Security News

A Comprehensive Guide to Finding Service Accounts in Active Directory
2024-10-22 11:00

Service accounts are vital in any enterprise, running automated processes like managing applications or scripts. However, without proper monitoring, they can pose a significant security risk due...

Active Directory compromise: Cybersecurity agencies provide guidance
2024-09-26 14:20

Active Directory (AD), Microsoft’s on-premises directory service for Windows domain networks, is so widely used for enterprise identity and access management that compromising it has become almost...

Why ransomware attackers target Active Directory
2024-08-29 04:00

Ransomware attacks have surged 78% year-over-year, affecting various sectors and organizations and significantly impacting supply chains. In this Help, Net Security video, Craig Birch, Technology...

Are you blocking "keyboard walk" passwords in your Active Directory?
2024-08-16 14:01

A keyboard walk password typically refers to a password created by moving sequentially over the keyboard keys in a pattern that resembles walking. Some examples of keyboard walk passwords that might look secure at first glance include; 'qwertyuiop', 'Zxcvbnm', and 'iuytrewQ' - but these are predictable and commonly found in compromised password data.

Avoid high cyber insurance costs by improving Active Directory security
2024-03-19 14:02

Insurance broker and risk advisor Marsh revealed that US cyber insurance premiums rose by an average of 11% in the first quarter of 2023, and Delinea reported that 67% of survey respondents said their cyber insurance costs increased between 50% and 100% in 2023. Reinforcing Active Directory security is one way to protect an organization's critical infrastructure and manage or even potentially reduce the costs of cyber insurance.

VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk
2024-02-21 05:34

VMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) following the discovery of a critical security flaw. Tracked as CVE-2024-22245 (CVSS score: 9.6), the...

Active Directory outages can cost organizations $100,000 per day
2024-02-21 04:00

Nearly every organization has core systems services tied to Active Directory that will go down during an outage, according to Cayosoft. The report revealed a 172% increase in forest-wide Active Directory outages since 2021, due to a confluence of factors including escalating cyberattacks, the growing complexity of hybrid environments, and human error.

Okta vs. Microsoft Entra ID (Azure Active Directory) 2024: IAM Software Comparison
2024-02-16 20:56

This all makes IAM solutions critical to any modern business, and two popular options in that category are Okta and Microsoft Entra ID. Okta vs. Microsoft Entra ID: Comparison. Entra ID Free Entra ID P1 Entra ID P2 Entra ID Governance Free $6.00 per user, per month $9 per user, per month $7 per user, per month Identity governance.

SOAPHound: Open-source tool to collect Active Directory data via ADWS
2024-02-08 05:00

SOAPHound is an open-source data collection tool capable of enumerating Active Directory environments through the Active Directory Web Services protocol. SOAPHound is a substitute for various open-source security tools typically employed for extracting data from Active Directory via the LDAP protocol.

How to Apply Zero Trust to your Active Directory
2024-02-07 15:05

It's vital the credentials stored within are kept secure - so how can we apply zero trust principles towards keeping our Active Directory secure? Password reset processes are often a point of vulnerability in an organization's Active Directory security, especially when they involve sending a reset link or code to the user's email or phone.