Keeping Active Directory Protected - and ResilientSemperis’ Simon Hodgkinson Explains How to Withstand Active Directory Attacks
Microsoft estimates that each day threat actors attack 95 million Active Directory accounts. In the face of so many attacks, security teams should assume compromise and focus not just on securing Active Directory but also on recovery and resilience, said Semperis' Simon Hodgkinson.
Humans in the loop are the biggest challenge. Social engineering is used for initial access, access brokers selling compromised accounts, and attackers escalating from reconnaissance to domain control. In addition to withstanding most attacks, organizations must conduct continuous monitoring, he said.
In this video interview with Information Security Media Group at Infosecurity Europe 2023, Hodgkinson discussed:
- The pain points in achieving Active Directory resilience and how to automate remediation;
- Why organizations need to continuously monitor every change in the network;
- How to simplify backup and recovery of Active Directory.
Hodgkinson works closely with Semperis' executive team and CISO community throughout North America and Europe to support the company's breach preparedness and response services. He previously served as CISO of BP and was responsible for all aspects of cybersecurity, from strategy and architecture to security engineering and incident response.