Attivo Networks Blogs

Attivo expands Active Directory Protection from unmanaged devices, including Mac, Linux, IoT/OT

Attivo Networks®, the experts in identity security and lateral movement attack prevention, announced it has expanded its award-winning Active Directory Protection portfolio with capabilities to efficiently detect identity-based attacks at the domain controller from all endpoints. The new ADSecure-DC solution provides threat protection from attacks originating from Windows as well as Mac, Linux, IoT/OT devices, and unmanaged devices which are limited in their ability to run traditional endpoint protection software.

In 2021, there was a surge of attacks targeting Active Directory domain controllers in order to gain the privileges that are needed to install backdoors, change security policies, and distribute ransomware or malware. Over 90% of Global 1000 enterprises use Active Directory for authentication and authorization, per Frost & Sullivan. According to an Enterprise Management Associates (EMA) research report, half of the organizations surveyed experienced an attack on Active Directory (AD), with more than 40% indicating the attack was successful. 86% of respondents indicated that they were planning to prioritize the protection of Active Directory with increased investment.

“In APAC, we see that Active Directory protection is still an Achilles’ heel for many organisations when it comes to cybersecurity”, said Jeremy Ho, Vice President of APAC at Attivo Networks. “Cybercriminals routinely target the Active Directory domain controllers to gain privileges needed to install backdoors, change security policies and distribute malware. Once successful, the entire IT environment goes down quickly.”

The Attivo Networks ADSecure-DC solution identifies enumeration and attacks targeting Active Directory. It also detects suspicious user behaviors using deep packet inspection and behavior analytics and delivers high-fidelity alerts. Organizations gain AD security for attacks from managed and unmanaged systems, IoT and OT devices, and popular Windows and non-Windows (Mac, Linux) systems without interfering with domain controller operations.

“In the cybersecurity world today, Active Directory is one of the most targeted assets by threat actors. By leveraging AD’s vulnerabilities, attackers can penetrate an enterprise’s entire network, and freely move undetected across multiple attack paths,” said by Christopher M. Steffen, CISSP, CISA, Research Director at EMA Research.“However, enterprises today recognize the many risks and vulnerabilities Active Directory faces, making AD protection a top priority in 2022.”

The Attivo Networks ADSecure-DC solution joins the company’s existing suite of Active Directory protection products. These include ADSecure-EP, which operates on the endpoint and prevents attackers from seeing and accessing privileged credentials in Active Directory, ADAssessor for continuous AD exposure visibility, and ThreatPath, which identifies and remediates exposed and risky credentials on the endpoint. Organizations deploying these solutions gain easy, efficient, and effective protection for their AD environment.

Read the original article on Tech2Thai.

Share on:

Free Active Directory Assessment

Get Visibility Into Privilege And Service Account Exposure

For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.

Try Our Endpoint Detection Net (EDN) for Free

FAST AND EASY

Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.

Newsletter Signup

    Yes, please opt me in to receive your quarterly newsletter, event invitations, and product updates.

    I understand that I can opt out at any time, and can refer to Attivo Networks Privacy Policy for more information.
  • This field is for validation purposes and should be left unchanged.

ADSecure 90-Day Free Trial

GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY

  • Hide and deny access to AD objects
  • Get alerted on unauthorized queries
  • Attack details easily viewable in dashboard
  • Your data remains on-premise

RSS

Leave a Comment

Your email address will not be published.

2 × one =

Ready to find out what’s lurking in your network?

Scroll to Top