Kaspersky is unveiling a new online self-study course, entitled ‘Hunt APTs with YARA like a GReAT Ninja.’ Armed with this training, any IT security professional interested in the topic can learn from the Kaspersky Global Research & Analysis Team’s best practices on threat hunting with YARA. In addition to the practical insights from the company’s world-renowned cybersecurity experts, participants will receive access to a special virtual lab, where they can practice their new skills, analyzing samples and testing YARA rules.
YARA is a unique tool that, among other things, makes it easier to identify and classify new malware samples. With its help, security analysts can create certain patterns, or ‘rules’, and search for files that match them using security solutions or multi-scanner systems. By following a few know-how guides and some effort, a researcher or a security team can achieve a new level of knowledge in threat detection, mitigation and response.
Continuous education is essential to keep IT security teams ready and effective – (30%) of IT decision makers[1] in the META region cited improving their security specialists’ level of expertise as the main reason to increase their IT security budget. However, the pandemic has put restrictions on real-world, in-class learning activities. In order to respond to this challenge and make the course more available for individual learners, Kaspersky moved its training on YARA to an online format.
The video course is authored by the Kaspersky Global Research & Analysis Team (GReAT), an internationally recognized cybersecurity group of malware researchers and threat hunters. It provides first-hand recommendations on how to search for APT-related malware samples, as well as both new and zero-day exploits that the Kaspersky GReAT team has learned about following decades of threat research.
To reinforce the gained knowledge, the training also includes quizzes and the ability to practice in an exclusive virtual lab. Participants are offered over 20 practical exercises to test their YARA rules against real-life APT cases that Kaspersky’s team has encountered during its work.
“YARA is an essential tool for discovering new, previously unknown attacks. We have seen this in our own work and research, as it helped us investigate APT attacks, cybercriminal malware or zero-day exploits. With this new online training, we are excited to make our experience and knowledge available to a wider audience,” comments Costin Raiu, Director of the Global Research and Analysis Team at Kaspersky.
Kaspersky has granted free, early access to the course for individuals from a wide variety of non-profit and non-governmental organizations. This includes groups that focus on gender-based violence, human and digital rights, cybersecurity research, cyber policy and diplomacy, and supporting active and veteran armed forces personnel transitioning to roles in the IT security industry. Organizations with representatives participating in the training include Blueprint for Free Speech, Circle of Women in Cybersecurity (CEFCYS), Cyber Peace Foundation (CPF), DiploFoundation, Federal Association of Women’s Counselling and Rape Crisis Centres (bff), GEODE, Institute for Strategic Research (IRSEM) and Sciences Po, and VetSec, Inc. Feedback from these organizations will help Kaspersky improve the training, and the knowledge gained by the participants will enhance both their ability to protect organizations from attacks, as well as their threat hunting skills.
"The training will definitely add value to Cyber Peace Foundation’s skills in terms of learning new technologies like YARA rules for malware investigation and the latest APT threat hunting techniques, in order to help our research team to dive deeper into the investigation and analysis of malware, exploits and zero days which can significantly impact the eKawach project," comments Vineet Kumar, President of Cyber Peace Foundation.
“The main purpose of the CEFCYS is to promote and increase women’s leadership in cybersecurity jobs thanks to tangible actions, such as the development of a mentoring, education and training programs. In this context, the YARA training program offered by Kaspersky to some of our members is a great opportunity and perfectly fits CEFCYS’s purpose. The technical and practical aspects of this course is an interesting challenge that breaks preconceived ideas about the fact that cybersecurity technical issues should only be men’s business. This online course will make it possible for CEFCYS members, to increase their practical skills about data analysis and monitoring so they identify the chronology and the sources of threats and attacks. This program will probably help to excite the curiosity of other women, and to attract them so they discover other similar training courses oriented toward the technical aspects of cybersecurity,” comments Nacira Salvan, Founder and President of the CEFCYS.
‘Hunt APTs with YARA like a GReAT Ninja’ is the first training course in Kaspersky’s portfolio of education programs for security professionals that will be made available online. More information about the training course and registration is available at xtraining.kaspersky.com.
About Kaspersky
Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 250,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.
For further information, please contact:
Sweta Fernandes, Account Executive, Golin, KasperskyTeam@golin.ae
[1] The Kaspersky Global Corporate IT Security Risks Survey is a global survey of IT business decision makers conducted in 2019.
© Press Release 2020
Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.
The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.
To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.
