Active Directory control: How adversaries score even bigger goals via attack paths

2021-11-02 07:00

Microsoft Active Directory and Azure Active Directory are directory services products used for identity and access management at most major enterprises all over the world.

All Active Directory environments are vulnerable to a type of attack called identity attack paths.

Attack paths are inevitable in Active Directory thanks to several factors.

Security teams need capabilities to map and prioritize the resulting attack paths to even attempt to take corrective action.

The scary part about an attacker gaining control of Active Directory is the power that gives them - and there are many ways they can use that power.

Attack paths are attractive to attackers because they're harder to detect and quantify than a software vulnerability, they exist in every organization thanks to the scope and complexity of Active Directory, and there's virtually no way to stop an adversary from trying again if they are caught and kicked off the network.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/obXCS-0Sw_A/

#activedirectory #attack