The red line distinguishing legitimate pentesting services from threat actor behavior has thinned and, in some cases, blurred out entirely in recent years due to the lack of universally accepted industry standards for practicing pentesting tradecraft.
Join us on Thursday, September 12th as BlackBerry Cylance Director of Threat Intelligence Kevin Livelli and Practice Director for Red Team Services Matthew Maley assess the current state of pentesting tradecraft and present the key findings from a provocative new Threat Intelligence report, Thin Red Line, Penetration Practices Examined.
Among other topics, Kevin and Matthew will discuss:
• The discovery that a reputed APT group was actually a respected Brazilian security services firm that may have exfiltrated more than 200 MB of sensitive client data to a semi-public malware repository
• How nation-state and organized crime threat actors acquired, and now utilize, pentester-created hacking tools, and why this makes identifying and attributing attacks more difficult
• The extent to which pentesting firms meet client expectations for privacy and confidentiality, and comply with legal and regulatory requirements, such as Europe’s General Data Protection Regulation (GDPR)
If your organization relies on pentesting service providers to help reduce cyber risks, you won’t want to miss this important webinar.
ABOUT THE SPEAKER:
Kevin Livelli, Director of Threat Intelligence
Kevin conducts long-term, complex investigations with the Research and Intelligence team. His work there follows ten years at 60 Minutes, where his investigative reporting and analysis were recognized with Peabody and Emmy awards. Before that, Kevin supervised investigations at the nation’s largest independent police oversight agency. A graduate of Dartmouth, he earned master's degrees from Trinity College Dublin and Columbia University.
Matthew Maley (@mjmaley), Practice Director for Red Team Services
Matt leads and manages a team of highly skilled consultants and engagement managers in the delivery of services helping clients stay on top of the latest attack trends as well as understand their network security gaps and vulnerabilities from the perspective of an attacker. Prior to BlackBerry Cylance, Matt has over seven years of experience as a penetration tester and security researcher, performing assessments for multiple Fortune 500 companies and federal entities. Prior to joining BlackBerry Cylance, Matt served as director of security testing at Gotham Digital Science, and manager of application security at Veris Group LLC. Before Veris Group, he worked as an associate at KPMG.