New products and services

Attivo expands Active Directory Protection from unmanaged devices

Details

Attivo Networks has announced it has expanded its Active Directory Protection portfolio with capabilities to efficiently detect identity-based attacks at the domain controller from all endpoints. The new ADSecure-DC solution provides threat protection from attacks originating from Windows as well as Mac, Linux, IoT/OT devices, and unmanaged devices which are limited in their ability to run traditional endpoint protection software. 

In 2021, there was a  surge of attacks targeting Active Directory domain controllers in order to gain the privileges that are needed to install backdoors, change security policies, and distribute ransomware or malware. Over 90 percent of Global 1000 enterprises use Active Directory for authentication and authorization, per Frost & Sullivan. According to an Enterprise Management Associates (EMA) research report, half of the organizations surveyed experienced an attack on Active Directory, with more than 40 percent indicating the attack was successful. 86 percent of respondents indicated that they were planning to prioritize the protection of Active Directory with increased investment.

The Attivo Networks ADSecure-DC solution identifies enumeration and attacks targeting Active Directory. It also detects suspicious user activities using deep packet inspection and behavior analytics and delivers high-fidelity alerts. Organizations gain AD security for attacks from managed and unmanaged systems, IoT and OT devices, and popular Windows and nonWindows (Mac, Linux) systems without interfering with domain controller operations.

“Active Directory services continue to be the powerhouse for all critical information and help adversaries to further their attacks easily and without detection,” said Srikant Vissamsetti, SVP of engineering at Attivo Networks. “For organizations that are using a managed Active Directory service, the additional protection of domain controllers prevent attackers from carrying out ransomware, Kerberoasting, Silver Ticket compromise, Domain Replication and other advanced AD attacks.”

More details.


Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

Root Cause Analysis
The BIA Guide

Additional Resources

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.