Active Directory Archives

The Login Was the Breach

Enzoic | June 9, 2026 | Active Directory, Threat Intel

For years, Active Directory breaches were associated with exploit chains, malware, lateral movement, and ransomware deployment. The assumption was simple: attackers had to break through security controls before they could gain access ...

Blog | Enzoic

Summer Is Prime Time for Account Takeover

Enzoic | June 2, 2026 | account takeover, Active Directory, Cybersecurity

Vacation season creates ideal conditions for ATO. See how credential exposure, infostealer malware, and slower response times increase risk ...

Blog | Enzoic

Can CTEM Apply to Credential Security

Enzoic | May 13, 2026 | Active Directory, Cybersecurity, Password Security

How CTEM applies to credential security, compromised passwords, and identity exposure—and how Enzoic helps reduce credential-based risk ...

Blog | Enzoic

Diagram showing how Kerberos authentication works

RC4 in Active Directory: The silent risk that’s harder to find than you think

Jenya Raisfeld | May 7, 2026 | Active Directory, Authentication, Blog, identity security, ISPM, KERBEROS, NHI security, service accounts

RC4 is a legacy encryption algorithm that Kerberos has relied on for decades to secure authentication traffic in Active Directory (AD) environments. That’s about to change—whether your environment is ready or not. ...

Blog – Silverfort

CMMC Level 2

Enzoic | May 5, 2026 | Active Directory, Continuous Password Protection, Regulation and Compliance

How stronger Active Directory password controls support CMMC Level 2 compliance, reduce password reuse, and prevent credential-based attacks ...

Blog | Enzoic

CMMC Level 2

Enzoic | May 5, 2026 | Active Directory, Continuous Password Protection, Regulation and Compliance

How stronger Active Directory password controls support CMMC Level 2 compliance, reduce password reuse, and prevent credential-based attacks ...

Blog | Enzoic

Shadow Admins in Active Directory: Hidden Privilege Paths Attackers Exploit

Michelle Rhodes | April 15, 2026 | Active Directory, attack path mapping, corporate security, identity and access management, identity security, Offensive Security, Privilege Escalation

What Are Shadow Admins in AD? A common problem we encounter within many customer AD environments are accounts that, at first glance, may appear innocuous, but that actually have hidden administrative privileges ...

Offensive Security Blog: Latest Trends in Hacking | Praetorian

Native Active Directory Password Policies Still Fail Modern Attacks

Enzoic | April 15, 2026 | Active Directory, Continuous Password Protection

How Active Directory modern attacks exploit credential exposure—not just weak passwords For years, organizations have relied on native Active Directory password policies as the foundation of identity security. Minimum length requirements, character ...

Blog | Enzoic

The False Sense of Security in “Successful Logins”

Enzoic | April 8, 2026 | account takeover, Active Directory, Password Security

Successful logins can hide compromised credentials. Learn why valid access has become a major blind spot in identity security ...

Blog | Enzoic

2026 SANS Identity Threats Report: Why Attacks Still Work

Enzoic | March 31, 2026 | account takeover, Active Directory, Data breaches

SANS findings highlight the real issue, compromised credentials enable access long before traditional security controls detect a problem ...

Blog | Enzoic

Active Directory

The Login Was the Breach

Summer Is Prime Time for Account Takeover

Can CTEM Apply to Credential Security

RC4 in Active Directory: The silent risk that’s harder to find than you think

CMMC Level 2

CMMC Level 2

Shadow Admins in Active Directory: Hidden Privilege Paths Attackers Exploit

Native Active Directory Password Policies Still Fail Modern Attacks

The False Sense of Security in “Successful Logins”

2026 SANS Identity Threats Report: Why Attacks Still Work

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On