News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Day: Semperis

New variant of SAML attack technique
March 30, 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Security researchers have discovered a new variant of the infamous Golden SAML attack technique, which the team has named “Silver SAML.” With Silver SAML, threat actors can abuse the Security Assertion Markup Language authentication protocol to launch attacks from an identity provider such as Entra ID against applications that use SAML for authentication, such as Salesforce. Golden SAML was used in the 2020 Solarwinds cyberattack, the most sophisticated nation-state hack in history to date. The hacker group Nobelium, also known as Midnight Blizzard or Cozy Bear, has inserted malicious code into the IT management software Orion…

Read more

Danger: Vulnerabilities in Active Directory
1 December 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The Purple Knight Report 2023 addresses Active Directory (AD) vulnerabilities in companies. According to the latest report, enterprise AD security needs improvement. On average, the safety ratings of all participants only achieved a score of 72 out of 100 possible points, which represents an improvement compared to the previous year, but only corresponds to a grade of “C”, i.e. “satisfactory”. For this year's report, more than 150 representatives from companies of different industries and sizes from the Purple Knight user community were surveyed. With Semperis' Purple Knight vulnerability assessment tool, companies can ensure the security of their…

Read more

Microsoft Entra: Closing attack paths with a free tool
28 November 2023
| No comments
| PR News
Close attack paths with a free tool

The attack path management analysis tool Forest Druid, which powers Microsoft Entra, focuses on Tier 0 assets. This means it can identify and close attack paths much more quickly. Semperis expands its community-powered attack path management tool Forest Druid to support Microsoft Entra ID (formerly Azure Active Directory). This saves cybersecurity teams valuable time identifying and closing risky attack paths in hybrid identity systems. The new announcement underscores Semperis' strategy to help organizations protect both on-prem Active Directory (AD) and newer, cloud-based identity systems. Semperis recently announced its…

Read more

Study on Enterprise Active Directory Security Posture
18 May 2022
| No comments
| Stories
Study on Enterprise Active Directory Security Posture

Semperis Releases Enterprise Active Directory Security Posture Study Reveals Significant Differences Across Industries in AD Security. There are still a lot of security gaps to be found. Organizations of all sizes and industries are failing to close Active Directory (AD) vulnerabilities that can leave them vulnerable to cyberattacks, according to a survey of IT and security leaders using Semperis' Purple Knight. Enterprises scored an average of 68% across five Active Directory security categories, a mixed score. Large organizations scored even worse on the score — with an average score…

Read more

© 2024 MedPressIT GbR
Cookie Settings