Attivo Networks has expanded ADSecure to the Google Cloud Managed Service for Microsoft Active Directory (AD). The solution detects and reduces risks from cyber attacks at companies that run Active Directory with Google’s managed service.
The combination of ADSecure and Google Cloud’s Managed Service for Active Directory is intended to prevent attackers from gaining access to critical cloud-based AD information. This is made possible by the deceptive and decoy functionalities of Attivo Networks’ ThreatDefend detection platform, which, through misleading, actively prevents attackers from accessing important cloud data. She also supports security teams in threat detection and defense.
ADSecure detects unauthorized queries within the managed AD service to reduce the risk of successful enumeration. The solution changes the answer to these requests and provides the attacker with deceptively real-looking objects. These direct the attacker into a confusingly similar environment when trying to use them.
Security teams received alerts early in the attack cycle by detecting unauthorized access to AD. This means that attackers are less likely to get crucial AD information. In the deception environment, TTPs (tactics, techniques, procedures) would be examined to collect company-specific threat information and to support an accelerated response. In addition, the solution works without changing the production AD so that there are no conflicts with existing security solutions.
Read the original article here.