Identity Threat Detection & Response
Categories
- Active Directory Backup & Recovery (69)
- Active Directory Security (242)
- AD Security 101 (18)
- Community Tools (26)
- Crisis Management (5)
- Directory Modernization (10)
- From the Front Lines (70)
- Hybrid Identity Protection (87)
- Identity Attack Catalog (32)
- Identity Threat Detection & Response (173)
- Our Mission: Be a Force for Good (14)
- Purple Knight (6)
- Semperis University (5)
- The CISO's Perspective (18)
- Threat Research (79)
- Uncategorized (3)
Bringing Identity Context Into the Microsoft Security Workflow: Semperis’ Integration with Sentinel and Copilot
- Ran Harel
- Jun 23, 2026
We now have a working, field-ready integration that brings Semperis Lightning Intelligence into the Microsoft security ecosystem. This is not just another screen for defenders to look at. It’s a way to make identity risk actionable inside the workflows security teams already use every day.
When the Lights Go Out: What the Foxconn Breach Tells Us About Identity-First Ransomware
- Benjamin Lim
- Jun 19, 2026
Understanding how an identity-first exploit enabled ransomware attackers to disable Foxconn can open your eyes to possible gaps in your own identity security. Discover how attackers take advantage of complexity in manufacturing organizations—and steps you can take to defend your organization’s business operations.
Zero Trust vs Breach Prevention: What’s Your Identity Security Objective?
- Vital Cilliac
- Jun 04, 2026
For many organizations, meeting goals for Zero Trust maturity is a key requirement. But to go beyond checkbox compliance—and reduce risk—you need a deeper understanding of real-world vulnerabilities, attack paths, and operational weaknesses.
How to Secure Entra ID Workload Identities—Before AI Agent Sprawl Catches Up
- Semperis
- May 15, 2026
AI agents may be raising the stakes, but many organizations still need to secure the workload identities already operating in Microsoft Entra ID. Revisit a HIP Conf Europe session that delivers practical, technical guidance on guardrails, delegated management, threat detection, and governance—making it a smart watch for identity security practitioners.
Identity Resilience Checklist: 6 Ways to Think Beyond Backup
- Darren Mar-Elia | Principal Security Strategist
- May 04, 2026
Resilience means you can recover your identity system in a trustworthy way to a level that restores critical business functions. When evaluating any identity resilience solution, demand that your vendor meet this list of non-negotiable requirements—and prove it.
Rethinking Cyber Crisis Management: Why Plans Fail — and What to Build Instead
- Courtney Guss | Director of Crisis Management
- Mar 25, 2026
Most organizations believe they are prepared for cyber crisis management because they have incident response plans, playbooks, and tabletop exercises. But these artifacts often fail when faced with real-world complexity. Here’s what to build instead.
What You Need to Know: Windows Admin Center Remote Privilege Escalation (CVE-2026-26119)
- Andrea Pierini
- Mar 23, 2026
Learn about the discovery of CVE-2026-26119: why it worked and why you shouldn't underestimate authentication reflection.
Hardening Entra ID Recovery and Identity Security Resilience
- Tim Springston
- Feb 24, 2026
Most identity recovery strategies primarily focus on users and groups. But in Entra ID, that’s only part of the story. After an attack, if access signals are missing or misaligned, you may technically have your users back, but you still can’t safely run the business. Take a look at how…
