In any organisation, Active Directory is the system that supports and provides access to all vital information and assets. Because this system is in constant mutation, breaches are unknowingly opened on a regular basis, making it the most vulnerable part of an organization's IT security. As a matter of fact, every modern cyber attack exploits Active Directory.
Leveraging upon sophisticated and extensive expertise, Alsid is able to comprehensively monitor the security status of Active Directory in real-time.
Alsid detects security breaches before attackers do, and provides guidance to prevent and remediate threats - rather than fixing the damage caused after an attack has happened.
Alsid raises a record sum of €13 million in investments to finance their global market expansion plans Alsid has achieved this European record for investment in the cybersecurity market thanks to Idinvest Partners with the participation of its long-standing investors: 360 Capital Partners and Axeleo Capital.
Learn moreAlsid is targeting the APJ region with the opening of a regional head office in Hong Kong as well as the launch of a technical delivery team in Malaysia to support new client contracts and regional partnerships.
Learn moreIn a previous post, we have tried to tell, in layman’s words, the tale of the now-infamous SingHealth hack. Today we take this discussion a step further. A deep read through the 453-page report released by the Committee of Inquiry (COI) on January 10th allows for a safe assumption: the attack indeed reached a turning point when it succeeded compromising SingHealth’s Active Directory (AD). But what exactly went wrong with this critical infrastructure?
Learn moreAs part of the recent publication of Elad Shamir’s work on Kerberos delegation (“Wagging the Dog - Abusing Resource-Based Constrained Delegation to Attack Active Directory”), Alsid is publishing a series of blogposts deepening the uncovered new attack vectors and shedding a light on pragmatic solution for Blue Teams trying to measure the impact of this breakthrough on their Active Directory infrastructure. This second publication will be focused on Kerberos’ S4U2Self extension. In his paper Shamir describes a new Active Directory backdoor based on this unsung functionality. This blogpost will examine how this technique can be extended to target different types of AD accounts after describing how an attacker would deploy and use such a backdoor. Using the opposite delegation direction, we will then describe another possible loophole. We will end with specific details and considerations to help security teams protecting themselves against those scenario.
Learn moreExplore how Alsid can boost your organisation’s IT security and give you better peace of mind.
