Anatomy of a Cyberattack
Published by O'Reilly Media, Inc.
Bots, identity attacks, and artificial intelligence threats
Course outcomes
- Understand forms of online fraud and the role of botnets in facilitating these activities
- Uncover common tactics in identity attacks, such as phishing, credential stuffing, and token replay
- Learn the risks associated with large language models, including prompt injection attacks and other emerging threats
- Discover the risks in the AI and ML supply chain
- Understand the proliferation and impact of deepfakes
Course description Join expert Razi Rais to unpack the anatomy of various cyberattacks, including online fraud and botnet activities, attacks on identities, and AI threats. You’ll get an in-depth understanding of attack types, detection strategies, and defense mechanisms, and be better equipped to protect your organizations from these sophisticated threats.
What you’ll learn and how you can apply it
- Detect and mitigate botnet activities to prevent online fraud
- Identify and counter identity attacks effectively
- Adopt strategies to mitigate risks associated with LLMs
- Recognize and respond to emerging threats such as deepfakes
- Understand and address risks in the AI and ML supply chain
This live event is for you because...
- You’re a chief information security officer, director of information security, cybersecurity executive, SOC manager, or someone in a similar cybersecurity leadership position.
- You want an in-depth understanding of the most common cyber attacks.
Prerequisites
Recommended follow-up:
- Take Zero Trust Security Fundamentals (live online course with Razi Rais)
- Listen to Generative AI in the Real World: Chloé Messdaghi on AI Security, Policy, and Regulation (audiobook)
- Explore Know the Security Threats to AI (shortcut collection)
Schedule
The time frames are only estimates and may vary according to how the class is progressing.
Online fraud and bots (65 minutes)
- Presentation: Definitions and types of online fraud; how botnets facilitate online fraud; detection and mitigation strategies for botnet activities
- Group discussion: Case studies of bot-related challenges (Twitter/X purchase with bot accounts, fraudulent accounts inflating MAU during peak season, etc.)
- Q&A
- Break
Identity attacks (55 minutes)
- Presentation: Common tactics in identity attacks (phishing, credential stuffing, token replay, etc.); methods for detecting and preventing identity attacks
- Group discussion: Real-world examples of identity theft and compromise
- Q&A
- Break
Attacks on artificial intelligence systems (60 minutes)
- Presentation: Introduction to large language models; prompt injection attacks on LLMs; OWASP Top-10 risks for LLMs; NIST and other frameworks for AI and LLM security; proliferation and impact of deepfakes; challenges and potential of artificial general intelligence
- Group discussion: Assessing risks in the AI and ML supply chain
- Q&A
Your Instructor
Razi Rais
Razi Rais is a cybersecurity and AI leader at Microsoft, with over 20 years of experience building secure, resilient systems for Fortune 500 companies worldwide. He brings a globally informed perspective to enterprise-scale security, shaped by hands-on experience living and working in Singapore, UAE, France, and the United States. His background spans engineering, architecture, and product management, giving him a unique lens on the evolving intersection of AI and cybersecurity. He drives enterprise efforts to secure AI at scale and address emerging threats using frameworks like the NIST AI Risk Management Framework, OWASP Top 10 for LLMs, and MITRE ATLAS. Razi has coauthored several books, including Zero Trust Networks, second edition, and Azure Confidential Computing and Zero Trust and is a frequent speaker at conferences such as RSA and Identiverse. He serves on the GIAC advisory board, is a Microsoft Certified Trainer and delivers AI and cybersecurity training worldwide. Connect with him on LinkedIn to follow his latest work.