Threat-informed defence: detecting & disrupting Fox Kitten

Speaker

• Richard Ford, CTO at Integrity360
• Mark Standish, Head of Threat Content at Integrity360

Join Integrity360's CTO Richard Ford and Mark Standish, Head of Threat Content, as they walk through a realistic, targeted threat scenario—demonstrating how a threat-centric approach can help you make smarter, intelligence-led security decisions.

This session will focus on Fox Kitten, an Iranian state-backed threat group with a documented history of initial access brokerage and hack-and-leak campaigns. The group has been observed targeting a wide range of sectors, including technology, critical national infrastructure, and government.

We’ll profile the adversary using threat intelligence and create a micro-emulation plan replicating their behaviours in a controlled environment. We’ll then review how defensive tools respond—analysing alerts and signals to assess effectiveness, identify gaps, and highlight improvement opportunities.

If you're looking to move beyond generic assessments and towards actionable, threat-informed strategies, this is the session for you.

Who should attend: 

• SOC analysts and detection engineers looking to enhance their threat visibility
• Threat intelligence and incident response professionals
• Security architects seeking to align detection logic with attacker behaviour
• CISOs and senior IT leaders aiming to invest more strategically in threat-led defence