U.S. Indictment of Sandworm Highlights the Importance of Protecting Active Directory

The latest development in the 2017 NotPetya Attack saga should be a reminder for organizations that it only takes a handful of cybercriminals to take down all of your operations.   Last week, the US Department of Justice announced charges including computer fraud and conspiracy against six hackers of the cybercriminal group known as Sandworm who are confirmed …

10 Women in Cybersecurity You Should Follow

October is designated National Cyber Security Awareness Month, and while the month may be coming to an end, the fight against cyber attackers will continue to intensify. This year’s cybersecurity awareness month theme is “Do Your Part. #BeCyberSmart.” At Semperis, we work hard to build a culture of cybersecurity awareness with our employees, which is …

The Weaponization of Active Directory: An Inside Look at Ransomware Attacks Ryuk, Maze, and SaveTheQueen

Like never before, Active Directory (AD) is in the attackers’ crosshairs. In this blog, we’ll examine how ransomware attacks are abusing AD and how enterprises can evolve their defensive strategies to stay ahead of attackers.   First, a quick note about the recent privilege escalation vulnerability dubbed Zerologon, which allows an unauthenticated attacker with network access to a domain controller to fully …