Despite the rise of cloud identity platforms and the push toward modern authentication methods, Active Directory (AD) plays a critical role in many organizations, especially in environments with operational technology (OT). AD’s deep integration into on-premises infrastructure, legacy applications, and critical systems makes it extremely difficult to replace. This dependency runs even deeper in OT […]
IT security is an important consideration for every organization, and the recent surge in cyberattacks across the globe—from both criminal organizations and state actors—has increased dramatically, fueled partly by bad actors starting to leverage AI to accelerate and enhance their attacks. One of the more common cyberattacks is known as Password Spraying, a type of brute-force
As organizations embrace cloud technologies and modernize their authentication methods, they must still maintain support for their legacy on-premises environments. A key step in transitioning to a cloud-first strategy is extending on-premises Active Directory (AD) identities to a cloud identity provider. For many, this is accomplished through Microsoft Entra Connect Sync, which synchronizes identities and
AD Connect vs Cloud Sync: Should You Migrate from Connect Sync to Cloud Sync? Read More »
Trying to understand the differences between Microsoft Entra Plan 1 (P1) and Plan 2 (P2)? You’re not alone. Many organizations are tasked with understanding how each of these identity management services fit into their overall security picture. Whether you’re building a modern zero trust model or simply upgrading from basic access controls, it’s crucial that
What Are the Differences Between Microsoft Entra P1 vs P2? Read More »
The Kerberos authentication protocol, developed by the Massachusetts Institute of Technology (MIT), is an often-discussed topic because it is a stronger form of authentication when compared to the NT Lan Manager (NTLM) protocol in the context of authenticating to services on an Active Directory (AD) network. However, like any technology, Kerberos isn’t perfect. One imperfection
4 Tips for Protecting Against Kerberos Delegation Attacks Read More »
When you hear the phrase “art of deception,” you might think of street magicians dazzling crowds of onlookers with their sleight of hand tricks and illusions. For me, it brings to mind fishing. The art of deception is key to turning fishing into catching. Using lures that mimic natural prey and lifelike movements to entice
Using the Art of Deception to Catch Attackers Read More »
One of the most dangerous phases of a cyberattack is privilege escalation, which involves a bad actor getting access to network resources via compromised user accounts and then elevating the privilege level of those compromised accounts in the network so the attackers can more easily access and control important infrastructure resources. Privilege escalation is often
How to Defend Against Privilege Escalation Attacks Read More »
As organizations increasingly embrace digital transformation, electronically stored data is a company’s most valuable asset. Unfortunately, it’s also one of the most vulnerable. Whether it’s customer records, financial data, intellectual property, or sensitive internal communications, protecting this information from accidental or malicious exposure is critical. This is where Data Loss Prevention (DLP) comes in. DLP
A Guide to Microsoft Office 365 Data Loss Prevention (DLP) Read More »
