Tyler Starks - Lead Incident Response, Noah Hemker - Sr Incident Response, Devin Krugly - Practice Advisor at Rapid7

Attackers work around the clock to find new ways to get access to your environment, steal sensitive data, or cause more damage. With the cost of a data breach at an all-time high across the globe, it’s never been more important for teams to have measures in place for Incident Response.

Within Rapid7’s Managed Threat Complete solution, Incident Response is included, full stop. Their Incident Response consultants are experts in quickly pinpointing attacker behavior and eradicating the threat as soon as possible – limiting business disruption and overall impact.

Join Rapid7 for a technical walkthrough of a major investigation done by the IR team for one of their MTC customers. The investigation began with a Mass SMS phishing attack leading to the compromise of multiple domain accounts. These credentials were used to access and abuse virtualized infrastructure which served as a base of operations for subsequent attacker activity. Rapid7 will dive further into each stage of the intrusion to provide greater visibility into real-world TTPs, hardening, and investigative guidance.