As adversaries evolve their ability to evade traditional security controls, intelligence and innovation must also come together to provide new detection and disruption capabilities for defenders. This session will discuss the next evolution of SecureWorks' AETD service technology, Red Cloak. Topics include the endpoint as today’s battleground and the unique approach AETD Red Cloak brings to the fight, and the advantage of coordinated advanced detection across the network and endpoints.
2. Justin Turner
CTU Special Operations
Phil Burdette
CTU Cyber Intel Cell
• The Counter Threat Unit Special Operations team is
dedicated to responding to intrusions from hostile Nation
States and other advanced adversaries on a daily basis
3. 3
Dell - Internal Use - Confidential
Classification: //SecureWorks/Confidential - Limited External Distribution:
Agenda
Why are we losing?
How do we win?
Prove it!
4. 4
Dell - Internal Use - Confidential
Classification: //SecureWorks/Confidential - Limited External Distribution:
Reconnaissance
Lateral Movement
Data Exfiltration
Delivery
Command & Control
Credential Theft
Host Enumeration
Define Defeat
5. 5
Dell - Internal Use - Confidential
Classification: //SecureWorks/Confidential - Limited External Distribution:
Reconnaissance
Lateral Movement
Data Exfiltration
Delivery
Command & Control
Credential Theft
Host Enumeration
Define Winning