Featured content

This article is part of the series "Pen Testing Active Directory Environments". Check out the rest: Binge Read Our Pen Testing Active Directory Series Part I: Introduction to crackmapexec (and PowerView) PowerView Pen Testing: PowerShell Probing of Active Directory Part III: Chasing Power Users Part IV: Graph Fun Part V: Admins and Graphs Part VI: The Final Case

Some things go together like peanut butter and jelly: delicious, delightful and a good alternative to my dad’s “Thai-Italian Fusion” dinner experiments as a kid.

I suspect right about now that EU (and US) companies affected by the General Data Protection Regulation (GDPR) are starting to look more closely at their compliance project schedules. With enforcement set to begin in May 2018, the GDPR-era will shortly be upon us.

This article is part of the series "Pen Testing Active Directory Environments". Check out the rest: Binge Read Our Pen Testing Active Directory Series Part I: Introduction to crackmapexec (and PowerView) PowerView Pen Testing: PowerShell Probing of Active Directory Part III: Chasing Power Users Part IV: Graph Fun Part V: Admins and Graphs Part VI: The Final Case

Alan Cizenski is a Corporate Systems Engineer at Varonis. Based in our New York City office, he is responsible for making sure Varonis solutions work smoothly for our prospective customers. Alan helps them realize the value we can provide within their environment and maintain these relationships as they become customers.

You respond to a ransomware attack in many of the same ways you would to any other cyber attack. In short: have plans in place to analyze the malware, contain the damage, restore operations if need be, and notify any regulatory or enforcement authorities.

This article is part of the series "Pen Testing Active Directory Environments". Check out the rest: Binge Read Our Pen Testing Active Directory Series Part I: Introduction to crackmapexec (and PowerView) PowerView Pen Testing: PowerShell Probing of Active Directory Part III: Chasing Power Users Part IV: Graph Fun Part V: Admins and Graphs Part VI: The Final Case

Last week, Mirai-like wormware made the news again with attacks on ISPs in the UK. Specifically, customers of TalkTalk and PostOffice reported Internet outages. As with the last Mirai incident involving consumer cameras, this one also took advantage of an exposed router port.

This article is part of the series "Pen Testing Active Directory Environments". Check out the rest: Binge Read Our Pen Testing Active Directory Series Part I: Introduction to crackmapexec (and PowerView) PowerView Pen Testing: PowerShell Probing of Active Directory Part III: Chasing Power Users Part IV: Graph Fun Part V: Admins and Graphs Part VI: The Final Case

Ransomware attacks have become a major security threat. It feels like each week a new variant is announced –Ransom32, 7ev3n. This malware may even be involved in the next big breach. New variants such as Chimera threaten to not just ransom your data, but also leak it online if you don’t pay up.

A Word of Caution When you think of a website getting hacked, you might picture someone in a hoodie in a high tech bunker (or their mom’s basement), wailing on a keyboard, controlling thousands of remote machines in coordinated attacks, while output that looks like http://hackertyper.com/ scrolls past in a blur.

This article is part of the series "Pen Testing Active Directory Environments". Check out the rest: Binge Read Our Pen Testing Active Directory Series Part I: Introduction to crackmapexec (and PowerView) PowerView Pen Testing: PowerShell Probing of Active Directory Part III: Chasing Power Users Part IV: Graph Fun Part V: Admins and Graphs Part VI: The Final Case