A new module for the TrickBot trojan has been discovered that targets the Active Directory database stored on compromised Windows domain controllers. TrickBot is typically download and installed on a ...

In early 2024, the BlackCat ransomware attack against Change Healthcare caused massive disruption across the U.S. healthcare ...

Microsoft is urging customers to patch two Active Directory domain controller bugs after a PoC tool was publicly released on Dec. 12. A proof-of-concept tool has been published that leverages two ...

Microsoft has long recommended that customers enable multifactor authentication (MFA) as a way of better protecting Active Directory and Azure AD accounts. Without MFA, anyone with access to a valid ...

Microsoft’s May Patch Tuesday update is triggering authentication errors. Microsoft is alerting customers that its May Patch Tuesday update is causing authentications errors and failures tied to ...

Microsoft on Friday announced a public preview of Windows Local Administrator Password Solution (LAPS) for Microsoft Entra Azure Active Directory. The preview of Windows LAPS for Azure AD represents a ...

Azure Active Directory authentication capabilities for IT pros using the Windows Admin Center in Azure management console are now commercially released at the "general availability" stage, per a ...

Hybrid cloud identity and access management services add complexity and opportunity for attackers to network authentication processes, as recently demonstrated for Azure AD. It’s been common knowledge ...

Today is Patch Tuesday, and that means that if you're running a supported version of Windows, you're getting an update today. On the Windows 10 side of things, that's still every version besides 1511, ...

Hackers can use tools like BloodHound to visualize the shortest path to owning your domain. But that doesn't mean you can't use it to find and protect your organization's weak spots. Here's how.