Active Directory, this is how it should be protected
is the headline of the news that the author of WTM News has collected this article. Stay tuned to WTM News to stay up to date with the latest news on this topic. We ask you to follow us on social networks.
60% of malware attacks are directed against Active Directory. For this reason, DXC Technology has presented a Consulting service, which includes a suite of solutions based on AI and advanced tools, which allows knowing the status of the AD and avoiding attacks and security flaws.
And it is that, more than 90% of the companies with more than 1,000 employees use the Active Directory and, despite being the core of the security of any organization, its administration often lacks the appropriate management criteria.
“Very few organizations that perform audits of their Active Directory and those that have continuous Active Directory monitoring tools. The reality is that most of them would not be able to prevent a cyber attack, which is very worrying”, states Mikel Salazar, Director of Cybersecurity for Iberia at DXC Technology.
The new DXC AD Audit service contemplates three scopes that complement each other.
- The Criticalincludes basic and static analysis on all infrastructure accounts to check their status and the content of the main AD and Azure AD in order to detect the most relevant gaps to allow their correction.
- The Advanced extends critical auditing with the advanced solution of Cyber Ark DNA, a tool that allows you to discover the privileged accounts of the servers and the entire Azure AD. With it, it is possible to detect vulnerabilities in privileged accounts, minimizing the Pass The Hash.
DXC Technology launches a suite of solutions for Active Directory protection
- The reaching Total use the tool tenable.ad to continuously protect the exposure of the entire AD, detect its gaps and any misconfiguration. In addition, it allows the traceability of attacks to be able to intelligently correlate events and changes in real time.
In addition, there are four key red flags related to Active Directory security: having more than 4 domain administrators, not performing Active Directory audits, not being able to view real-time Active Directory changes, and not having a backup plan. contingency before the loss of control of the domain administrator.
Current geopolitical and economic tensions are exploited by cybercriminals and Active Directory is one of their main targets. For Pablo Parra, Cybersecurity Business Developer at DXC Technology, “Active Directory security is not a one-time event but an ongoing process. It is known that 60% of new malware includes specific code directed against Active Directory and according to recent studies, 80% of audited organizations have critical configuration errors in their Active Directory”.