From the Front Lines
Categories
- Active Directory Backup & Recovery (56)
- Active Directory Security (181)
- AD Security 101 (16)
- Community Tools (17)
- Directory Modernization (9)
- From the Front Lines (67)
- Hybrid Identity Protection (60)
- Identity Attack Catalog (10)
- Identity Threat Detection & Response (122)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- The CISO's Perspective (13)
- Threat Research (48)
- Uncategorized (1)
Identity Attack Watch: August 2022
- Semperis Research Team
- Aug 31, 2022
Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard against attacks involving AD, the Semperis Research Team offers this monthly roundup of recent cyberattacks that used AD…
SMTP Matching Abuse in Azure AD
- Sapir Federovsky and Tomer Nahum
- Aug 30, 2022
In his TROOPERS19 talk (“I’m in your cloud … reading everyone’s email”), Dirk-jan Mollema discussed an issue he discovered that enabled the use of SMTP matching (also called soft matching) to synchronize Active Directory (AD) users to Azure AD, with the goal of hijacking unsynchronized accounts. Jan stated that Microsoft…
Purple Knight Proves Essential for Securing AD at Southern Utah University
- Semperis Team
- Aug 11, 2022
Legacy Active Directory (AD) environments are often hotbeds of cybersecurity vulnerabilities because of misconfigurations that have accumulated over time. In education organizations, the challenges of securing AD are compounded by the constant onboarding and offboarding of students and faculty. Uncovering unknown vulnerabilities in the AD environment he inherited was a…
Hybrid Identity Protection with Denis Ontiveros Merlo
- Sean Deuby
- Aug 09, 2022
Security architectures depend on identity—the “new security boundary.” Yet despite investment in identity and attempts to drive a sustainable identity culture, significant security breaches and friction still exist, given competing priorities and views on value. In this session of the HIP Podcast, originally recorded during a Hybrid Identity Protection Conference,…
Identity Attack Watch: July 2022
- Semperis Research Team
- Jul 29, 2022
Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard against attacks involving AD, the Semperis Research Team offers this monthly roundup of recent cyberattacks that used AD…
Hybrid Identity Protection with Dr. Nestori Synnimaa
- Sean Deuby
- Jul 21, 2022
“Every component in your on-prem environment that is part of a hybrid [Active Directory] configuration needs to be treated as a Tier 0 server, so they need to be protected as well as your domain controllers,” explains Dr. Nestori Synnimaa, AADInternals creator and Sr Principal Security Researcher at Secureworks Counter…
Identity Attack Watch: June 2022
- Semperis Research Team
- Jun 30, 2022
Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard against attacks involving AD, the Semperis Research Team offers this monthly roundup of recent cyberattacks that used AD…
Top Tips for Protecting Active Directory
- Darren Mar-Elia
- Jun 24, 2022
Active Directory is one of the most important components of your network. Yet protecting Active Directory can be one of the most challenging tasks on your to-do list. The problem is that AD changes so often and on such a large scale that it’s effectively immune to ordinary change management.…
