• Back


Aite Impact Brief: Fixing Vulnerabilities in Active Directory and Kerberos

When one thinks of cybersecurity attacks, one thinks first about phishing, ransomware,  denial-of-service attacks, and other headline-grabbing threats. However, nestled deep in most networks is an Achilles’ heel. It’s such a popular destination for attackers that network security, endpoint security, and cloud security vendors make it their prime directive to catch bad activities before attackers reach this enticing target.

The place all attacks seem to be worming their way toward is Active Directory. Microsoft’s Active Directory is the treasure trove of all privileges and credentials—the master key that unlocks every account, every server, every bit of valuable data—and its lack of intrinsic security is legendary. While financial institutions are very familiar with locking important assets in a vault, the network’s vault at those same institutions remains unlocked.

This Impact Brief, drawing from six interviews with heads of cybersecurity and risk management at large financial institutions in the U.S. and Europe, aims to help business and technology managers understand and mitigate a critical vulnerability.


Related Resources

Card image cap
Identity Assurance Tech Spec

Published Feb 12, 2021

Card image cap
SCYLLA SUMMIT 2021: QOMPLX's Angad Salaria on Using Scylla with JanusGraph for Cyber Security

Published Jan 27, 2021

Card image cap
How to Spot and Stop Attacks Like SolarWinds [Video Interview]

Published Jan 22, 2021

Card image cap
Aite Impact Brief: Fixing Vulnerabilities in Active Directory and Kerberos

Published Jan 21, 2021