The Added Dangers Privileged Accounts Pose to Your Active Directory
In any organization, there are certain accounts that are designated as being privileged. These privileged accounts differ from standard …
Active Directory
Good end user passwords begin with a well-enforced password policy
In this interview with Help Net Security, Lori Österholm, CTO at Specops Software, explains what makes passwords vulnerable and suggests …
The security gaps that can be exposed by cybersecurity asset management
Cybersecurity asset management does not come with the excitement following the metaverse, blockchain, or smokescreen detection …
Attivo Network enhancements strengthen protection of Active Directory in Azure
Attivo Networks announced that it has expanded its identity infrastructure assessment technology for Azure Active Directory (AD). The new …
Attivo Networks ADSecure-DC solution identifies enumeration and attacks targeting Active Directory
Attivo Networks announced it has expanded its Active Directory Protection portfolio with capabilities to efficiently detect identity-based …
Enzoic’s automated credentials monitoring in Active Directory detects unsafe passwords
Enzoic released the latest version of Enzoic for Active Directory. The solution prevents users from choosing weak or previously exposed …
Audit Your Active Directory with a free, read-only scan from Specops
Specops Password Auditor is a read-only tool that scans your Active Directory and identifies password-related vulnerabilities. The …
Patch these 2 Active Directory flaws to prevent the takeover of Windows domains
Microsoft warns of a couple of Active Directory flaws fixed with the November 2021 Patch Tuesday updates that could allow takeover of …
Microsoft warns of easy Windows domain takeover via Active Directory bugs
Microsoft warned customers today to patch two Active Directory domain service privilege escalation security flaws that, when combined, …
How to automate AWS Managed Microsoft AD scaling based on utilization metrics
AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD), provides a fully managed service for Microsoft Active …
Guarding against DCSync attacks
Threat actors can launch DCSync attacks using tools like Mimikatz or the Get-ADReplAccount cmdlet from DSInternals. These tools make this …
Everything you wanted to know about trusts with AWS Managed Microsoft AD
If you only remember one thing about Kerberos and trust, it should be referrals. Let’s look at the workflow in Figure 1, which shows a …
Tackling the problem of Active Directory misconfigurations [Q&A]
Microsoft’s Active Directory is used by many businesses as a way of managing identity services and controlling access. But if it’s not …
Active Directory control: How adversaries score even bigger goals via attack paths
The scary part about an attacker gaining control of Active Directory is the power that gives them – and there are many ways they can use …