MSSP Virtual Cybersecurity Summit 2024

Ransomware has emerged as a pervasive threat in recent years, wreaking havoc and causing millions in damages across global organizations. Its rampant proliferation shows no signs of slowing down, with a diverse range of perpetrators adopting it as a powerful tool for asset seizure and extortion. From criminal syndicates to activists and even sanctioned governments, ransomware is utilized for various nefarious purposes, including acts of cyber warfare. 

However, this threat isn't novel;it draws eerie similarities to historical high seas piracy. In this talk, we will delve into the historical, economic, and geo-political parallels between modern ransomware cartels like DarkSide and Conti and the marauding pirates and privateers of the 17th and 18th centuries, offering insights into the evolution and implications of this digital menace.

Customers are increasingly asking MSSPs for visibility into the dark web - the area of the internet where cybercriminal gangs plan their attacks, purchase malware and exploits, and leak their victims data. In this talk, dark web intelligence expert Andy Scutt will explain how monitoring this hidden part of the internet can not only help MSSPs assure their customers that they are taking a proactive approach to their security but also add additional value into the current solutions and services they offer. Join this session to find out how dark web intelligence can help you differentiate your services, increase your margins and - vitally - protect your customers from emerging threats

 In challenging economic conditions, security operations professionals must achieve more with fewer resources. Open eXtended Detection and Response (XDR) solutions address these constraints by enhancing efficiency, reducing costs, and improving threat detection and response. Unlike traditional, siloed security tools, Open XDR integrates and correlates data across various platforms, providing a unified security view. This approach allows quicker threat identification and mitigation, reducing the operational burden on security teams. With advanced analytics and machine learning, Open XDR improves threat detection accuracy, minimizing false positives and focusing on genuine threats. By automating tasks and streamlining workflows, Open XDR helps maintain strong defenses despite limited resources, making it crucial for today's economic challenges.

In the cybersecurity world, Red, Blue, and Purple teams have established their roles in fortifying defenses and improving organizational resiliency. However, the spotlight often bypasses a crucial player—the Yellow Teams—operating at the intersection of development, IT, and the cloud. 

Using the familiar color wheel analogy, this insightful discussion describes the yellow team’s pivotal role in fortifying software and infrastructure by seamlessly integrating Red and Blue techniques – improving tech resiliency. Key topics include: 

• Unveiling the essentials for tech-savvy professionals to integrate security 
• Crafting a vibrant palette: transforming Yellow Teams into dynamic orange and green forces 
• The collective advantage: reducing risk via confident, resilient teams

As the cybersecurity landscape evolves, Managed Security Service Providers (MSSPs) face a myriad of challenges and opportunities. This presentation explores the future trends and challenges for MSSPs, emphasizing the increasing demand for their services amidst escalating cyber threats. Key commercial challenges include aligning payment models with customer preferences, demonstrating ROI, and generating leads. Technically, MSSPs must address the ever-evolving threat landscape, zero-day vulnerabilities, skill shortages, and the balance between automation and human expertise. The presentation also highlights SOCRadar's role in supporting MSSPs with modular licensing, advanced threat intelligence, and comprehensive training programs, ensuring they remain resilient and adaptive in this dynamic environment.

Wireless attacks are becoming increasingly sophisticated and considered today to be the largest and ever growing attack surface. The bigger challenge is with the perception that traditional and widely used network security and IT threat protection solutions are adequate to address the risks.

The need for hyper connectivity and the ease that comes with mobility and speed of deployment without wires has led to an exponential growth in the adoption of wireless/broad spectrum RF for communications. This means that the wireless airspace that needs defense does not consist of just PCs, phones and servers on Wi-Fi and Bluetooth. The airspace also comprises smart buildings, smart city, industrial automation, medical equipment, emergency communications, etc operating on a wide range of RF bands from 400 MHz to 2.1 GHz. (why limit the range? some things are going to transmit higher and lower in the future)

Additionally transmissions such as NFC, RFID, GPS and even Cellular communications are exposed to the same WiFi threats - jamming, spoofing, main-in-the-middle. On network monitoring tools for protection are rendered useless as many of these connections are ‘side channel’ or ‘downstream’ oriented.

This presentation will shed a bright light to this vast wireless/RF attack surface, present solutions that exist today and highlight the need for further innovation and collaboration as it will take a village to enforce Zero Trust.