FireEye CEO Kevin Mandia testifies during a Senate Intelligence Committee hearing on Capitol Hill on February 23, 2021 in Washington, DC. FireEye owns Mandiant, founded by Mandia, which released research Tuesday about the need to lock down Active Directory Federation Services. (Photo by Drew Angerer/Getty Images)
Mandiant Tuesday posted a blog detailing a new attack strategy against Microsoft’s Active Directory Federation Services (AD FS). Researchers with the company believe the need to protect AD FS might be the unheralded second lesson from the SolarWinds campaign.
The main lesson organizations drew from the SolarWinds campaign was the need to protect against third-party risk and address supply chain security. Hackers that the United States linked to Russian Intelligence used a gimmicked update to the SolarWinds IT management software and other vectors to take over a variety of government agencies and private organizations.
Systems Engineer
Employer Description
Our Organization: SPIE, The International Society for Optics & Photonics, is a fast growing, not-for-profit, dedicated to the advancement of light-based research and technology. We serve researchers, students and the photonics industry with educational opportunities including scientific conferences, and publications.
Our People: We have scientists, writers, editors, event experts, software engineers, business intelligence engineers, mountain bikers, road cyclists, runners, hikers, skiers, snow & skate boarders, wake surfers, soccer players, dancers, actors, hula hoopers, video gamers, musicians, artists, mushroom hunters, foodies, travelers, animal lovers… in short, people of all kinds.
Our City: Bellingham: The City of Subdued Excitement… Home to Bellingham Bay, Lake Whatcom, Lake Samish, the San Juan Islands, Chuckanut Mountain, Galbraith Mountain, Mount Baker, Western Washington University, a growing list of brew pubs & distilleries, v
CISA Orders Agencies to Conduct Fresh Scans of Microsoft Exchange Servers dem10/iStock.com
email March 31, 2021 04:32 PM ET
The agency issued supplemental guidance requiring new tests with Microsoft-provided tools and measures to harden the attractive target.
The Cybersecurity and Infrastructure Security Agency set deadlines for federal agencies to implement supplemental actions under an emergency directive it issued following the abuse of vulnerabilities identified in on-premises Microsoft Exchange servers.
The updated directive CISA released Wednesday requires department-level chief information officers or their equivalents to report to CISA on further investigative actions by noon Monday, April 5 and on defensive measures by noon Monday, June 28.
Thycotic Account Lifecycle Manager Adds Integration With AWS, Azure, And Active Directory Federation Services (ADFS) scoop.co.nz - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from scoop.co.nz Daily Mail and Mail on Sunday newspapers.