in OT differs from IT Need for on-premise OT security controls Real world examples of IT/OT security team collaboration