Not only do cybercriminals make money by committing cybercrime, but they also expand their operations by offering services to individuals without strong technical skills in malware development. This business model is known as Malware-as-a-Service (MaaS), and it operates on various sites of the “shadow” internet, including the Darknet. MaaS generates stable profits, enabling cybercriminals to maintain a team and continuously improve their services to carry out attacks on companies and individual users.

Through our research, we have identified 97 families of malware that have been distributed in the MaaS format – or “by subscription” – over the last seven years. These families include ransomware, various loaders, backdoors, botnets, and infostealers. In this webinar, Alexander Zabrovsky, Digital Footprint Analyst at Kaspersky, will delve into the inner workings of MaaS in the Darknet and address the most relevant issues:

• How did malware become a full-fledged product, and how did the “subscription” model become a new standard for cybercriminals?
• Why has YouTube become one of the key platforms for distributing malware? Who are traffers, and what is their function?
• Which families of malware are mentioned most often in the Darknet, and how does the Darknet services market depend on the news agenda?

In large companies, the sheer volume of information resources makes their attack surface significantly larger, compared to smaller businesses. Numerous factors contribute to this exposure, including networks spread across various locations that are consolidated into a single infrastructure, mergers and acquisitions with companies possessing lower security levels, outdated hardware and software, and more.

The level of preparedness for a potential incident directly impacts the effectiveness of the response and allows you to mitigate the attack’s impact. In this webinar, you will learn how to enhance incident responses for large-scale networks. Konstantin Sapronov, Head of Global Emergency Response Team at Kaspersky, will provide you with the following practical insights on:

• Optimizing incident response processes beyond mere scaling up by increasing personnel and systems involved
• Understanding incident response from a management perspective and why it should be an ongoing, cyclical process
• Exploring key principles for a successful response, emphasizing the significance of not only technical skills but also quality processes and soft skills
• Unveiling the limitations of backups in mitigating the consequences of an incident and discovering effective strategies to address them

Modern cars are no longer just a means of transportation. Their built-in services can manage everything for drivers and passengers alike from seat heating, to using voice-controlled GPS to find a coffee, or make theater ticket reservations. Along with the development of consumer services, driver safety services have also been developed – distance sensors to neighboring cars, speed limit recognition and the eCall safety system, to name a few.

These hi-tech solutions designed to improve the user experience and make your journey safer, are architecturally based on algorithms and technologies that in themselves carry threats to information security. The wider the user experience, the wider the attack surface for an attacker.

During the webinar we will explore:

• Threat landscape: how has changed and evolved over the last 10 years
• Top threats the automotive industry is exposed to
• Standards of automotive security
• Trends in automotive security

Modern ransomware has transitioned to a Ransomware-as-a-Service (RaaS) model, with many groups sharing common tactics, techniques, and procedures in their attacks, or TTPs. These TTPs, described in MITRE ATT&CK, are like a glue that binds together multiple diverse teams operating at various levels with different priorities.

The Global Research and Analysis team (GReAT) at Kaspersky analyzed thousands of operations made by the different RaaS groups – and outlined the TTPs that the cybersecurity industry should consider in order to deliver a stronger protection for different organizations. In the webcast, Marc Rivero, a senior security researcher at GReAT, Kaspersky, will delve into the main TTPs used by modern ransomware groups and shed the light on how to analyze them and use in attack detection and prevention.

The talk will include:

• Kaspersky’s statistics on ransomware evolution
• Attack workflow using MITRE ATT&CK
• Overview of TTPs used by main ransomware groups
• Q&A session

Year after year, ransomware continues to make the news headlines. In their quest for profit, attackers target all types of organizations, from healthcare and educational institutions to service providers and industrial enterprises, affecting almost every aspect of our lives.

Ransomware gangs are constantly evolving and, it is crucial to be aware of their techniques and toolsets to thwart their attacks. To discover the latest trends in the ransomware market, please join Sergey Lozhkin, Dmitry Galov, Dan Demeter, and Marc Rivero, senior security researchers at Kaspersky’s Global Research and Analysis Team.

In this webcast you will learn about:

• An overview of ransomware gangs in 2022
• Updated techniques ransomware operators use in 2023
• The types of targets ransomware gangs are after
• How to protect your systems from a ransomware attack

Despite the recent cryptocurrency market downturn, cybercriminals continue keeping a close eye on crypto technologies and advancing their attacks on crypto industry.

To discover more about the latest trends in the cryptocurrency threats, please join Vitaly Kamluk, Head of APAC Unit, Global Research & Analysis Team and Dan Demeter, Senior Security Researcher at GReAT . During their talk, Vitaly and Dan will provide an overview of the variety of modern crypto-related threats, ranging from social engineering attacks to Advanced Persistent Threats (APT) targeting businesses, to ensure you are informed about major threats to escape them and keep your crypto assets safe.

In this webcast you will also learn about:

• Updated techniques cybercriminals use to target the crypto industry today
• What kind of targets cryptocurrency-oriented fraudsters are after
• How to keep your company’s systems protected from the threats targeting crypto

Cybercriminals tend to be secretive and act without disclosing their identity. However, when it comes to ransomware negotiations, the victim and the attacker have to “meet” face-to-face. Moreover, by the time the two sides meet to discuss the price, the attackers have already gained control of a company’s data or network – that puts the victim in a weak position.

What does it like to negotiate with someone who is trying hard to get a ransom whilst remaining in the dark? What can you expect from such negotiations? In this webcast, Marc Rivero, senior security researcher, GReAT at Kaspersky will observe various tactics used by ransomware groups, explain how the companies are trying to negotiate with these cybercriminals, and what outcome such negotiations may have.

In this webinar, you will learn:

• What Ransomware as a service (RaaS) model is
• What a data leak portal in RaaS terms is
• About ransomware negotiations: stages, means of communication
• What to do if you have been reached by a ransomware group
• Q&A session

As the world discusses ChatGPT-3 and its impressive capabilities, the business community is concerned about the AI’s potential to change the game for cyber criminals and wreak havoc in the world of defense organizations. Should businesses soon expect a wave of even more advanced cyber-attacks or simply more attacks? Will current cybersecurity solutions be enough? Or will ChatGPT instead provide cybersecurity specialists with more efficient and smarter defensive and threat hunting tools?

In this webinar, Kaspersky experts will discuss how ChatGPT currently influences the cyber threats landscape and cybersecurity in organizations, and contemplate whether this is a real game changer for the industry and, in particular Security Operation Centers (SOCs). The experts will also discuss the potential benefits of using ChatGPT in threat hunting and malware analysis.

In this webcast you will find out:

• If ChatGPT can really influence the threat landscape. Where can cyber criminals use it, and will it be effective?
• Will the emergence of ChatGPT and similar AI language models lead to increased cybersecurity costs?
• If ChatGPT is capable of becoming an autonomous hacking AI-tool
• How can cybersecurity experts employ ChatGPT: a demonstration of a scanner for Indicators of Compromise (IoCs)

As the financial threat landscape has been evolving dramatically over the past few years, Kaspersky experts believe it is no longer enough to look at the threats to traditional financial institutions. We must assess financial threats as a whole. The cybercrime market has been developing extensively, with the overwhelming majority of attackers pursuing one goal – financial profit.
This year, Kaspersky researchers have decided to adjust their predictions accordingly, expanding them to encompass both crimeware developments and financial cyberthreats. In a webinar on crimeware and financial threats, Kaspersky’s GReAT representatives – Dan Demeter, Dmitry Galov, and Marc Rivero – will analyze the key events and trends of 2022 and forecast several important tendencies expected in 2023.

Contents:

• A look back at 2022 financial cyberthreats predictions
• An overview of significant events and trends of 2022
• Predictions for 2023
• Q&A session

The political turmoil of 2022 brought about a shift that will resonate in cybersecurity for years to come and have a direct impact on the development of future sophisticated attacks. The 2023 forecast is based on the expertise of the Kaspersky Global Research and Analysis Team (GReAT), and the operations it has witnessed while tracking more than 900 APT groups and campaigns this year.

During the session, GReAT security researchers David Emm and Pierre Delcher will guide you through the trends were tracked throughout 2022 and the implications that last year’s events may have in 2023.