Attivo Networks®, the experts in identity security and lateral movement attack prevention, announced it has expanded its award-winning Active Directory Protection portfolio with capabilities to efficiently detect identity-based attacks at the domain controller from all endpoints.

    The new ADSecure-DC solution provides threat protection from attacks originating from Windows as well as Mac, Linux, IoT/OT devices, and unmanaged devices which are limited in their ability to run traditional endpoint protection software.

   In 2021, there was a surge of attacks targeting Active Directory domain controllers in order to gain the privileges that are needed to install backdoors, change security policies, and distribute ransomware or malware.

   The Attivo Networks ADSecure-DC solution identifies enumeration and attacks targeting Active Directory. It also detects suspicious user behaviors using deep packet inspection and behavior analytics and delivers high-fidelity alerts. Organizations gain AD security for attacks from managed and unmanaged systems, IoT and OT devices, and popular Windows and non-Windows (Mac, Linux) systems without interfering with domain controller operations.

   “ Enterprises today recognize the many risks and vulnerabilities Active Directory faces, making AD protection a top priority in 2022,” said by Christopher M. Steffen, CISSP, CISA, Research Director at EMA Research.
   The Attivo Networks ADSecure-DC solution joins the company’s existing suite of Active Directory protection products.