Listen to SecurityHQ’s very own Chris Cheyne and Johnny Witt, in their webinar on ‘Understand How to Threat Hunt DNS Covert Channel Indicators’.
Adversaries often communicate using DNS to avoid detection. They do this by blending in with existing traffic. Almost all APT threat actor groups have demonstrated indicators relating to the use of DNS as a covert channel. So, understanding threat hunting techniques over DNS logging is essential.
What You Will Learn
SOC Director and CTO
Chris Cheyne is the SOC Director and CTO for SecurityHQ, a global organisation empowering its clients with bespoke cyber security procedures and technology. Responsible for operating six Security Operation Centres across the UK, Middle East and India, Chris specialises in threat hunting and intelligence, endpoint detection and response, SOC monitoring, behavioural analytics, EUBA, SIEM and more. With over 12 years of experience in security operations and management services, his objective is to place the power of his SOC team into his clients’ hands, and to provide complete visibility of security events and threats within their environments. Chris has been pivotal in building SecurityHQ’s capabilities in Managed Security Services and has experience in delivering SOC detection and response services for household names across multiple sectors, including Finance, Insurance, Healthcare, Retail, Aviation and Education. With an industry-leading team of 200 analysts behind him, he ensures that clients receive the highest degree of protection against today’s cyber threats.
Lead Security Analyst
Johnny has over 25 years’ worth of experience in Cyber Security and Development, and acts as our Principal Threat Advisor for SecurityHQ SOC. He has an incredible depth of knowledge and experience with real-world threat actors, exploits and attack methods, and has many years of experience in detecting and responding to such threats.
Johnny contributes to the SecurityHQ Labs team and is specialised in Research and Development for next generation IT Security products and built the first OpenDNS (type) infrastructure.
It is more important than ever that we monitor our cyber world. We must understand all methods. Ignorance is no excuse.View Recording