According to a recent report, cyberattacks increased by 38% in 2022 compared to 2021, meaning that it’s more important than ever to be vigilant when it comes to cybersecurity. One way to strengthen operational resilience against cyberattacks is by mastering Identity Threat Detection and Response (ITDR). As Gartner notes, “misused credentials are now the top technique used in breaches…. attackers are targeting Active Directory and the identity infrastructure with phenomenal success.”
Windows Server Active Directory is a legacy technology that is still used by 80% of organizations today. But because it was often poorly implemented and the IT organization has limited expertise on its incident response team, AD poses a significant risk. Some of the biggest concerns are detecting attacks not surfaced by security monitoring tools, vulnerabilities in AD, failure to regularly test a recovery plan, and detecting attacks that move from Windows Server AD to Azure AD.
ITDR and operational resilience
In this expert-led webinar, 18-time Microsoft Valuable Professional (MVP) Gil Kirkpatrick, Chief Architect for products at Semperis, walks you through the connection between ITDR and operational resilience, recent identity-related cyberattacks, how threat actors breach AD and Azure AD, and how you can close common attack entry points.
In this session, you’ll learn:
- Why ITDR is key to operational resilience
- Common tactics that threat actors use to target AD/Azure AD as an entry point into your environment
- How to detect vulnerabilities in hybrid AD environments, including indicators of exposure (IOEs) and indicators of compromise (IOCs)
- How to guard against attacks that bypass traditional logging methods
- How to ensure a fast, clean AD forest recovery post-attack
Register for the webinar today!