Active Directory’s Attack Surface is Huge – Here’s How to Find a Threat Needle in its Log Haystack

Microsoft Active Directory is a critical tool that helps system administrators manage user privileges and secure their IT infrastructure, yet Active Directory presents several security challenges. Most problematic is that Active Directory’s attack surface is huge. Targets for attack include every domain name user account, admin and security group, domain controller, backup, admin workstation, and admin delegations and privileges. If any one of these targets is compromised, your entire Active Directory can be compromised too.

The Threats

Who’s the JBoss?

Mobile applications, process management, productivity applications, embedded systems, big data, and analytics: These and much other enterprise-class software present across the value chain offer a data driven competitive edge to an enterprise.