Security teams are spending more than ever on prevention, yet the cost of ransomware continues to rise. The reason is simple: attackers have shifted from deploying malware to hijacking identities. This session explores the reality of the "Assume Breach" mindset.

We will analyze the anatomy of a cloud-native attack where hackers use stolen identities to destroy data and backups simultaneously. We'll then provide a clear path forward, showing you how to automate protection and orchestrate recovery from a clean point to get your cloud and business back up and running. Our experts will cover:

• The Anatomy of Cloud-Attack: A walkthrough of how attackers gain "Owner" access to destroy entire cloud environments.
• How to Build Automated, Air-gapped Protection: Architecting an immutable last line of defense that severs trust from the production control plane to survive "Owner" level compromise.
• A Cyber Recovery Orchestration: Replacing slow, manual runbooks with an automated process to identify clean points and restore mission-critical operations at business speed

MSPs are under pressure to deliver stronger security across a growing customer base without adding more tools or people. Despite this, many still rely on approaches that don’t scale, leading to gaps, alert overload, and missed opportunities to grow their security business.

The goal of this 30-minute session is to help MSPs take a step back and assess how they’re delivering security today. We’ll walk them through the most common pressure points, help identify where their current approach is falling short, and guide them toward the next conversation based on what matters most to their business.

A few topics we’ll cover:

• Where gaps show up across client environments today
• How alerts are handled and where teams get stretched
• Where password-only access still creates risk
• The impact of too many tools and limited visibility

New AI models like Claude Mythos are compressing the lifecycle of a vulnerability from discovery to exploitation, down to near zero.

As vulnerability discovery accelerates and time-to-exploit approaches zero, the bottleneck is shifting from finding issues to fixing them quickly.

Join HackerOne leaders Nidhi Aggarwal (Chief Product Officer) and Alex Rice (Co-founder and CISO), hosted by Stacy Leidwinger (CMO), for a live discussion on what this shift means for security leaders, and how organizations need to evolve from point-in-time testing to continuous validation and remediation.

When ransomware hits, do you know which snapshot is clean and safe to restore?

Most teams don’t. Ransomware attacks cost organizations an average of $5.08 million and 24 days of downtime—not because detection fails, but because recovery becomes guesswork.

Since 2019, Index Engines has helped Dell customers eliminate recovery uncertainty inside the PowerProtect Cyber Recovery vault, validating data integrity with 99.99% confidence. Now, that proven CyberSense capability is available directly on Dell PowerStore, enabling faster, more confident recovery where your data lives.

Join Index Engines for a 30‑minute look into how CyberSense validates snapshot integrity, helps identify clean recovery points faster, and minimizes the impact of ransomware attacks.

As coverage expands across repos and teams, detection outpaces remediation. More alerts don’t equal less risk — this is the illusion of coverage. False positives compound, trust drops, and friction returns. Teams also face slow pipelines, inconsistent feedback, and hard-to-enforce policies across large, mixed codebases.

At scale, even small drops in signal quality can translate into thousands of unnecessary alerts, overwhelming developers and slowing remediation.

This webinar and live demo explores how to scale Code Security for Builders. We’ll cover why coverage alone doesn’t reduce risk, how signal quality drives adoption, and how enforceable policies with Semgrep AI help teams move from visibility to remediation.

We’ll also explore how modern teams combine deterministic analysis, AI reasoning, and application context to deliver consistent, high-confidence results at scale.

You’ll also see fast scanning at scale, consistent policy enforcement, and findings developers can fix quickly.

Live demo highlights:

• High-speed scanning across large repositories without slowing CI pipelines
• High-confidence findings developers can act on immediately
• AI-assisted prioritization and remediation guidance in PR and CI
• Detecting malicious packages and managing third-party code risk
• Enforceable security policies that scale across teams and repositories

Ransomware attacks cost organizations an average of $5.08 million and 24 days of downtime. Not because detection has failed, but because recovery has. Most organizations can tell that something happened. Far fewer can quickly answer what was corrupted, when it started, and what is safe to restore. That gap is where recovery stalls, costs compound, and regulators lose confidence.

In this webinar, we'll explore how IBM’s FlashSystem and Index Engines' CyberSense, delivered through IBM Storage Defender Sentinel, work together to close that gap at every stage of an incident.

Discover how AI-driven detection identifies ransomware behavior in under 60 seconds and how deep content inspection then pinpoints the blast radius, identifies the last known clean recovery point, and confirms what is safe to restore before a single byte is recovered.

In 30 minutes, you’ll uncover how to:

• Detect ransomware before it spreads
• Determine exactly what is safe to restore
• Build a recovery story that satisfies regulators, insurers, and your organizations RPO and RTO

Passwords remain a top cause of breaches—and a major source of user frustration—but replacing them isn’t as simple as flipping a switch. Security leaders must navigate a messy mix of technical debt, usability concerns, and implementation hurdles. By targeting high-impact wins and phasing adoption, organizations can reduce risk and complexity without overhauling everything at once.

Topics include:

• How passwordless reduces attack surface and credential theft
• Scoping and prioritizing passwordless rollouts across user types
• Balancing security, usability, and operational complexity
• Common pitfalls that stall passwordless adoption

Get practical guidance to simplify and scale passwordless across your enterprise—whether you're just getting started or working through roadblocks.

Attackers log in and move fast. See how Mitiga’s AI-native Cloud Detection & Response feeds Torq’s Autonomous SOC engine to drive closed loop detection, investigation, and remediation across cloud, SaaS, identity, and AI.

Cloud intrusions rarely look like “breaking in.” Attackers are logging in with stolen credentials, abusing SaaS integrations, and moving across cloud and AI infrastructure at machine speed. Meanwhile, SOC teams are drowning in alerts, stitching together fragmented data, and reacting too late to prevent impact.

Now there’s an AI SOC that actually closes the loop.

In this joint session, Mitiga and Torq unveil a real-time, end-to-end AI SOC architecture that detects, investigates, and neutralizes active threats autonomously. Powered by a deep Cloud Security Data Lake.

What you’ll see live

High-fidelity detections with full context: Mitiga’s agentless platform detects attacker behaviors and builds a single attack timeline in seconds to minutes.

Hyperautomation driven by deep forensic data: a Cloud Security Data Lake that retains up to 1,000+ days of normalized log storage – for forensic depth that doesn’t blink.

Closed-loop automation: Mitiga detects and decodes the attack, with alerts that trigger Torq workflows. Torq pulls enrichment and attack context, then orchestrates autonomous response. Together, they eliminate the gap between "alert fired" and "threat contained."

Autonomous case handling at scale: Torq HyperSOC combines a Multi‑Agent System and Hyperautomation engine to triage, investigate, and monitor SOC responses at machine speed.

The manual investigation and response bottleneck just disappeared.

What you'll walk away with

• A practical blueprint for autonomous cloud threat operations built on a Cloud Security Data Lake

• Real-world examples of of how forensic context + automated remediation stop attacks in minutes, not hours.

• Understanding of where human analysts still matter. And where machines should take over

• A path to transforming your SOC into a machine-speed operation that scales with cloud complexity

When attacks move in minutes, your defense needs to move in seconds.

Defenders have long played catch-up in the cybersecurity arms race. But agentic AI offers a chance to flip the script—enabling systems that anticipate, adapt, and respond to threats before they escalate. To stay ahead of evolving threats, organizations must shift from reactive security postures to resilient, autonomous systems powered by agentic AI.

Topics include:

• What makes agentic AI different from traditional automation

• How agentic AI fits into the evolving cyber kill chain

• Building trust, oversight, and resilience into autonomous systems

Join us to gain practical insights into deploying agentic AI to stay ahead of evolving threats.

Engineering teams are shipping faster than ever, driven by AI-assisted development and rising delivery pressure. But legacy SAST tools weren’t built for this velocity — or for today’s massively distributed, multi-language codebases. Static scanners create friction, miss critical vulnerabilities, and slow down modern development workflows.

This session explores why legacy SAST approaches stall, and how multi-agent AI analysis combined with expert human validation delivers accurate, high-signal security insight—strengthening assurance and meeting strict data-handling requirements without disrupting developers.

Key Takeaways

• Real examples of where static scanning alone fails, and how organisations are fixing the gap.
• Why traditional SAST tools create noise, miss real vulnerabilities, and slow engineering down.
• How multi-agent AI and expert validation remove false positives and increase assurance.
• What AI-generated code introduces — and why legacy scanners can’t keep up.
• How to give developers accurate, actionable security feedback directly in their workflow.

Engineering teams are shipping faster than ever, driven by AI-assisted development and rising delivery pressure. But legacy SAST tools weren’t built for this velocity — or for today’s massively distributed, multi-language codebases. Static scanners create friction, miss critical vulnerabilities, and slow down modern development workflows.

This session explores why legacy SAST approaches stall, and how multi-agent AI analysis combined with expert human validation delivers accurate, high-signal security insight—strengthening assurance and meeting strict data-handling requirements without disrupting developers.

Key Takeaways

• Real examples of where static scanning alone fails, and how organisations are fixing the gap.
• Why traditional SAST tools create noise, miss real vulnerabilities, and slow engineering down.
• How multi-agent AI and expert validation remove false positives and increase assurance.
• What AI-generated code introduces — and why legacy scanners can’t keep up.
• How to give developers accurate, actionable security feedback directly in their workflow.

As organizations rapidly integrate Generative AI and autonomous agents into their core operations, they are inadvertently expanding their attack surface. Traditional security tools are often blind to AI-specific threats like prompt injection, model poisoning, and tool misuse.

This presentation will give exclusive insights into novel AI related attacks and new attack vectors. We will also introduces Prisma AIRS (AI Runtime Security), Palo Alto Networks’ purpose-built platform for securing the modern AI lifecycle. Attendees will learn how to move beyond fragmented point solutions to a unified defense strategy that enables them to "deploy AI bravely" without compromising security or compliance.

In many security organizations, the "hand-off" is where investigations go to die. When a ticket moves from a SOC Analyst to Incident Response, and finally to Threat Intel, critical context is often lost in translation. To stop an adversary, these teams need a unified view of the world outside their firewall.

Join us for a step-by-step walkthrough of a single ticket’s journey. We will demonstrate how Censys provides the continuous context needed to move a ticket through the pipeline—ensuring that when a team "passes the baton," they are passing actionable intelligence, not just a suspicious IP.

Open source library breaches have made one thing clear: malicious actors are weaponizing trust. Recent major malware attacks bypassed detection tools by exploiting the trust gap between verifiable source code and the distributed binaries we all consume from public registries.

This session focuses on understanding what happened and how teams can move forward more safely and productively. We will examine Chainguard Libraries, which provides registries of rebuilt libraries from verifiable source code with improved provenance, SBOM information, and even security backports. Chainguard Libraries helps organizations prevent malware risk without slowing developers down. We’ll close with a demo and open Q&A for deeper discussion.

Why you should join

• Understand how recent open source library breaches happened
• Learn how Chainguard Libraries prevents malware risk
• Gain insights to better protect your organization from future malware attacks

The definition of cloud risk is rapidly evolving. Today’s attack surface extends far beyond traditional infrastructure to include AI workloads, model supply chains, APIs, and autonomous agents. This shift challenges legacy CNAPP approaches focused primarily on posture management and increases pressure on organizations to deliver continuous compliance in a new regulatory landscape.

Modern security demands more than visibility. Effective remediation and robust reporting are now essential to close compliance gaps quickly and demonstrate audit readiness. Security leaders must move from passive dashboards to active risk operations where compliance, remediation, and actionable insights work together to manage AI-native risk.

Join Qualys SVP Kunal Modasiya and guest speaker Andras Cser of Forrester for a strategic discussion on the evolution of CNAPP. They will explore the capabilities required to manage a converging attack surface and bring clarity to an increasingly consolidated market.

What you’ll learn:

• From Cloud-Native to AI-Native: How the attack surface is expanding beyond hosts and containers to include AI models, APIs, and autonomous agents.
• From Posture to Risk Operations: Why CNAPP must evolve to provide runtime-aware prioritization, attack path analysis, and measurable risk reduction.
• True Platform Integration: What defines a unified platform, including a shared data model, policy framework, and access control serving teams from DevOps to incident response.
• The Role of Agentic AI: How Agentic AI and copilots help match remediation speed with detection speed.
• Pricing Transparency: How to demand clear, transparent pricing without hidden fees as solutions converge

The definition of cloud risk is rapidly evolving. Today’s attack surface extends far beyond traditional infrastructure to include AI workloads, model supply chains, APIs, and autonomous agents. This shift challenges legacy CNAPP approaches focused primarily on posture management and increases pressure on organizations to deliver continuous compliance in a new regulatory landscape.

Modern security demands more than visibility. Effective remediation and robust reporting are now essential to close compliance gaps quickly and demonstrate audit readiness. Security leaders must move from passive dashboards to active risk operations where compliance, remediation, and actionable insights work together to manage AI-native risk.

Join Qualys SVP Kunal Modasiya and guest speaker Andras Cser of Forrester for a strategic discussion on the evolution of CNAPP. They will explore the capabilities required to manage a converging attack surface and bring clarity to an increasingly consolidated market.

What you’ll learn:

• From Cloud-Native to AI-Native: How the attack surface is expanding beyond hosts and containers to include AI models, APIs, and autonomous agents.
• From Posture to Risk Operations: Why CNAPP must evolve to provide runtime-aware prioritization, attack path analysis, and measurable risk reduction.
• True Platform Integration: What defines a unified platform, including a shared data model, policy framework, and access control serving teams from DevOps to incident response.
• The Role of Agentic AI: How Agentic AI and copilots help match remediation speed with detection speed.
• Pricing Transparency: How to demand clear, transparent pricing without hidden fees as solutions converge

The truth? Upgrading from your SIEM to Cortex XSIAM is easier than you think. Join Palo Alto Networks as we separate fact from fiction in modernizing your SOC.

In this fast-paced myth-busting session, we’ll tackle the top concerns about moving to a cloud-native, AI-powered SOC, from fears of time-consuming deployments to worries about cost, complexity, and security. Hear directly from security leaders who’ve made the switch—and haven’t looked back.

What you’ll learn:

• Quantifiable results of shifting to an AI-driven security operations center
• Why industry leaders are prioritizing SOC migration in the current threat landscape
• Real-world migration timelines and performance outcomes from existing customers
• A strategic framework for a seamless transition with Palo Alto Networks

Don’t let outdated assumptions hold your SOC back. It’s time to debunk the myths and move forward with confidence.

The modern social engineer has traded manual spray and pray tactics for an automated, AI-driven assembly line. For the SOC Lead hunting spoofed domains or the Brand Protection Manager defending corporate integrity, the challenge has shifted. It’s no longer just identifying a bad link, it’s about recognizing an entire synthetic reality.

Join ZeroFox for a technical masterclass that builds the expertise of security practitioners and leaders. Our resident expert in dark web operations will move past the theory of social engineering and take attendees through the actual mechanics of today’s most challenging enterprise threat.

This session is designed to bridge the gap between seeing a threat and stopping it. You’ll learn:

• The Industrialization of Deception: The philosophy behind and real-world examples of how adversaries maintain dozens of believable, high-fidelity relationships at scale.
• The Anatomy of an AI Attack: Discerning fact and fiction in a buzzword soup of AI advancements
• The Peremeter Playbook: 5 things you can do to defend your business and executives against social engineering attacks