Dr. Active Directory vs. Mr. Exposed Attack Surface: Who'll Win This Fight?

2023-05-19 11:04

Many attackers seeking to access SaaS apps choose to access them via a compromise of the on-prem environment, instead of attacking them directly through a browser.

The common pattern of this kind of attack is to gain control of an employee's endpoint using social engineering and, once there, strive to compromise usernames and passwords to use them for malicious access to SaaS apps.

Silverfort has pioneered the first platform purpose-built to protect against identity threats - in real time - making use of compromised credentials to access targeted resources.

Silverfort provides continuous monitoring, risk analysis, and active policy enforcement on every incoming authentication and access request made by any user to any resource, both on-prem and in the cloud.

A user wants to access a resource and initiates an access request to AD. AD, instead of deciding by itself whether to grant or deny access based on the password match, forwards this access request to Silverfort.

Silverfort receives the access request and analyzes it using a multi-layered AI engine while also evaluating the request against pre-configured access policies.

News URL

https://thehackernews.com/2023/05/dr-active-directory-vs-mr-exposed.html

#activedirectory #attack