November. New Orleans.
No Excuses.
The Hybrid Identity Protection Conference is heading to NOLA and you're invited! Get the latest on ITDR, operational resilience, and leveling up your security posture. Are you hip, or are you HIP?
Register your rad selfFeatured posts
- Daniel Lattimer | Area Vice President – EMEA West
- Aug 30, 2024
Categories
- Adi Malyanker | Security Researcher
- Aug 13, 2024
- Mickey Bresman
- Jul 31, 2024
- Eric Woodruff
- Aug 07, 2024
Latest posts
- Daniel Lattimer | Area Vice President – EMEA West
- Aug 30, 2024
- Adi Malyanker | Security Researcher
- Aug 13, 2024
- Nico Devoti | Senior Director, Technology Alliances
- Aug 09, 2024
- Eric Woodruff
- Aug 07, 2024
- Mickey Bresman
- Aug 05, 2024
- Huy Kha | Senior Identity & Security Architect
- Aug 01, 2024
- Mickey Bresman
- Jul 31, 2024
- Semperis Research Team
- Jul 31, 2024
Categories
Active Directory Backup & Recovery
Cohesity and Semperis Provide Unmatched Cyber Resilience for Business-Critical Data
- Nico Devoti | Senior Director, Technology Alliances
- Aug 09, 2024
An organization’s data is one of its most valuable assets—and a prime target for cyberattackers, who prove time and again that their victims will pay large ransom sums to get…
Forrester TEI of Semperis: Organizations Reduce AD Forest Recovery Time by 90% with ADFR
- Sean Deuby | Principal Technologist
- Jun 06, 2024
Successfully recovering from an attack on Active Directory is a race against the clock. Organizations that have been through this worst-case scenario know that being able to recover your AD…
Best Practices for Active Directory Backup
- Sean Deuby | Principal Technologist
- May 23, 2024
Maintaining business continuity during and after a cyberattack has become a chief strategic objective, not just for enterprise cybersecurity, but for IT and business leadership as well. Effective Identity Threat…
Active Directory Security
The 5 Pillars for DORA Compliance in Active Directory
- Daniel Lattimer | Area Vice President – EMEA West
- Aug 30, 2024
The Digital Operational Resilience Act (DORA) is an incoming European Union (EU) legislative framework aimed at fortifying the operational resilience of digital systems within the financial sector. All finance entities…
Cohesity and Semperis Provide Unmatched Cyber Resilience for Business-Critical Data
- Nico Devoti | Senior Director, Technology Alliances
- Aug 09, 2024
An organization’s data is one of its most valuable assets—and a prime target for cyberattackers, who prove time and again that their victims will pay large ransom sums to get…
Hello, My Name Is Domain Admin
- Mickey Bresman
- Aug 05, 2024
My friends know I’m a movie buff. Being also a mixed martial enthusiast, one of my all-time favorites is Fight Club, based on Chuck Palahniuk’s first novel. The story is…
AD Security 101
How to Defend Against Password-Spraying Attacks
- Daniel Petri | Senior Training Manager
- Jun 16, 2024
In the ever-evolving and complex cybersecurity landscape, Active Directory remains a critical infrastructure component for managing network resources and user authentication. However, its centrality also makes it a prime target…
How to Defend Against SID History Injection
- Daniel Petri | Senior Training Manager
- May 03, 2024
Security Identifier (SID) History injection is a sophisticated cyberattack vector that targets Windows Active Directory environments. This attack exploits the SID History attribute, which is intended to maintain user access…
LDAP Injection Attack Defense: AD Security 101
- Daniel Petri | Senior Training Manager
LDAP injection represents a formidable cyberattack vector, targeting the authentication and authorization mechanisms within your Active Directory environment. By exploiting improper input validation, attackers can manipulate LDAP statements and potentially…
Community Tools
Hello, My Name Is Domain Admin
- Mickey Bresman
- Aug 05, 2024
My friends know I’m a movie buff. Being also a mixed martial enthusiast, one of my all-time favorites is Fight Club, based on Chuck Palahniuk’s first novel. The story is…
Strengthening Incident Response with Forest Druid
- Huy Kha | Senior Identity & Security Architect
- Aug 01, 2024
Forest Druid is a free attack path discovery tool for hybrid identity environments, such as Active Directory and Entra ID. Unlike traditional tools that map attack paths from the external…
Purple Knight Scoring Improves Understanding of Identity System Security Vulnerabilities
- Ran Harel
Our latest Purple Knight (PK) v4.2 release introduces fundamental changes, particularly concerning the new scoring calculation. Changing from a broader approach that considered all indicators, we’ve now zeroed in on…
Directory Modernization
Security-Centric Active Directory Migration and Consolidation
- Michael Masciulli
Enterprise organizations with legacy Active Directory (AD) environments have a security problem. Their AD infrastructure has likely degraded over time and now harbors multiple security vulnerabilities because of inefficient architecture,…
Active Directory Migration: 15 Steps to Success
- Daniel Petri | Senior Training Manager
Active Directory (AD) migration projects can be challenging and complex. Such projects involve the migration of users, groups, computers, and applications from one AD domain or forest to another. Careful…
Why AD Modernization Is Critical to Your Cybersecurity Program
- Mickey Bresman
Active Directory (AD) is the core identity store for many organizations. As such, AD has also become a major target for bad actors. If attackers gain access to AD, they…
From the Front Lines
Hello, My Name Is Domain Admin
- Mickey Bresman
- Aug 05, 2024
My friends know I’m a movie buff. Being also a mixed martial enthusiast, one of my all-time favorites is Fight Club, based on Chuck Palahniuk’s first novel. The story is…
New Ransomware Statistics Reveal Increased Need for Active Directory Security and Resilience
- Mickey Bresman
- Jul 31, 2024
By now, we’re all familiar with the need for an “assume breach” mindset where ransomware and other cyber threats are concerned. To better understand the necessity and challenges of this…
LockBit, Law Enforcement, and You
- Mickey Bresman
Another day, another installment in the LockBit saga. The latest development in the never-ending story of cyber-criminal gangs versus law enforcement agencies is nearly worthy of its own TV series….
Hybrid Identity Protection
Semperis DSP: Enhance AD and Entra ID Protection from Cyber Threats
- Eitan Bloch | Semperis Product Manager
- Apr 19, 2024
The SolarWinds breach in December 2020 signified a shift in the attack path for threat actors. Cyber threats increasingly target organizations’ cloud environments, typically Microsoft Entra ID (formerly Azure AD),…
Meet Silver SAML: Golden SAML in the Cloud
- Tomer Nahum and Eric Woodruff
Key findings Golden SAML is a known attack technique discovered by CyberArk and published by Shaked Reiner. For years, Golden SAML has been known for its extraction of signing certificates…
How to Defend Against an Overpass the Hash Attack
- Daniel Petri | Senior Training Manager
In the constantly evolving landscape of cyber threats, the Overpass the Hash attack is a potent vector. Leveraging the NTLM authentication protocol, this attack enables adversaries to bypass the need…
Identity Attack Catalog
A New App Consent Attack: Hidden Consent Grant
- Adi Malyanker | Security Researcher
- Aug 13, 2024
Key findings Within Microsoft Azure, the Directory.ReadWrite.All permission holds significant implications. This permission enables a multitude of actions, including user editing and access to all data within the directory. Sound…
UnOAuthorized: Privilege Elevation Through Microsoft Applications
- Eric Woodruff
- Aug 07, 2024
This article details a series of Semperis security research team discoveries that resulted in the ability to perform actions in Entra ID beyond expected authorization controls, based on analysis of…
How to Defend Against SPN Scanning in Active Directory
- Daniel Petri | Senior Training Manager
- Jul 12, 2024
Service Principal Name (SPN) scanning is a reconnaissance technique that attackers use in Active Directory environments. This method enables attackers to discover valuable services and associated accounts, which can be…
Identity Threat Detection & Response
The 5 Pillars for DORA Compliance in Active Directory
- Daniel Lattimer | Area Vice President – EMEA West
- Aug 30, 2024
The Digital Operational Resilience Act (DORA) is an incoming European Union (EU) legislative framework aimed at fortifying the operational resilience of digital systems within the financial sector. All finance entities…
A New App Consent Attack: Hidden Consent Grant
- Adi Malyanker | Security Researcher
- Aug 13, 2024
Key findings Within Microsoft Azure, the Directory.ReadWrite.All permission holds significant implications. This permission enables a multitude of actions, including user editing and access to all data within the directory. Sound…
UnOAuthorized: Privilege Elevation Through Microsoft Applications
- Eric Woodruff
- Aug 07, 2024
This article details a series of Semperis security research team discoveries that resulted in the ability to perform actions in Entra ID beyond expected authorization controls, based on analysis of…
Our Mission: Be a Force for Good
Duns 100 Ranks Semperis in Top 15 to Work For
- Yarden Gur
This month marked two milestones for Semperis. First, Deloitte recognized the company as one of the 100 fastest growing technology companies in North America and (for the third consecutive year)…
What It Means to be a Mission-Driven Company
- Mickey Bresman
On behalf of the entire team, I’m excited to share that Semperis has been named to Inc.’s 2022 list of Best Workplaces. This annual list honors workplaces that are ranked…
Hybrid Identity Protection: IDPro Founder Ian Glazer
- Sean Deuby | Principal Technologist
You won’t want to miss the newest episode of the Hybrid Identity Podcast (HIP)! In this session, I have the pleasure of talking with IDPro founder and Salesforce Senior VP…
Purple Knight
Purple Knight Scoring Improves Understanding of Identity System Security Vulnerabilities
- Ran Harel
Our latest Purple Knight (PK) v4.2 release introduces fundamental changes, particularly concerning the new scoring calculation. Changing from a broader approach that considered all indicators, we’ve now zeroed in on…
Semperis Offers New Protection Against Okta Breaches
- Semperis Research Team
In an ever-evolving digital landscape, organizations rely on robust identity protection solutions to safeguard sensitive data and maintain secure operations. For most enterprise businesses, that means protecting Active Directory and…
How to Prevent a Man-in-the-Middle Attack: AD Security 101
- Daniel Petri | Senior Training Manager
A man-in-the-middle attack, also known as an MitM attack, is a form of eavesdropping in an attempt to steal sensitive data, such as user credentials. These attacks can pose a…
The CISO’s Perspective
Hello, My Name Is Domain Admin
- Mickey Bresman
- Aug 05, 2024
My friends know I’m a movie buff. Being also a mixed martial enthusiast, one of my all-time favorites is Fight Club, based on Chuck Palahniuk’s first novel. The story is…
New Ransomware Statistics Reveal Increased Need for Active Directory Security and Resilience
- Mickey Bresman
- Jul 31, 2024
By now, we’re all familiar with the need for an “assume breach” mindset where ransomware and other cyber threats are concerned. To better understand the necessity and challenges of this…
DORA Compliance and ITDR
- Daniel Lattimer | Area Vice President – EMEA West
- Jun 19, 2024
Organisations in the financial services sector have less than a year to demonstrate DORA compliance. What is DORA, does it apply to your organisation, and how does DORA compliance intersect…
Threat Research
A New App Consent Attack: Hidden Consent Grant
- Adi Malyanker | Security Researcher
- Aug 13, 2024
Key findings Within Microsoft Azure, the Directory.ReadWrite.All permission holds significant implications. This permission enables a multitude of actions, including user editing and access to all data within the directory. Sound…
UnOAuthorized: Privilege Elevation Through Microsoft Applications
- Eric Woodruff
- Aug 07, 2024
This article details a series of Semperis security research team discoveries that resulted in the ability to perform actions in Entra ID beyond expected authorization controls, based on analysis of…
New Ransomware Statistics Reveal Increased Need for Active Directory Security and Resilience
- Mickey Bresman
- Jul 31, 2024
By now, we’re all familiar with the need for an “assume breach” mindset where ransomware and other cyber threats are concerned. To better understand the necessity and challenges of this…
Uncategorized
AD Security 101: Lock Down Risky User Rights
- Daniel Petri | Senior Training Manager
In Active Directory (AD) environments, you can use Group Policy Objects (GPOs) to configure user rights. By using GPOs, you can easily enforce consistent user rights policies across all computers…
AD security resources
Stay informed. Get the latest news and resources on identity threat detection and response (ITDR), hybrid Active Directory (AD) security, and cyber resilience, brought to you by Semperis experts.
Experience a personalized demo
Request a demo and one of our product experts will give you a spin of our solutions.
