Vectra AI
Attack labs
Hosted by
No items found.
The Attack
Join fellow SOC leaders and security architects for a technical, attacker-focused deep dive into how modern attack campaigns unfold and how to detect them before business impact.
April 22, 2026
14:00 to 17:30
Stockholm
70% of cyber-attacks begin with logins, not break-ins
Modern attackers use valid accounts and trusted workflows. They move across AD, Entra, SaaS, cloud, and data center without triggering traditional controls. By the time ransomware executes or data leaves the environment, the attacker has often been operating in plain sight for days.
Register Now
Join us as we deep dive into:
- Identity-based initial access
- Post-login persistence and privilege escalation
- Hybrid lateral movement across cloud and on-prem
- Where early intent reveals itself in telemetry
- Why EDR-first detection models miss the beginning
Agenda at a glance
13:00 to 14:00
Optional networking lunch
14:00 to 17:30
Technical sessions
- Initial Access: Identity as the Entry Point
- The Post-Login Kill Chain
- Real-World Investigation: Inside a Hybrid Identity Breach
- Early Detection and Containment: Finding Intent Before Impact
17:30 onward
Optional peer networking
Who should attend
This event is designed for:
- SOC leads responsible for detection strategy
- Security architects designing hybrid visibility
- Detection and response engineers tuning analytics
- Technical security decision-makers reassessing control effectiveness
Location
IOFFICE Business Center, Kungsgatan 60, 111 22 Stockholm Sweden
Meet the Team
No items found.