Identity Threat Detection & Response
Categories
- Active Directory Backup & Recovery (69)
- Active Directory Security (239)
- AD Security 101 (18)
- Community Tools (26)
- Crisis Management (5)
- Directory Modernization (9)
- From the Front Lines (70)
- Hybrid Identity Protection (85)
- Identity Attack Catalog (32)
- Identity Threat Detection & Response (170)
- Our Mission: Be a Force for Good (14)
- Purple Knight (6)
- Semperis University (5)
- The CISO's Perspective (18)
- Threat Research (79)
- Uncategorized (3)
Resource-Based Constrained Delegation: AD Security 101
- Daniel Petri | Senior Training Manager
Resource-based constrained delegation (RBCD) is an Active Directory (AD) security feature that enables administrators to delegate permissions in order to manage resources more securely and with greater control. Introduced in Windows Server 2012 R2 as an enhancement to the traditional Kerberos constrained delegation (KCD), RBCD can help to reduce the…
AD Security 101: Domain Controller Security
- Daniel Petri | Senior Training Manager
For organizations that use Active Directory (AD), securing domain controllers (DCs) is an essential part of AD security. DCs are critical components of the IT infrastructure. These servers hold sensitive and security-related data, including user account information, authentication credentials, and Group Policy objects (GPOs). Naturally, then, DC security is an…
Identity Attack Watch: AD Security News, April 2023
- Semperis Research Team
As cyberattacks targeting Active Directory continue to rise, AD security, identity, and IT teams face mounting pressure to monitor the evolving AD-focused threat landscape. To assist IT professionals in comprehending and preventing attacks that involve AD, the Semperis Research Team publishes a monthly roundup of recent cyberattacks. In this month’s…
Identity Attack Watch: AD Security News, March 2023
- Semperis Research Team
As cyberattacks targeting Active Directory continue to rise, AD security, identity, and IT teams face mounting pressure to monitor the evolving AD-focused threat landscape. To assist IT professionals in comprehending and preventing attacks that involve AD, the Semperis Research Team publishes a monthly roundup of recent cyberattacks. In this month’s…
Azure Active Directory Security: 5 Ways to Secure Your AD
- Eitan Bloch | Semperis Product Manager
Securing Active Directory (AD)—the common target in 9 out of 10 cyberattacks—is difficult. Many organizations have legacy AD environments with accumulated misconfigurations that attackers love to exploit. And although 90% of organizations worldwide use AD as their primary identity store, Gartner research shows that only 33% have any sort of…
AD Security 101: SIEM Tools and AD Monitoring
- Daniel Petri | Senior Training Manager
Before we dive into technical tips that I mentioned in my previous post, I want to raise an important point. If you're relying solely on security information and event management (SIEM) tools for Active Directory (AD) security monitoring—especially against potential cybersecurity attacks—you might not be getting a complete picture of…
AD Monitoring: AD Security 101
- Daniel Petri | Senior Training Manager
An unmanaged Active Directory (AD) can have a profound impact on your operations, leading to downtime and increasing your vulnerability to network security threats. AD monitoring can provide insights you need to ensure smooth operations, optimize performance, and safeguard your network. Welcome to AD Security 101. This blog series covers…
3 Steps to Protect AD from Wiperware
- Darren Mar-Elia | Principal Security Strategist
We’re barely a month into the new year, but wiperware is back in the news. DevPro Journal notes a “drastic increase” starting last year, likely driven by geopolitical conflict. What is wiperware—and how can you protect your organization? What is wiperware? Wiperware is often used as part of an advanced…
