November. New Orleans.
No Excuses.
The Hybrid Identity Protection Conference is heading to NOLA and you're invited! Get the latest on ITDR, operational resilience, and leveling up your security posture. Are you hip, or are you HIP?
Register your rad selfIdentity Threat Detection & Response
Categories
- Active Directory Backup & Recovery (64)
- Active Directory Security (221)
- AD Security 101 (17)
- Community Tools (19)
- Directory Modernization (9)
- From the Front Lines (69)
- Hybrid Identity Protection (68)
- Identity Attack Catalog (31)
- Identity Threat Detection & Response (146)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- Semperis University (4)
- The CISO's Perspective (16)
- Threat Research (68)
Top 3 Identity-Based Attack Trends to Watch in 2024
- Semperis
Each year, the total number of cyberattacks and cost of ransomware-related damage increases globally. Microsoft recently reported that attempted password attacks have soared “from around 3 billion per month to over 30 billion.” Clearly, a proactive approach to mitigating identity-based attacks is a good New Year’s resolution. To help you…
Holiday Cybersecurity Tips
- Sean Deuby | Principal Technologist, North America
The holidays are a busy time for shoppers, retail businesses—and cybercriminals. The Cybersecurity and Infrastructure Security Agency (CISA) has previously noted “an increase in highly impactful ransomware attacks occurring on holidays and weekends—when offices are normally closed” and has called holiday shopping seasons “a prime opportunity for bad actors to…
How to Defend Against MFA Fatigue Attacks: AD Security 101
- Daniel Petri | Senior Training Manager
An MFA fatigue attack—also known as MFA bombing—is an attack tactic, technique, and procedure (TTP) in which a threat actor floods users with multifactor authentication (MFA) requests. By overwhelming, confusing, or distracting the user into approving a fraudulent request, attackers hope to gain access to your network environment. Microsoft recently…
Semperis Offers New Protection Against Okta Breaches
- Semperis Research Team
In an ever-evolving digital landscape, organizations rely on robust identity protection solutions to safeguard sensitive data and maintain secure operations. For most enterprise businesses, that means protecting Active Directory and Entra ID (formerly Azure AD). But identity protection is just as vital for organizations that use Okta, a cloud-based identity…
How to Protect Active Directory Against Kerberoasting: AD Security 101
- Daniel Petri | Senior Training Manager
Active Directory (AD) remains a crucial backbone for enterprise IT environments, centralizing authentication and authorization for users and computers. However, Active Directory’s importance—coupled with its age and the technical debt it often accrues—makes it a primary target for cyberattacks. One common attack technique, called Kerberoasting, exploits the Kerberos authentication protocol…
How to Prevent a Man-in-the-Middle Attack: AD Security 101
- Daniel Petri | Senior Training Manager
A man-in-the-middle attack, also known as an MitM attack, is a form of eavesdropping in an attempt to steal sensitive data, such as user credentials. These attacks can pose a serious threat to organizations' network security, particularly in environments that use Microsoft Active Directory (AD) for identity management. As Active…
AD Security 101: Securing Primary Group IDs
- Daniel Petri | Senior Training Manager
Welcome to AD Security 101, a series that covers the basics of Active Directory (AD) security. This week, we look at primary group IDs and how unnecessary changes to them can complicate account management. Attackers can also exploit primary group IDs to introduce security risks, including privilege escalation, and to…
Resource-Based Constrained Delegation: AD Security 101
- Daniel Petri | Senior Training Manager
Resource-based constrained delegation (RBCD) is an Active Directory (AD) security feature that enables administrators to delegate permissions in order to manage resources more securely and with greater control. Introduced in Windows Server 2012 R2 as an enhancement to the traditional Kerberos constrained delegation (KCD), RBCD can help to reduce the…
