On the Hunt for Advanced Attacks? Command & Control Channels are a Good Place to Start

  • Date 07 Jun 2017

On the Hunt for Advanced Attacks? Command & Control Channels are a Good Place to Start

07 Jun 2017, 14:40 - 15:05

Tech Talks

Language:
English

Why are Command and Control (C&C) communications so significant to detecting advanced threats and how should you go about detecting them? We’ll discuss the various pitfalls of the traditional methods of detecting C&C and specifically those currently based on machine learning. Machine Learning must be structured, designed and delivered in exactly the right way to deliver impact for detection of advanced threats. The session will introduce our approach, which has significantly improved both detection rates and efficiency. We’ll discuss several test cases and the lessons we’ve learned over time.

Learning Outcomes:

  1. Learn why Command and Control monitoring is the key to detecting advanced threats    
  2. Uncover pitfalls of the current approaches to C&C detection       
  3. Understand Machine Learning and it's role in detecting malicious activity              
  4. Understand the potential dangers of the wrong machine learning approach         
  5. Learn about the impact a new supervised machine learning approach can have – in both theory and practice

 

Contributors

  • Moshe Zioni

    Speaker

    Security Research Manager

    Verint

    Moshe has worked in the security field, designing secure architectures and providing in-depth security research for almost 15 years. He has worked...

Business Issues Covered

Build a robust cyber response and resilience strategy. Select best fit products and solutions from the wide range of choice of vendors and products available.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.