Identity Attack Watch: November 2022

Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard ...
ImmutableID and hard matching

SyncJacking: Hard Matching Vulnerability Enables Azure AD Account Takeover

| | Active Directory
This post describes an abuse of hard matching synchronization in Azure AD Connect that can lead to Azure AD account takeover. These findings build on the research that Semperis published in August, ...
Construction Firm Strengthens its ITDR Foundation with Purple Knight

Construction Firm Strengthens its ITDR Foundation with Purple Knight

| | Active Directory
Between remote users and contractors, construction company Maple Reinders needed to get control of Active Directory (AD) user account security and shore up its Identity Threat Detection and Response (ITDR) foundation—fast. Managing ...
Certificates and Pwnage and Patches, Oh My!

Certificates and Pwnage and Patches, Oh My!

| | Active Directory, PKI
This post was written by Will Schroeder and Lee Christensen.A lot has happened since we released the “Certified Pre-Owned” blog post and whitepaper in June of last year. While the paper details ...

Identity Attack Watch: October 2022

Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard ...

Active Directory Forest Recovery Introduces New OS Provisioning Tool

Even after more than 20 years of service, Active Directory (AD) remains one of the most critical components of the typical enterprise’s IT infrastructure. AD is easy for users to take for ...

Preventing a SYSVOL Horror Story

It’s Cybersecurity Awareness Month, and an excellent time to bust the ghosts of configurations past. One of the actions that the Cybersecurity & Infrastructure Security Agency (CISA) and National Cybersecurity Alliance (NCA) ...

Missouri School District Finds, Fixes Active Directory Security Gaps

| | Active Directory
“As a K–12 environment, our Active Directory [AD] deployment is a bit unique compared to how a standard business network would look,” says John Hallenberger, systems administrator and project leader for the ...

The Growing Threat of Ransomware as a Service

| | Active Directory, Ransomware
Ransomware attacks have reportedly declined this year. But don’t start celebrating just yet. “Gang models are evolving,” notes my colleague, Alexandra (Alix) Weaver, Semperis Solutions Architect. “I caution everyone: Do not let ...

Identity Attack Watch: September 2022

Cyberattacks targeting Active Directory are on the upswing, putting pressure on AD, identity, and security teams to monitor the constantly shifting AD-focused threat landscape. To help IT pros better understand and guard ...