The cybersecurity landscape is increasingly shaped by defenders' ability to proactively discover significant attacks before they become major incidents. While traditional threat intelligence provides a foundation, the most impactful breakthroughs come from security teams generating and amplifying their own intelligence through systematic investigation and creative analysis.

The evolution of attack techniques, from simple malware to sophisticated living-off-the-land approaches, demands that defenders move beyond reactive monitoring to active threat hunting and intelligence multiplication. Success in modern cybersecurity fundamentally depends on transforming isolated indicators into comprehensive attack detection strategies.

Given the high stakes of missing critical security incidents, it is essential for defenders to master the art of threat intelligence multiplication and creative detection techniques.

This session, led by John Lambert, corporate VP and distinguished engineer at Microsoft Security Research, will cover:

• Foundational concepts in threat detection
• Advanced hunting strategies like "zooming out" to track attacker infrastructure and time-travel breach detection
• Creative tactics for inducing attacker failures and leveraging honeypot systems