Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Active Directory

Introduction to Active Directory Security

Mar 30, 2022 By CrowdStrike In CrowdStrike
Active Directory (AD) is legacy technology that was not designed for modern attacks – yet it is still relied on by over 90% of the Fortune 1000 companies. This video highlights how modern attacks like ransomware exploit this “weakest link in your cyber defense”, and why this is a problem you cannot afford to ignore.
View Video

Why Is Active Directory Security Important; Issues And Benefits

Feb 19, 2022 By Cyphere In Cyphere
Active Directory Security is important to companies of all sizes. This video will cover the benefits, issues, and how Active Directory security can be improved!#Activedirectory #securityservices Cyphere is a UK-based cyber security services provider helping organisations to secure their most prized assets. We provide technical risk assessment (pen testing/ethical hacking) and managed security services. This advice is a true third party opinion, free from any vendor inclinations or reselling objectives.
View Video
netwrix

What Are Azure AD Custom Security Attributes?

Feb 10, 2022 By Kevin Joyce In Netwrix

Microsoft released a valuable new Azure feature in December of 2021: custom security attributes. This feature is still in preview. Custom security attributes enable organizations to define new attributes to meet their needs. These attributes can be used to store information or, more notably, implement access controls with Azure attribute-based access control (ABAC). Azure ABAC, which is also in preview, enables an organization to define access rules based on the value of an object’s attribute.

Read Post
netwrix

Top 5 Azure AD Security Best Practices

Jan 25, 2022 By Farrah Gamboa In Netwrix

Azure Active Directory holds the keys to your Microsoft 365 kingdom. Responsible for vital functions such as authentication and authorization, Azure AD is ultimately responsible for managing access across the Microsoft cloud ecosystem. For that reason, is the target of many cyberattacks. In this blog post, we will detail the top 5 security best practices to follow to secure your Azure Active Directory and protect your business.

Read Post
CrowdStrike

noPac Exploit: Latest Microsoft AD Flaw May Lead to Total Domain Compromise in Seconds

Jan 11, 2022 By Alex Talyanski In CrowdStrike

Microsoft recently published two critical CVEs related to Active Directory (CVE-2021-42278 and CVE-2021-42287), which when combined by a malicious actor could lead to privilege escalation with a direct path to a compromised domain. In mid-December 2021, a public exploit that combined these two Microsoft Active Directory design flaws (referred also as “noPac”) was released.

Read Post
CrowdStrike

Reduce Active Directory Security Risks

Dec 20, 2021 By CrowdStrike
Since a majority of the breaches are credential based, securing your multi-directory identity store - Microsoft Active Directory (AD) and Azure AD - is critical to protecting your organization from adversaries launching ransomware and supply chain attacks. Your security and IAM teams are concerned about securing AD and maintaining AD hygiene - and they need to be in sync, for example, to ensure that legacy and deprecated protocols like NTLMv1 are not being used and that the right security controls are in place to prevent breaches in real time.
Get White Paper
splunk

Active Directory Lateral Movement Detection: Threat Research Release, November 2021

Dec 10, 2021 By Splunk Threat Research Team In Splunk

The Splunk Threat Research Team recently updated the Active Directory Lateral Movement analytic story to help security operations center (SOC) analysts detect adversaries executing these techniques within Windows Active Directory (AD) environments. In this blog post, we’ll describe some of the detection opportunities available to cyber defenders and highlight detections from the analytic story.

Read Post
CalCom

Netlogon Service Configuration in Active Directory and Member Servers

Dec 9, 2021 By Keren Pollack In CalCom
Netlogon Service is a Microsoft Windows Server process used to validate or authenticate users and devices in a domain. It is used to confirm the user’s identity on any particular network that the user is trying to access. Netlogon is a process, not an application, therefore it is continuously running in the background. It can be stopped either manually or by some runtime error.
Read Post
CalCom

Active Directory Audit Rules

Nov 11, 2021 By Keren Pollack In CalCom
Keeping Active Directory secure is one of the most critical tasks for organizations’ information security. Keeping track of users’ activity is a fundamental part of AD security. But before jumping into purchasing shiny tools, there’s a lot you can do by simply changing and leveraging AD built-in audit capabilities.
Read Post
alienvault

Hands-on domain password policy setup for Active Directory

Oct 18, 2021 By Irfan Shakeel In AT&T Cybersecurity

Dealing with the massive architecture of client-server networks requires effective security measures. Everyone has become painfully aware of all dangerous fishes roaming around the pool of the network, trying to get access to the system. Having a weak password policy is a key vector for attackers to gain system access. However, admins can help protect password security of the wide-reaching network using Group Management Policy (GPO).

Read Post
Subscribe to Active Directory

Copyright © 2024 OpsMatters™. All rights reserved.