New AI models like Claude Mythos are compressing the lifecycle of a vulnerability from discovery to exploitation, down to near zero.

As vulnerability discovery accelerates and time-to-exploit approaches zero, the bottleneck is shifting from finding issues to fixing them quickly.

Join HackerOne leaders Nidhi Aggarwal (Chief Product Officer) and Alex Rice (Co-founder and CISO), hosted by Stacy Leidwinger (CMO), for a live discussion on what this shift means for security leaders, and how organizations need to evolve from point-in-time testing to continuous validation and remediation.

When ransomware hits, do you know which snapshot is clean and safe to restore?

Most teams don’t. Ransomware attacks cost organizations an average of $5.08 million and 24 days of downtime—not because detection fails, but because recovery becomes guesswork.

Since 2019, Index Engines has helped Dell customers eliminate recovery uncertainty inside the PowerProtect Cyber Recovery vault, validating data integrity with 99.99% confidence. Now, that proven CyberSense capability is available directly on Dell PowerStore, enabling faster, more confident recovery where your data lives.

Join Index Engines for a 30‑minute look into how CyberSense validates snapshot integrity, helps identify clean recovery points faster, and minimizes the impact of ransomware attacks.

As coverage expands across repos and teams, detection outpaces remediation. More alerts don’t equal less risk — this is the illusion of coverage. False positives compound, trust drops, and friction returns. Teams also face slow pipelines, inconsistent feedback, and hard-to-enforce policies across large, mixed codebases.

At scale, even small drops in signal quality can translate into thousands of unnecessary alerts, overwhelming developers and slowing remediation.

This webinar and live demo explores how to scale Code Security for Builders. We’ll cover why coverage alone doesn’t reduce risk, how signal quality drives adoption, and how enforceable policies with Semgrep AI help teams move from visibility to remediation.

We’ll also explore how modern teams combine deterministic analysis, AI reasoning, and application context to deliver consistent, high-confidence results at scale.

You’ll also see fast scanning at scale, consistent policy enforcement, and findings developers can fix quickly.

Live demo highlights:

• High-speed scanning across large repositories without slowing CI pipelines
• High-confidence findings developers can act on immediately
• AI-assisted prioritization and remediation guidance in PR and CI
• Detecting malicious packages and managing third-party code risk
• Enforceable security policies that scale across teams and repositories

Ransomware attacks cost organizations an average of $5.08 million and 24 days of downtime. Not because detection has failed, but because recovery has. Most organizations can tell that something happened. Far fewer can quickly answer what was corrupted, when it started, and what is safe to restore. That gap is where recovery stalls, costs compound, and regulators lose confidence.

In this webinar, we'll explore how IBM’s FlashSystem and Index Engines' CyberSense, delivered through IBM Storage Defender Sentinel, work together to close that gap at every stage of an incident.

Discover how AI-driven detection identifies ransomware behavior in under 60 seconds and how deep content inspection then pinpoints the blast radius, identifies the last known clean recovery point, and confirms what is safe to restore before a single byte is recovered.

In 30 minutes, you’ll uncover how to:

• Detect ransomware before it spreads
• Determine exactly what is safe to restore
• Build a recovery story that satisfies regulators, insurers, and your organizations RPO and RTO

Passwords remain a top cause of breaches—and a major source of user frustration—but replacing them isn’t as simple as flipping a switch. Security leaders must navigate a messy mix of technical debt, usability concerns, and implementation hurdles. By targeting high-impact wins and phasing adoption, organizations can reduce risk and complexity without overhauling everything at once.

Topics include:

• How passwordless reduces attack surface and credential theft
• Scoping and prioritizing passwordless rollouts across user types
• Balancing security, usability, and operational complexity
• Common pitfalls that stall passwordless adoption

Get practical guidance to simplify and scale passwordless across your enterprise—whether you're just getting started or working through roadblocks.

Attackers log in and move fast. See how Mitiga’s AI-native Cloud Detection & Response feeds Torq’s Autonomous SOC engine to drive closed loop detection, investigation, and remediation across cloud, SaaS, identity, and AI.

Cloud intrusions rarely look like “breaking in.” Attackers are logging in with stolen credentials, abusing SaaS integrations, and moving across cloud and AI infrastructure at machine speed. Meanwhile, SOC teams are drowning in alerts, stitching together fragmented data, and reacting too late to prevent impact.

Now there’s an AI SOC that actually closes the loop.

In this joint session, Mitiga and Torq unveil a real-time, end-to-end AI SOC architecture that detects, investigates, and neutralizes active threats autonomously. Powered by a deep Cloud Security Data Lake.

What you’ll see live

High-fidelity detections with full context: Mitiga’s agentless platform detects attacker behaviors and builds a single attack timeline in seconds to minutes.

Hyperautomation driven by deep forensic data: a Cloud Security Data Lake that retains up to 1,000+ days of normalized log storage – for forensic depth that doesn’t blink.

Closed-loop automation: Mitiga detects and decodes the attack, with alerts that trigger Torq workflows. Torq pulls enrichment and attack context, then orchestrates autonomous response. Together, they eliminate the gap between "alert fired" and "threat contained."

Autonomous case handling at scale: Torq HyperSOC combines a Multi‑Agent System and Hyperautomation engine to triage, investigate, and monitor SOC responses at machine speed.

The manual investigation and response bottleneck just disappeared.

What you'll walk away with

• A practical blueprint for autonomous cloud threat operations built on a Cloud Security Data Lake

• Real-world examples of of how forensic context + automated remediation stop attacks in minutes, not hours.

• Understanding of where human analysts still matter. And where machines should take over

• A path to transforming your SOC into a machine-speed operation that scales with cloud complexity

When attacks move in minutes, your defense needs to move in seconds.

Defenders have long played catch-up in the cybersecurity arms race. But agentic AI offers a chance to flip the script—enabling systems that anticipate, adapt, and respond to threats before they escalate. To stay ahead of evolving threats, organizations must shift from reactive security postures to resilient, autonomous systems powered by agentic AI.

Topics include:

• What makes agentic AI different from traditional automation

• How agentic AI fits into the evolving cyber kill chain

• Building trust, oversight, and resilience into autonomous systems

Join us to gain practical insights into deploying agentic AI to stay ahead of evolving threats.

Engineering teams are shipping faster than ever, driven by AI-assisted development and rising delivery pressure. But legacy SAST tools weren’t built for this velocity — or for today’s massively distributed, multi-language codebases. Static scanners create friction, miss critical vulnerabilities, and slow down modern development workflows.

This session explores why legacy SAST approaches stall, and how multi-agent AI analysis combined with expert human validation delivers accurate, high-signal security insight—strengthening assurance and meeting strict data-handling requirements without disrupting developers.

Key Takeaways

• Real examples of where static scanning alone fails, and how organisations are fixing the gap.
• Why traditional SAST tools create noise, miss real vulnerabilities, and slow engineering down.
• How multi-agent AI and expert validation remove false positives and increase assurance.
• What AI-generated code introduces — and why legacy scanners can’t keep up.
• How to give developers accurate, actionable security feedback directly in their workflow.

Engineering teams are shipping faster than ever, driven by AI-assisted development and rising delivery pressure. But legacy SAST tools weren’t built for this velocity — or for today’s massively distributed, multi-language codebases. Static scanners create friction, miss critical vulnerabilities, and slow down modern development workflows.

This session explores why legacy SAST approaches stall, and how multi-agent AI analysis combined with expert human validation delivers accurate, high-signal security insight—strengthening assurance and meeting strict data-handling requirements without disrupting developers.

Key Takeaways

• Real examples of where static scanning alone fails, and how organisations are fixing the gap.
• Why traditional SAST tools create noise, miss real vulnerabilities, and slow engineering down.
• How multi-agent AI and expert validation remove false positives and increase assurance.
• What AI-generated code introduces — and why legacy scanners can’t keep up.
• How to give developers accurate, actionable security feedback directly in their workflow.

As organizations rapidly integrate Generative AI and autonomous agents into their core operations, they are inadvertently expanding their attack surface. Traditional security tools are often blind to AI-specific threats like prompt injection, model poisoning, and tool misuse.

This presentation will give exclusive insights into novel AI related attacks and new attack vectors. We will also introduces Prisma AIRS (AI Runtime Security), Palo Alto Networks’ purpose-built platform for securing the modern AI lifecycle. Attendees will learn how to move beyond fragmented point solutions to a unified defense strategy that enables them to "deploy AI bravely" without compromising security or compliance.

In many security organizations, the "hand-off" is where investigations go to die. When a ticket moves from a SOC Analyst to Incident Response, and finally to Threat Intel, critical context is often lost in translation. To stop an adversary, these teams need a unified view of the world outside their firewall.

Join us for a step-by-step walkthrough of a single ticket’s journey. We will demonstrate how Censys provides the continuous context needed to move a ticket through the pipeline—ensuring that when a team "passes the baton," they are passing actionable intelligence, not just a suspicious IP.

Open source library breaches have made one thing clear: malicious actors are weaponizing trust. Recent major malware attacks bypassed detection tools by exploiting the trust gap between verifiable source code and the distributed binaries we all consume from public registries.

This session focuses on understanding what happened and how teams can move forward more safely and productively. We will examine Chainguard Libraries, which provides registries of rebuilt libraries from verifiable source code with improved provenance, SBOM information, and even security backports. Chainguard Libraries helps organizations prevent malware risk without slowing developers down. We’ll close with a demo and open Q&A for deeper discussion.

Why you should join

• Understand how recent open source library breaches happened
• Learn how Chainguard Libraries prevents malware risk
• Gain insights to better protect your organization from future malware attacks

The definition of cloud risk is rapidly evolving. Today’s attack surface extends far beyond traditional infrastructure to include AI workloads, model supply chains, APIs, and autonomous agents. This shift challenges legacy CNAPP approaches focused primarily on posture management and increases pressure on organizations to deliver continuous compliance in a new regulatory landscape.

Modern security demands more than visibility. Effective remediation and robust reporting are now essential to close compliance gaps quickly and demonstrate audit readiness. Security leaders must move from passive dashboards to active risk operations where compliance, remediation, and actionable insights work together to manage AI-native risk.

Join Qualys SVP Kunal Modasiya and guest speaker Andras Cser of Forrester for a strategic discussion on the evolution of CNAPP. They will explore the capabilities required to manage a converging attack surface and bring clarity to an increasingly consolidated market.

What you’ll learn:

• From Cloud-Native to AI-Native: How the attack surface is expanding beyond hosts and containers to include AI models, APIs, and autonomous agents.
• From Posture to Risk Operations: Why CNAPP must evolve to provide runtime-aware prioritization, attack path analysis, and measurable risk reduction.
• True Platform Integration: What defines a unified platform, including a shared data model, policy framework, and access control serving teams from DevOps to incident response.
• The Role of Agentic AI: How Agentic AI and copilots help match remediation speed with detection speed.
• Pricing Transparency: How to demand clear, transparent pricing without hidden fees as solutions converge

The definition of cloud risk is rapidly evolving. Today’s attack surface extends far beyond traditional infrastructure to include AI workloads, model supply chains, APIs, and autonomous agents. This shift challenges legacy CNAPP approaches focused primarily on posture management and increases pressure on organizations to deliver continuous compliance in a new regulatory landscape.

Modern security demands more than visibility. Effective remediation and robust reporting are now essential to close compliance gaps quickly and demonstrate audit readiness. Security leaders must move from passive dashboards to active risk operations where compliance, remediation, and actionable insights work together to manage AI-native risk.

Join Qualys SVP Kunal Modasiya and guest speaker Andras Cser of Forrester for a strategic discussion on the evolution of CNAPP. They will explore the capabilities required to manage a converging attack surface and bring clarity to an increasingly consolidated market.

What you’ll learn:

• From Cloud-Native to AI-Native: How the attack surface is expanding beyond hosts and containers to include AI models, APIs, and autonomous agents.
• From Posture to Risk Operations: Why CNAPP must evolve to provide runtime-aware prioritization, attack path analysis, and measurable risk reduction.
• True Platform Integration: What defines a unified platform, including a shared data model, policy framework, and access control serving teams from DevOps to incident response.
• The Role of Agentic AI: How Agentic AI and copilots help match remediation speed with detection speed.
• Pricing Transparency: How to demand clear, transparent pricing without hidden fees as solutions converge

The truth? Upgrading from your SIEM to Cortex XSIAM is easier than you think. Join Palo Alto Networks as we separate fact from fiction in modernizing your SOC.

In this fast-paced myth-busting session, we’ll tackle the top concerns about moving to a cloud-native, AI-powered SOC, from fears of time-consuming deployments to worries about cost, complexity, and security. Hear directly from security leaders who’ve made the switch—and haven’t looked back.

What you’ll learn:

• Quantifiable results of shifting to an AI-driven security operations center
• Why industry leaders are prioritizing SOC migration in the current threat landscape
• Real-world migration timelines and performance outcomes from existing customers
• A strategic framework for a seamless transition with Palo Alto Networks

Don’t let outdated assumptions hold your SOC back. It’s time to debunk the myths and move forward with confidence.

The modern social engineer has traded manual spray and pray tactics for an automated, AI-driven assembly line. For the SOC Lead hunting spoofed domains or the Brand Protection Manager defending corporate integrity, the challenge has shifted. It’s no longer just identifying a bad link, it’s about recognizing an entire synthetic reality.

Join ZeroFox for a technical masterclass that builds the expertise of security practitioners and leaders. Our resident expert in dark web operations will move past the theory of social engineering and take attendees through the actual mechanics of today’s most challenging enterprise threat.

This session is designed to bridge the gap between seeing a threat and stopping it. You’ll learn:

• The Industrialization of Deception: The philosophy behind and real-world examples of how adversaries maintain dozens of believable, high-fidelity relationships at scale.
• The Anatomy of an AI Attack: Discerning fact and fiction in a buzzword soup of AI advancements
• The Peremeter Playbook: 5 things you can do to defend your business and executives against social engineering attacks

Many organizations have done many “right” things. They run penetration tests. They map adversary Tactics, Techniques, and Procedures (TTPS) to MITRE ATT&CK. They tune detections and feel reasonably confident in their security posture. And then ransomware happens anyway.

This session explains why that outcome is not a failure of pentesting or TTP-based defense, but a misunderstanding of what those practices are designed to deliver. Pentests show how an attacker could, maybe, break in. TTPS describe how attackers operate but doesn’t determine whether your organization can survive one.

No zero days. No novel techniques. Alerts fired. Tickets created. By the time humans were confident the attack was “real,” the attackers had already achieved irreversible impact. This session will walk through real-world ransomware campaigns, minute by minute: initial access, credential abuse, lateral movement, backup destruction, encryption, and extortion.

The session will focus on the decisive moments that actually change outcomes — and the ones that didn’t. Attendees will see why attackers go after recovery infrastructure first, how traditional and even offline backups fail under real pressure, and why organizations with properly orchestrated immutable data recovery processes are able to shut down negotiations and restore operations without paying.

Thus, the talk shifts from “How do we stop every attack” to “What actually limits blast radius and guarantees recovery?”

Key takeaways include:

• What pentests and TTPS did not predict in real ransomware incidents.

• The speed at which modern ransomware operations actually move.

• Why immutability and isolation alone are not enough.

• How guaranteed restore capability removes attacker leverage.

• How security controls should align with reality, not compliance checklists or maturity models.

• How organizations can recalibrate toward what actually matters when prevention inevitably fails.

With AI at their disposal, threat actors are getting craftier than ever with their phishing attacks. And while your users may feel confident in spotting poorly spelled, obvious phishing emails, the reality is that most are unaware of just how sophisticated today’s phishing lures have become. If you’re not training your users to spot these modern phishing tactics on a regular basis, you’re opening the doors for adversaries to wreak havoc on your business.

In this webinar, Huntress will explore why yesterday's security awareness training is one of today's biggest risks. We will show you how modern phishing attacks really work and how you can keep up with evolving tradecraft to avoid compromise.

• The Self-Fail: We’ll explore why training once a year with generic templates hurts your business and fails to prepare users for the real threats they face.
• The Latest Tradecraft: See live demos of the newest phishing techniques attackers are using, including ClickFix, FileFix, and browser-in-the-browser attacks that bypass traditional security measures.
• The Better Way: Learn how the Huntress Security Platform helps you build a resilient defense by combining continuous, tradecraft-informed training with 24/7 expert monitoring and response.

If you feel overwhelmed by the risk of end users falling victim to phishing attacks, this webinar is for you. We’ll give you practical steps to build a security posture that can actually stand up to modern phishing—all without adding more tools or overwhelming your team.