In a world where cyberattacks are intensifying daily, AI-driven techniques and calculated disruptions from adversaries are redefining how organizations must approach cybersecurity. In 2024, the Unit 42® Incident Response team handled 500+ of the world’s largest cyberattacks — 86% of which directly impacted business operations. Leveraging insights from these incidents, the 2025 “Unit 42 Global Incident Response Report” delivers an in-depth analysis of the evolving threat landscape and attacker's tactics and techniques. In this webinar, explore: 

• The increasing speed of attacks: Understand how attackers leverage AI and advanced tactics to reach exfiltration within an hour, leaving minimal time to respond. 
• Evolving attack techniques: Discover how 70% of incidents now span three or more attack surfaces, emphasizing the need for holistic security across endpoints, networks, cloud environments and human factors. 
• Key emerging threat trends: Explore the rise of disruptive extortion, supply chain vulnerabilities, insider threats and AI-assisted attacks, and how they impact organizations across industries. Gain critical insights, actionable strategies and learn how Unit 42 can help you stay ahead in 2025 and beyond.

In today’s evolving threat landscape, staying ahead of Identity-related risks is critical to maintaining business continuity. Join us for an insightful session where we will share proven strategies to detect, respond to, and mitigate identity threats—with speed and efficiency. What You’ll Learn: 

• How to harness the power of Okta and our technology partners to detect and address threats in real-time. 
• The role of advanced risk analytics, AI-driven tools, and automated response systems in enhancing security. 
• Actionable steps to secure both users and devices while minimizing disruptions. 

This session is tailored for IT and Security professionals looking to strengthen their organization’s defenses. Attendees will learn the importance of implementing integrated solutions, like CrowdStrike, that enable real-time threat remediation and provide deeper visibility into potential Identity risks across the enterprise.

Living off the cloud attacks are on the rise. Executing rapid, cloud-native techniques to escalate privileges, move laterally between environments, and access critical assets, attackers are targeting the cloud more effectively than ever. This session will focus on a real-world living off the cloud attack case study, analyzing a step-by-step account of the attack as it unfolded from attackers’ perspective. We will then switch gears and rewind the attack, explaining how effective detection and response methodologies could — and should — have prevented every step of the attack. Defeating these threats requires powerful centralized visibility and control of all cloud environments and resources. Our key takeaways will therefore be tailored to leveraging the best methodologies and tools to take back the initiative and stop even the most sophisticated cloud attacks.

We're taking a short break. Please visit the Exhibit Hall to connect with our sponsors. They're standing by now to answer your questions. Resources are also available for download in their booths.

With 98% of organizations experiencing vendor breaches, preparedness is critical. This webinar equips CISOs and security leaders with strategies to effectively manage third-party cyber incidents. Learn how to leverage a robust playbook to move from reactive scrambling to proactive resilience. Attend to learn how to:

• Stop Scrambling: Implement rapid response frameworks.
• Communicate Clearly: Develop winning crisis communication plans.
• Become Proactive: Discover preventative best practices.
• Ask the Right Questions: Vet vendor cybersecurity effectively.
• Learn from the Pros: Gain insights from real-world scenarios. 

Don't let vendors be your vulnerability. Join us to streamline response, communicate effectively, and build a stronger digital ecosystem against escalating third-party threats.

Deepfake-related incidents worldwide increased over 245% in 2024, with some regions seeing alarming growth rates of over 3,000%. When it comes to identity crime, organizations are playing a brand new game with high stakes and uncertain rules. Accepting that human eyes and ears are simply not equipped to accurately discern what is and isn’t real in the digital sphere, is your organization prepared for these threats? Join us for this insightful session as we dive deep into the world of deepfakes; discuss common attack vectors across workforce, customer, and B2B identity use cases; demonstrate effective defense strategies; and recommend best practices to stay ahead of attackers and ensure your organization is protected in an increasingly AI-driven world. Key Takeaways:

• The state of deepfake identity threats and the associated business impacts
• Common attack vectors and points of weakness
• Sample scenarios across industries and use cases
• Existing and new approaches to mitigate deepfake-related fraud
• What’s on the horizon as this threat vector continues to evolve

In today’s high-stakes cyber battleground, losses surpassed $15 billion in 2023 alone, according to the latest FBI IC3 Report. Generative AI is now supercharging social engineering attacks and making them more targeted, more scalable, and harder to detect. These threats don’t just exploit inboxes—they infiltrate entire business systems, from finance platforms to ERP tools to executive communications. 

This session explores why traditional detection strategies are falling short—and how to build a more holistic, context-aware defense to protect your enterprise systems, people, and capital.

In This Session, You Will Learn How To:

• Understand how deepfakes, vendor compromises, and executive impersonation are elevating social engineering threats
• Detect threats earlier with context-aware, cross-functional signals
• Protect your people and capital with a holistic defense model built for today’s ecosystem

Traditional threat intelligence often relies on identifying malicious IPs individually, which can be reactive and slow. This session explores different KQL Queries to show how ISPs / ASNs can serve as powerful new IOCs, enabling security teams to proactively monitor entire IP ranges associated with suspicious activity. By tagging and tracking suspicious ISPs, organizations can accelerate threat detection and mitigation, reducing reliance on waiting for specific IP-based alerts. This proposal will help to discover how this approach enhances visibility, speeds up response times, and strengthens cyber defense strategies.

Agentic AI, AI systems capable of autonomous decision-making, are rapidly being integrated into enterprise workflows. This session explores how agentic AI blurs the lines between traditional cyberattacks and adversarial AI, introduces new attack vectors (such as phishing via agentic systems and local model tampering), and necessitates a new breed of incident response playbooks. Attendees will learn how to proactively test agentic AI for vulnerabilities, develop tailored incident response strategies, and foster resilience against evolving threats.

Threat actors are constantly pivoting tactics for ransomware. They’ll do whatever it takes to improve their chances. They want to ramp up their speed, damage and pressure their victims. So, how can organizations effectively defend themselves? Step inside the shoes of Unit 42® experts for a real ransomware attack. Hear about a threat actor who gained access to the systems of a large manufacturer, demanding a multimillion-dollar ransom. See how Unit 42 responded. Join our expert to hear:

• A firsthand account of the investigation. 
• The anatomy of the attack. 
• What steps Unit 42 and the client took to get back up and running. 
• Insights into ransomware trends and evolving techniques. 
• Recommendations for defending against attacks

Identity is the foundation of modern security, yet sophisticated attacks continue to evolve—exploiting misconfigurations, hijacking sessions, and leveraging Identity sprawl to bypass traditional defenses. To stay ahead, organizations need a proactive, Identity-first security strategy. Join us for an illuminating demo where our experts showcase how Okta's Identity Security Posture Management (ISPM) and Identity Threat Protection with Okta AI (ITP) help you provide the visibility and continuous protection you need—no matter your stack or security ecosystem. In this session, you will learn how to: 

• Uncover hidden risks by identifying shadow IT, privileged accounts without MFA, and lingering access
• Detect and respond to active threats in real-time, such as session hijacking
• Implement a comprehensive identity security strategy to protect your entire digital ecosystem 

Don't wait for an identity breach to reveal your blind spots. Watch now to learn how to close identity security gaps.

The cloud moves fast, and security needs to keep up. Wiz gives you full visibility and protection from code to runtime, enabling security, development, and operations teams to work together—without friction. See why leading organizations use Wiz to eliminate risks earlier, simplify security, and accelerate innovation.

Supply chain detection and response (SCDR) is a new cybersecurity solution for supply chain incident responders that reduces supply chain breaches and increases remediation speed. In this webinar, we will explore what you need to know to make an informed decision when evaluating SCDR solutions. Key topics covered in this webinar include: 

• Justifying SCDR investment: Learn about building the business case for investing in this new type of solution. 
• Determining SCDR criteria: Discover the ways SCDR fits in your organization and the capabilities required to achieve desired outcomes. 
• Evaluating SCDR alternatives: Explore the difference between SCDR and alternatives. 
• Implementing SCDR: Consider the range of implementation options and how to determine which one is best for your organization. 
  
  Join us to gain valuable insights and practical advice on how to navigate the organizational challenges that are needed to achieve the goal of safeguarding your digital supply chain and protecting your business from cyberattacks.

This demo showcases the various deepfake detection capabilities provided by Ping Identity. It demonstrates both presentation attack and injection attack detection in real time.

Threat actors are constantly pivoting tactics for ransomware. They’ll do whatever it takes to improve their chances. They want to ramp up their speed, damage and pressure their victims. So, how can organizations effectively defend themselves? Step inside the shoes of Unit 42® experts for a real ransomware attack. Hear about a threat actor who gained access to the systems of a large manufacturer, demanding a multimillion-dollar ransom. See how Unit 42 responded. Join our expert to hear: -A firsthand account of the investigation. -The anatomy of the attack. -What steps Unit 42 and the client took to get back up and running. -Insights into ransomware trends and evolving techniques. -Recommendations for defending against attacks

Identity is the foundation of modern security, yet sophisticated attacks continue to evolve—exploiting misconfigurations, hijacking sessions, and leveraging Identity sprawl to bypass traditional defenses. To stay ahead, organizations need a proactive, Identity-first security strategy.

Join us for an illuminating demo where our experts showcase how Okta's Identity Security Posture Management (ISPM) and Identity Threat Protection with Okta AI (ITP) help you provide the visibility and continuous protection you need—no matter your stack or security ecosystem.

In this session, you will learn how to:

- Uncover hidden risks by identifying shadow IT, privileged accounts without MFA, and lingering access

- Detect and respond to active threats in real-time, such as session hijacking

- Implement a comprehensive identity security strategy to protect your entire digital ecosystem

Don't wait for an identity breach to reveal your blind spots. Watch now to learn how to close identity security gaps.

The cloud moves fast, and security needs to keep up. Wiz gives you full visibility and protection from code to runtime, enabling security, development, and operations teams to work together—without friction. See why leading organizations use Wiz to eliminate risks earlier, simplify security, and accelerate innovation.

Supply chain detection and response (SCDR) is a new cybersecurity solution for supply chain incident responders that reduces supply chain breaches and increases remediation speed. In this webinar, we will explore what you need to know to make an informed decision when evaluating SCDR solutions. Key topics covered in this webinar include: 

- Justifying SCDR investment: Learn about building the business case for investing in this new type of solution. 

- Determining SCDR criteria: Discover the ways SCDR fits in your organization and the capabilities required to achieve desired outcomes. 

- Evaluating SCDR alternatives: Explore the difference between SCDR and alternatives. 

- Implementing SCDR: Consider the range of implementation options and how to determine which one is best for your organization. Join us to gain valuable insights and practical advice on how to navigate the organizational challenges that are needed to achieve the goal of safeguarding your digital supply chain and protecting your business from cyberattacks.

This demo showcases the various deepfake detection capabilities provided by Ping Identity. It demonstrates both presentation attack and injection attack detection in real time.