AD is a common target in critical infrastructure attacks
Some of the most notorious cyberattacks—with global consequences—have targeted critical infrastructure systems. The attacks on SolarWinds, Colonial Pipeline, and the Irish Health Service are just a few. Because many utilities manage infrastructure critical to daily life, nation states and other malicious actors have an interest in developing cyber weapons that target utilities.
Attacks on public infrastructure—as in every other sector—often target Active Directory, the core identity service for 90% of organizations worldwide. Once cybercriminals gain access to AD, they can escalate privileges and unleash malware that affect the entire network in minutes. Protecting public infrastructure systems from cyberattacks starts with protecting the identity system.