Displaying items by tag: Active Directory

Rapid digitisation has forced fashion brands to reimagine how shopping in the digital world takes place, but a more interconnected retail experience has increased the number of cyberattacks on fashion businesses in Australia, according to exposure management company Tenable.

Intelligent identity and access security specialist BeyondTrust has revealed enhancements to BeyondTrust Privilege Management for Unix and Linux and BeyondTrust Active Directory Bridge.

Cybersecurity and compliance company Proofpoint has entered into a definitive agreement to acquire Identity Threat Detection and Response (ITDR)​ provider Illusive.

IT solutions and managed services provider Logicalis Australia has undertaken a digital transformation project to separate and rebuild the Western Health Active Directory which manages identity, authentication and authorisation for all users of its network and IT resources.

GUEST OPINION: When senior managers consider the best ways to protect their IT assets, it can be tempting for them to focus on tactics that will ward off brute-force attacks.

GUEST OPINION: When using modern software applications, most users don’t spend time considering all the components that make them work.

GUEST OPINION: Moves to code Active Directory exploitation directly into malware is a growing trend and concern for security professionals.

Security provider Attivo Networks has expanded its identity infrastructure assessment technology for Azure Active Directory with hybrid environment support.

Identity and security specialist Attivo Networks says its new ADSecure-DC product provides threat protection from attacks originating from Windows. Mac, Linux, IoT/OT devices, and unmanaged devices which are limited in their ability to run traditional endpoint protection software.

Microsoft's technology plays a big role in facilitating increasingly devastating cyber attacks, a senior official at an email security firm says, accusing the Redmond behemoth of profiting from the existence of vulnerabilities.

COMPANY NEWS: Attivo Networks, the experts in identity security and lateral movement attack prevention, today announced the availability of its Endpoint Detection Net (EDN) Suite on SentinelOne's Singularity XDR Marketplace, a first-of-its-kind application ecosystem that unifies prevention, detection, and response data and actions across attack surfaces with a few simple clicks.

GUEST RESEARCH: Attivo Networks, the experts in preventing identity privilege escalation and detecting lateral movement attacks, today announced the availability of a new research report conducted by Enterprise Management Associates (EMA) and commissioned in part by Attivo Networks. The report focuses on Active Directory (AD), the directory-based identity services platform used by 90% of enterprises worldwide, exploring the obstacles and threats organisations face when protecting AD and how they adapt to address these growing concerns.

GUEST RESEARCH: Attivo Networks, the experts in preventing identity privilege escalation and detecting lateral movement attacks, announced today a new white paper from Aite-Novarica Group, a leading advisory firm covering business, technology, and regulatory issues in financial services industry. The report recognises the leadership Attivo Networks demonstrates in Active Directory protection.

Attackers used a script written in Python during a recent ransomware attack which took just three hours, encrypting all the virtual disks on the target's virtual machine hypervisor.

GUEST OPINION: Bitglass founder and CEO Nat Kausik has warned that the SolarWinds attack illustrates how crucial it is to break free from single vendor security infrastructure such as Microsoft, and why it is essential to stack security tech infrastructure to mitigate against attacks.

Company News: Attivo Networks, the industry experts in lateral movement attack detection and privilege escalation prevention, announced today a new integration for the Attivo EDN Suite with SentinelOne's Singularity XDR platform. With an uptick in the number of human and machine entities to secure, the attack surface is expanding, making it challenging for organisations to protect their networks from credential-based attacks.

GUEST OPINION by Jim Cook, ANZ Regional Director, Attivo Networks: With cybercriminals always on the hunt for new ways to mount attacks, organisations are paying more attention to the weaknesses that exist within many deployments of Microsoft’s Active Directory (AD).

Microsoft has released an additional patch to fix the Zerologon vulnerability that surfaced last year, having first issued a patch for the flaw in August 2020 and then updated it the following month.

GUEST RESEARCH: In December 2020, FireEye uncovered and publicly disclosed a widespread attacker campaign that is being tracked as UNC2452. In some, but not all, of the intrusions associated with this campaign where Mandiant has visibility, the attacker used their access to on-premises networks to gain unauthorized access to the victim’s Microsoft 365 environment.

Cyber security firm FireEye has released new guidance for those who have been compromised by the SolarWinds attackers to harden their environments and remediate areas where attacks are feared.