Skip to main content
2023 Security Congress Main banner
 
Icon Legend
Additional Fee Required
Additional Fee Required
Pre-Registration Required
Pre-Registration Required
Online & Virtual
Online & Virtual
Onsite Only
Onsite Only
Earn CPE Credits
Earn CPE Credits
Livestreamed Session
Livestreamed Session
Included in Guest Pass
Included in Guest Pass
Invite Only
Invite Only
Session Recorded
Session Recorded
Student Experience
Student Experience
Back

Onsite and Virtual

Cloud Security

Defending against Token Theft

Wednesday, October 25, 2023
3:05pm – 4:00pm CT
Location: Presidential Ballroom C
CPE Credits 1
Online & Virtual Earn CPE Credits Livestreamed Session Session Recorded
Token theft is the No. 1 unmitigated identity-based attack vector today. While strong authentication can mitigate most password-based attacks, this type of attack involves compromising a token after a victim user completed authentication. This session will cover the current threat landscape and what proactive measures you can take in your organization to prevent, detect and respond to token theft. You’ll get a walkthrough of a machine-learning algorithm that detects anomalous token usage, and detailed step-by-step incident response playbook you can use.

Learning Objectives:

  • Articulate to your stakeholders where token theft can occur and the prevalence of this attack type.
  • Determine what proactive measures to take to prevent and detect instances of token theft.
  • Respond to a token theft attack using the detailed process specified in an incident response playbook.