Attivo Networks Blogs


CERT Alert

CERT Alert AA20-302A: Who is Pinging Your Domain Controllers?

Reading Time: 2 minutes  |  Published: October 29, 2020 in Active Directory, Blogs

Author:  Venu Vissamsetty, Founding Engineer at Attivo Networks - Organizations are facing ransomware threats daily. The older ransomware strains only encrypted the local infected system, which limited the damage caused to an organization. The newer ransomware variants use self-propagating techniques to move laterally and spread...

Kerberos Silver Ticket Attack

Reading Time: 3 minutes  |  Published: October 13, 2020 in Active Directory

Written by: Biju Varghese, Technical Product Manager at Attivo Networks - Since 2014 Kerberos Silver Ticket attack has been a well know Active Directory Attack method widely used by the Red Team, pen testers, and some of the state-sponsored attacks. I do not want to get...


Utilizing Deception in a DevOps Environment

Reading Time: 3 minutes  |  Published: October 2, 2020 in Blogs, DevSecOps

Authored by: Carolyn Crandall, Chief Deception Officer, Attivo Networks - DevSecOps has become a hot topic in the cybersecurity community as organizations increasingly turn to DevOps for software development and IT operations. The continuous nature of DevOps development allows attackers the opportunity to insert malicious code...

Security Operations Center

The Facts You Need to Secure Budget for Deception and Concealment Technology

Reading Time: 4 minutes  |  Published: September 24, 2020 in ROI and Cost Savings

Authored by: Carolyn Crandall, Chief Deception Officer, Attivo Networks - The value of deception technology is no secret among cybersecurity professionals. Unfortunately, they are often not in charge of making budget decisions, which means the ability to financially justify a new security technology’s cost to the...

Protecting Domain Controllers from CVE-2020-1472 ZeroLogon and Other Zero-Day Vulnerabilities

Reading Time: 3 minutes  |  Published: September 16, 2020 in Active Directory, Blogs

Written by: Venu Vissamsetty, VP Security Research, Founding Engineer - Secura researchers have disclosed a vulnerability, CVE-2020-1472 Zerologon, that affects all Microsoft Windows Server versions, allowing attackers unauthenticated access to domain controllers, and has given it a CVSS score of 10.0....

Attivo Solutions Fit MITRE Shield Like a Glove!

Reading Time: 2 minutes  |  Published: August 27, 2020 in Security Frameworks

By: Carolyn Crandall, Cheif Deception Officer and CMO -MITRE recently announced Shield, which is a publicly available, free knowledge base of common techniques and tactics that can help experts take proactive steps to defend their networks and assets. This guide takes a similar approach to...


Attivo Solutions for SaaS Cybersecurity

Reading Time: 4 minutes  |  Published: August 17, 2020 in Blogs, Cloud, SaaS

Written by: Zakk K, Security Architect at Attivo Networks - As the enterprise becomes more dependent on software delivered via an externally-hosted service that someone else maintains, it adds complexity to the security of what used to be a traditionally in-house application for the convenience and...