Endpoint Protection Blogs - Attivo Networks

Kaseya VSA Supply Chain Ransomware Attack

Reading Time: 2 minutes
Written by: Joseph Salazar, Technical Marketing Engineer - A significant reminder of the SolarWinds attack, attackers have once again targeted a trusted software vendor, this time Kaseya, to compromise hundreds of businesses and deploy ransomware. There are reports that the REvil ransomware group was behind ...
Read More

Hafnium Microsoft Hack– Active Exploitation of Microsoft Exchange and Lateral Movement

Reading Time: 2 minutes
Written by the Attivo Research Team - Contributing members: Gorang Joshi, Anil Gupta, Saravanan Mohan - Microsoft and Volexity have confirmed the active exploitation of vulnerabilities published by Microsoft in Exchange Server. Security research has attributed the exploitation to the Advanced Persistent Threat group known ...
Read More

Thoughts on the Senate Hearing and Risky Backdoors

Reading Time: 5 minutes
Written by: Tushar Kothari, CEO What Happened SolarWinds develops and sells IT monitoring and management solutions that are deployed widely across the globe. Sometime in 2020, attackers compromised their build process and embedded malicious code into an update of their Orion software, impacting a subset ...
Read More

Privilege Escalation Using CVE-2020-17087 & CVE-2020-15999

Reading Time: 2 minutes
Author: Venu Vissamsetty, Founding Engineer, Attivo Networks - A pair of zero-day vulnerabilities in Google Chrome (CVE-2020-15999) and Microsoft Windows (CVE-2020-17087) are being chained together and exploited to perform privilege escalation and gain administrator access to a system. CVE-2020-15999 involves a type of memory-corruption vulnerability ...
Read More
concealing data

Data Concealment Is an Important New Technique in the Fight Against Cyberattacks

Reading Time: 3 minutes
Authored by: Carolyn Crandall, Chief Deception Officer, Attivo Networks - One of the first games babies learn to play is peekaboo: the parent hides their face, and the baby is left wondering where they have gone. Not long afterward, children graduate to playing hide-and-seek, where ...
Read More
EDN-Deflect

Sending Attackers to the Twilight Zone with Attivo’s EDN Deflect

Reading Time: 4 minutes
Written by: Joseph Salazar, Technical Marketing Engineer - *Best read in the style of Rod Serling* Picture if you will, an attacker breaking into a computer system for a retail organization he’s been targeting for a few months. He’s managed to trick a user into ...
Read More
nation state attacks

Attivo Endpoint Detection Net to Counter Nation-State Attacks

Reading Time: 4 minutes
Written by Tony Cole, Attivo Networks CTO - There is a tremendous amount of history surrounding the world of espionage. Today most people think of movies like the James Bond series, which really ignites the imagination on espionage between nation-states. Even the old sitcom from ...
Read More

Playbook for Exercising Deception Based on MITRE ATT&CK® Framework

Reading Time: 5 minutes
Written by: Joe Carson, Sr. Director, Professional Services at Attivo Networks, Inc. - From time to time, I am asked to help a customer validate the efficacy of their deception implementation. This can be part of a pilot deployment, or after full operationalization. In many ...
Read More

Results Show Boost in APT Detection Rates with Attivo Endpoint Detection Net (EDN) Suite

Reading Time: 3 minutes
Written by: Marc Feghali, Co-founder and VP of Product Management - Detecting more tactics of the MITRE ATT&CK® Matrix for Enterprise and achieving broader coverage is demonstrable when you incorporate the Attivo EDN suite to any EPP/EDR solution. The EDN suite produced an average increase ...
Read More

Free Active Directory Assessment

Get Visibility Into Privilege And Service Account Exposure

For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.

Try Our Endpoint Detection Net (EDN) for Free

FAST AND EASY

Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.

Newsletter Signup

    Yes, please opt me in to receive your quarterly newsletter, event invitations, and product updates.

    I understand that I can opt out at any time, and can refer to Attivo Networks Privacy Policy for more information.
  • This field is for validation purposes and should be left unchanged.

ADSecure 90-Day Free Trial

GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY

  • Hide and deny access to AD objects
  • Get alerted on unauthorized queries
  • Attack details easily viewable in dashboard
  • Your data remains on-premise
Scroll to Top