For more than two decades, Microsoft Active Directory (AD) has been the de facto method used by organizations to authenticate and authorize users so they can access computers, devices, and applications within a network. AD is famous for its ease of management. But this ease of use comes with security drawbacks. Replicating an AD forest, for example, centralizes access to a company's information stores. So once an attacker gets there, the bad actor can wreak havoc across the entire business. AD is difficult to secure given its constant flux, large number of parameters, and ever-increasing proliferation of advanced and powerful hacking and discovery tools.
In this webinar, Guido Grillenmeier (Semperis Chief Technologist) and Jim Doggett (CISO) will discuss AD endpoints used in recent cyberattacks, how to look for warning signs that AD has been compromised and what to do if something goes wrong. attack. You will leave this seminar with guidelines for securing AD against cyberattacks, including:
Identify Indicators of Exposure (IoE)
– Understand changes that bypass security logs (including disabling or deleting logs or disabling agents that prevent injection attacks)
– Preparing for AD attack remediation
– Understand the limitations of AD's native recovery capabilities
– Ensure that recovery from the attack does not reintroduce malware
Visit https://www.semperis.com/ to learn more about how to protect your Active Directory and stay ahead of cyberattacks.
Learn more: https://www.semperis.com/active-directory-forest-recovery/
Please take the opportunity to connect and share this video with your friends and family if you find it useful.
No Comments