"Phishing emails" aimed at stealing authentication information by impersonating a certain person or brand are mainly attacks using URLs. I know there are a lot of things. In this video, we analyze recent trends based on statistical information and actual damage cases related to phishing emails, and introduce countermeasure solutions.

Most cyber crimes are said to start with emails. Although companies have introduced e-mail security products and taken countermeasures, the current situation is that attackers are also trying to infiltrate using all possible means. In particular, the malware "Emotet", which has been wreaking havoc recently, constantly changes its modus operandi and forms, and continues to evolve to evade security measures. As a result, many companies rely on the IT literacy of their employees, falling into an extremely individualized state. This video explains the effectiveness of "FireEye Email Security Cloud Edition" against the latest threats based on specific detection information. If you are worried about the latest email threats such as Emotet, or if you are worried about what specific measures you should take, please take a look at this video.

The burden on the security operation site tends to increase in response to recent sophisticated and diversified cyber attacks, and we are searching for the optimal operation method for our company on a daily basis. In this session, we will explain a series of operation flow from detection to response using SIEM and SOAR based on the issues in security operation obtained from our own research.

Due to the increasing sophistication of cyber-attacks, we have taken countermeasures with multi-layered defense, but now it has become commonplace to be invaded. After infiltrating a network, today's sophisticated attacks remain hidden for long periods of time, performing covert reconnaissance and stealing valuable information. Therefore, it is important to be able to detect the activity as soon as possible after an intrusion and shorten the time to respond. Isn't there a lot of companies that feel the limit of visualization?

Many cyber crimes are said to start with emails. Although companies have introduced email security products and are taking countermeasures, attackers are still trying to infiltrate their systems using all sorts of means. In particular, the number of companies using Office365 has increased significantly, and simultaneous attacks are being carried out against multiple targets.

SOAR (Security Orchestration, Automation and Response) is expected to be a technology that solves problems from the perspective of "improving operational efficiency." However, in order to utilize it, it is important to set goals for introduction and make appropriate preparations. In this session, we will explain the issues and expected effects in introducing SOAR.

While it is said that there is a shortage of IT human resources, it is necessary to consider the expertise, skills, and security required of security personnel, such as incident response to respond to increasingly sophisticated attacks and security countermeasure planning suitable for work style reform measures. The scope is expanding. We will use a framework to visualize whether the daily work and operations performed by the person in charge are the security operations that are currently required, and explain the direction of how to address the shortfalls.

Cyber threats have become extremely sophisticated, increasing the burden and responsibility of security operators. In addition, the shortage of security engineers and IT personnel and the lack of skills are becoming more serious. SOAR (Security Orchestration, Automation and Response) is expected to be a technology that can solve this problem from the perspective of "improving operational efficiency." However, in order to utilize it, it is important to set goals for introduction and make appropriate preparations. In this session, we will explain the issues and expected effects in introducing SOAR.

Now that the shortage of security personnel is becoming more serious, external and internal threats are still increasing, and more advanced security operations are required with a limited number of people. Under such circumstances, we organized points such as the issues required in the security operation site, the adverse effects of such issues, and the functions required for future security operations, and by utilizing SOAR products provided by FireEye, I will explain how we can make operations more efficient.

Some customers using FireEye products are in a situation where detection omissions occur because the OS is not updated and new functions cannot be used.
Also, recently, in order to utilize the newly implemented functions, we have received many questions from our support regarding how to select a successor device.
This video is intended for customers who are considering continuing to use FireEye products, and introduces how to proceed with considering a successor device and the new implementation functions of the successor device.