Top Active Directory Attacks and How to Prevent Them
As the most broadly deployed identity service in the world, Active Directory is a lucrative target for cyberattackers. Ransomware-as-a-service groups including Conti and LockBit 2.0 have become increasingly adept at finding and exploiting security gaps in Active Directory. In this session, Alexandra Weaver, Semperis Solutions Architect, discusses the most common AD security vulnerabilities she encounters in her work with customers, how attackers take advantage of those gaps with examples from recent attacks, and how you can harden your AD security posture to prevent attacks.
• Common AD vulnerabilities that attackers exploit, grouped into five categories: account security, AD infrastructure, Group Policy, Kerberos, and AD delegation
• How malicious actors compromised AD in well-known attacks such as Colonial Pipeline
• How you can identify and proactively close security gaps in your AD environment
Who Should Attend?
This webinar is for you if you are responsible for identity management, securing digital identities and reducing the risk of a breach that involves compromised credentials.
Note: The IDSA is an approved (ISC)2 CPE Submitter Partner. To receive CPE credits, submit the viewing certificate to (ISC)2 or submit your information. Make sure to check out our other identity-centric security webinars from leading identity and security experts.
Alexandra Weaver has twenty years’ experience supporting Active Directory in a wide variety of organizations, from government to some of the world’s best-known companies. After 8 years supporting the Bureau of Land Management’s Active Directory, she moved to Intel to support their worldwide corporate and manufacturing forests. After some time in financial services IT, she moved to Nike where she also supported their worldwide production forest.
Her experience has included merger & acquisition projects where she migrated newly acquired companies into an existing Active Directory infrastructure, an Identity and Access Management implementation & migration project, upgrading domain controllers and associated downstream dependent applications and providing Active Directory support. Active Directory is Alexandra’s first tech passion, and she enjoys deep diving into it as associated technologies continue to evolve.
Identity Management Day: How to Get Involved
February 28th, 2023, 9:00am PT/12:00pm ET
Helping Organizations Succeed in an Identity-Centric Security World
February 23rd, 2023, 9:00am PT/12:00pm ET