Attivo Networks®, the identity security and lateral movement attack prevention experts, has announced their participation in GISEC 2022. Keeping with the concept of ‘Identity – the Ultimate Attack Surface,’ Attivo will introduce its extended Active Directory Protection portfolio, which will include the ability to detect identity-based assaults at the domain controller from all endpoints.
“We are thrilled to be the diamond sponsor at the largest cybersecurity event in the Middle East. Last year, there was a surge of attacks targeting Active Directory domain controllers to gain the privileges needed to install backdoors, change security policies, and distribute ransomware or malware. During GISEC 2022, we will introduce the new ADSecure-DC solution which provides threat protection from attacks originating from Windows as well as Mac, Linux, IoT/OT devices, and unmanaged devices which are limited in their ability to run traditional endpoint protection software”, commented Ray Kafity, VP META at Attivo Networks.
The Attivo Networks ADSecure-DC solution detects Active Directory enumeration and threats. It also detects questionable user actions using deep packet inspection and behaviour analytics and generates high-fidelity notifications. Without interfering with domain controller operations, organisations get AD security against assaults from managed and unmanaged systems, IoT and OT devices, and popular Windows and non-Windows (Mac, Linux) platforms.
“Active Directory services continue to be the powerhouse for all critical information and help adversaries to further their attacks easily and without detection,” said Srikant Vissamsetti, SVP of engineering at Attivo Networks. “For organizations that are using a managed Active Directory service, the additional protection of domain controllers prevent attackers from carrying out ransomware, Kerberoasting, Silver Ticket compromise, Domain Replication and other advanced AD attacks.”
“In the cybersecurity world today, Active Directory is one of the most targeted assets by threat actors. By leveraging AD’s vulnerabilities, attackers can penetrate an enterprise’s entire network, and freely move undetected across multiple attack paths,” said Christopher M. Steffen, CISSP, CISA, Research Director at EMA Research. “However, enterprises today recognize the many risks and vulnerabilities Active Directory faces, making AD protection a top priority in 2022.”
The Attivo Networks ADSecure-DC solution complements the company’s current Active Directory protection solutions. These include ADSecure-EP, which runs on the endpoint and stops attackers from viewing and accessing privileged credentials in Active Directory, ADAssessor for continuous AD exposure visibility, and ThreatPath, which finds and remediates exposed and hazardous credentials on the endpoint. Organizations that implement these solutions receive simple, efficient, and effective security for their AD infrastructure.
From the 21st to the 23rd of March, visit Attivo at Stand C9 at GISEC 2022 at the Dubai World Trade Center.
