Protecting Your Active Directory from AdminSDHolder Attacks

Written by: Vikram Navali, Senior Technical Product Manager – Cybercriminals often look at different methods to gain an organization’s sensitive data. One common way is to abuse the AdminSDHolder object in Active Directory. This blog discusses how attackers can add accounts with sufficient access to the AdminSDHolder object and end up gaining complete control of the Active Directory environment.