Semperis

“What's your organisation's recovery plan when (not if) your identity systems are compromised?” Semperis is tackling this critical question head-on at the upcoming Cyber Resilience Summit VIC in Melbourne. If you are attending the summit, attend our roundtable "Achieving Security Excellence in the Cyber Arms Space" as we unpack how an identity-first approach can transform your cybersecurity posture from prevention, recovery to resilience. Register now and see you at the summit! https://lnkd.in/g8bySGY9 #forefrontcybercommunity #CyberResilienceSummit25

Active Directory may have turned 25 last week, but cyberattacks targeting AD remain a critical threat, especially in healthcare. Cyberattacks can bring a healthcare organization’s operations come to a standstill, causing life-threatening disruptions in patient care. Semperis helps hospitals and healthcare organizations to: • Close exposure points • Detect stealthy attacks that bypass traditional defenses • Accelerate full AD recovery—minimizing downtime and keeping cybercriminals out. By minimizing downtime and fortifying defenses, Semperis helps keep cybercriminals at bay, ensuring uninterrupted patient care. https://lnkd.in/gyNva4NT

Ready to conquer the challenges of 2025? Our exclusive on-demand webinar with CyberRisk Alliance dives into advanced identity security, rapid breach recovery, and the latest in cyber defense strategies. From evolving attack vectors to sophisticated threat actors, we cover it all. Equip your organization with the tools and knowledge to identify vulnerabilities, respond to threats, and strengthen your cyber resilience. Watch now and stay ahead in the ever-evolving landscape of cybersecurity.

February’s edition of ADvancing Identity Protection is packed with big news! 🎉 We’re celebrating Semperis reaching $100M ARR, unveiling key cybersecurity insights from our Mastermind series, and spotlighting upcoming events. Plus, ever tried manually recovering an AD forest? Prepare for 100+ painful steps (and plenty of curse words). Don’t worry—there’s a better way. 🚀 Read it all here!

secIT by heise is coming soon! We're excited that Semperis' Guido Grillenmeier, Principal Technologist EMEA, will speak again this year. Make sure to attend his session, "The Microsoft Identities Crisis," at 11:10am on March 20. Click here for more information: https://lnkd.in/g8MCzWiB

With insider threats now responsible for a growing number of breaches, organisations must rethink how they detect and respond to these evolving risks. Join Semperis at the Identity, Authentication and Access Management Summit in Sydney and be part of our exclusive roundtable, where Gabriel Khnanisho will lead an engaging discussion on: ▪️The top insider threat trends impacting identity security
 ▪️How these threats exploit access to critical systems & data
 ▪️The effectiveness of current threat detection & response strategies 🎟️Interested in attending? The first 10 people to comment on this post will receive a free ticket to the summit!

For 25 years, Active Directory has been at the heart of enterprise identity—and a prime target for attackers. Despite its critical role, securing AD remains a challenge, with evolving threats exploiting common misconfigurations and vulnerabilities. Semperis' James W. Doggett shares insights in Dark Reading on why AD security must remain a top priority and how organizations can strengthen their defenses. Thank you to Jaikumar Vijayan for covering such an important topic. Check out the full article: https://lnkd.in/gGvb_CGy

Unconstrained delegation in Active Directory can be a major security risk. When enabled, any service ticket request to a machine with this setting exposes the Kerberos TGT (ticket-granting ticket) in memory. If a threat actor compromises that machine, they can steal TGTs from privileged accounts, including Domain Admins. A simple way to reduce this risk is by enabling “Account is sensitive and cannot be delegated” on Tier-0 accounts. This prevents their credentials from being exposed. The screenshot below from Purple Knight shows how this issue can be identified. Regularly checking delegation settings is a good step toward securing Active Directory. #TuesdayTip #CybersecurityTip

𝗣𝗿𝗼𝘁𝗲𝗰𝘁 𝗬𝗼𝘂𝗿 𝗔𝗰𝘁𝗶𝘃𝗲 𝗗𝗶𝗿𝗲𝗰𝘁𝗼𝗿𝘆 𝗳𝗿𝗼𝗺 𝗚𝗼𝗹𝗱𝗲𝗻 𝗧𝗶𝗰𝗸𝗲𝘁 𝗔𝘁𝘁𝗮𝗰𝗸𝘀 Golden Ticket attacks exploit the Kerberos authentication system, enabling attackers to forge TGTs and gain full control over an Active Directory environment. This method bypasses normal security measures, making it a critical threat. Key Takeaways: ▪️Full domain control: Attackers can impersonate any user and access any resource within the domain. ▪️Detection tips: Monitor for extended ticket lifetimes, mismatched SIDs, and abnormal account behavior. ▪️Defense tips: Regularly audit privileged account activity, reset the KRBTGT account password, and use advanced threat detection tools. IT and cybersecurity professionals must understand the dangers of Golden Ticket attacks to effectively protect their organizations. Stay informed and implement robust security measures to defend against these threats. https://lnkd.in/dbH39vyB

🔒 𝗖𝘆𝗯𝗲𝗿𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗜𝗻𝗱𝘂𝘀𝘁𝗿𝘆 𝗪𝗮𝘁𝗰𝗵: 𝗪𝗲𝗲𝗸𝗹𝘆 𝗛𝗶𝗴𝗵𝗹𝗶𝗴𝗵𝘁𝘀 🔒 It’s Monday, and we’re here with the latest news shaping the cybersecurity landscape: 1️⃣ Black Basta Ransomware Gang’s Internal Chat Logs Leak Online: An unknown leaker has released what they claim to be an archive of internal Matrix chat logs belonging to the Black Basta ransomware operation, potentially exposing key insights into the group's tactics. Read more: https://lnkd.in/gQMWVmmE 2️⃣ FBI Issues Urgent Warning on Dangerous Ransomware Attacks: The FBI is urging organizations to back up their data immediately as ransomware attacks escalate, emphasizing the critical need for proactive cybersecurity measures. Read more: https://lnkd.in/exn_6UZZ Stay informed to stay secure. What stories are catching your attention this week?