AD-Based Attacks in 2023 – What We’ve Learned So Far
In this blog, Paul Robichaux covers a recent TEC Talk where he discusses AD-Based Attacks in 2023 and what we've learned so far.
August 22, 2023
Latest Articles
Active Directory Modernization: Transforming Identity and Access Management
Active Directory modernization is a crucial step for organizations looking to transform and enhance their IAM capabilities. In this blog, Julian Stephan dives into an overview of some of the benefits and considerations of Active Directory modernization.
August 16, 2023
Protecting AD against compromise, New Teams Features and Microsoft’s Greg Taylor joins us to talk TEC: The Practical 365 Podcast S4 E1
In our first show in season four, new co-host Rich Dean joins Steve and Paul to discuss preparing your Active Directory against compromises, new Microsoft Teams features, and Greg Taylor joins to talk about his upcoming session at TEC.
August 7, 2023
TEC European Roadshow 2023 – London, Paris, and Frankfurt: Identity and Microsoft 365 Security Tips
At the end of March, Practical 365 traveled with the TEC European roadshow, traveling between three cities in Europe over a week, listening to experts talking primarily about security-focused topics aimed at improving your Microsoft 365, Azure AD and Active Directory. Read our whistle-stop tour of the most important points made by expert speakers.
May 10, 2023
Practical Protection: Limiting the Damage from Local Admin Accounts
Because of the way the Windows security model works, it’s not currently possible to eliminate the use of passwords for local administrator accounts. Given that fact, the next best solution is to remediate the biggest problems with passwords for these local accounts, including weakness, reuse, and tenure. In this article, we discuss how the Local Administrator Password Solution (LAPS) helps with all of those!
May 3, 2023
InfoSec tips from TEC Europe, Copilot in Viva, SharePoint Adds Ads? – plus new Intune and Teams features: Practical 365 Podcast S3 E26
On this weeks' show, Steve and Paul review the TEC European Roadshow, new Microsoft Teams features, new Intune security features, in-product ads in SharePoint Online, and more!
April 28, 2023
Why Active Directory Remains The Achilles Heel For Many
Active Directory has been around for almost 25 years. As such, one might expect that – by now – we would have figured out to keep it safe against attacks. Yet, it remains a weak point in many organizations' cybersecurity defenses. When coupled with the challenges mentioned above, this can be a recipe for disaster. Why is this the case?
April 25, 2023
How Quickly do Threats leak from a Compromised AD into the Cloud?
As organizations move to the cloud, on-premises environments (and their security) are put in the background as the focus shifts to the cloud. Nevertheless, most organizations I know are in a hybrid scenario where the on-premises environment holds the master data and synchronizes everything into Azure Active Directory. This blog explores how an on-premises environment is connected to the cloud and how an attacker might move from on-premises to the cloud laterally.
March 13, 2023
How to Add Active Directory Logs to Microsoft Sentinel
When setting up your SIEM, ingesting logs from Active Directory is essential. This blog dives into the two options for ingesting AD logs and compare their strengths and weaknesses.
January 4, 2023
Group Policy as an Attack Pathway
Learn some of the main group policy attack pathways, why they are easily exploited, and how to mitigate them in this article by Darryl Baker.
November 14, 2022
Five ways to Keep Active Directory Secure
Although we live and work in a cloud-first world, on-premises Active Directory (AD) remains a vital component of many companies' IT infrastructure. This article goes over five ways to keep Active Directory secure.
November 7, 2022
Heard at TEC: Secure that Active Directory (AD) Migration
This article is a recap of Bryan Patton's and Joe Sharmer's TEC session. This session focused on key challenges facing today’s Active Directory administrators during consolidation and divestiture projects.
October 19, 2022