Semperis

The Medusa ransomware gang's surge in attacks has triggered a new #StopRansomware advisory from CISAgov and the Federal Bureau of Investigation (FBI), warning organizations of the growing threat targeting critical industries. In Kristina Beek’s latest Dark Reading article, Semperis AVP Daniel Lattimer highlights why businesses must adopt an "assumed breach" mindset because companies operating under the assumption that their systems have been or will be compromised shift the focus from preventing breaches to detecting, responding, and recovering quickly. Organizations should assess their critical systems and where they are because when these services are inoperable or exposed because of vulnerabilities, hackers could flood the system. Have a “what to do if” plan that includes a robust backup and recovery plan. Read the full article to learn more about the growing #RaaS variant: https://lnkd.in/engsQjM5 #cybersecurity #ActiveDirectory

Recovering Active Directory manually is slow and prone to mistakes, often requiring extra time to fix errors. In large enterprises, this can tie up 10 to 15 IT staff, increasing downtime and adding pressure to the team. Active Directory Forest Recovery (ADFR) simplifies the process by automating up to 29 recovery steps, making it faster and more reliable. Traditional backups restore everything, including hidden malware, which creates additional risks. ADFR takes a different approach by isolating AD backups from the operating system ensuring a clean recovery. With small, efficient backups, it can restore systems in minutes or hours whether on-prem in the cloud or in a hybrid setup. When time is critical, Semperis' ADFR does the heavy lifting allowing your team to stay focused on protecting the organization. #TuesdayTip #CybersecurityTip

Mastering the Art of AD Recovery Does your organization have a documented, tested, AD-specific backup and recovery plan? This week, "Master of Disaster" Guido Grillenmeier explains why Active Directory recovery is a vital part of a successful ITDR strategy.

Semperis is heading to the IAM Summit this week to connect with security and identity leaders. Our Active Directory experts will be on-site, ready to share insights and help you tackle the complexities of identity and access management. ?? Join our roundtable discussion on Insider Threats ?? Meet the team & explore cutting-edge IAM strategies Let’s talk identity security—see you in Sydney!

Defenders have their hands full with the notorious Medusa ransomware, leading the FBI / CISA to create an advisory with mitigation recommendations. In Davey Winder's recent article in Forbes, Semperis AVP Daniel Lattimer explains why organizations must adopt an assumed breach position, why identity systems such as Active Directory require special attention, and why it never pays to pay the ransom. You can read it in full here: https://lnkd.in/gyExn3US

?? Cybersecurity Industry Watch: Weekly Highlights ?? It’s Monday, and we’re here with the latest news shaping the cybersecurity landscape: 1?? X Platform Hit by Cyberattack: Elon Musk’s social platform X (formerly Twitter) went down three times on March 10, affecting tens of thousands of users. A hacktivist group, Dark Storm Team, claimed responsibility, calling it a protest. X has since added Cloudflare protections. https://lnkd.in/gYXcd7t8 2?? Microsoft Fixes 6 Active Zero-Days: March’s Patch Tuesday included 57 security fixes, with six zero-days already being used in attacks. One flaw (CVE-2025-24983) had been exploited for nearly two years, giving attackers system privileges. https://lnkd.in/gHXMDETP 3?? Chinese Hackers Target U.S. Power Grid: Cyber group Volt Typhoon spent over 300 days inside a Massachusetts utility network, gathering data. The breach raises concerns about threats to critical infrastructure. https://lnkd.in/eTA4JNud Stay informed to stay secure. What stories are catching your attention this week?

?? ?????????????????????????? ????????????????????: ?? ???????????????? ???????????? ???? ???????? ???????????? ?????????????????? ?? For those responsible for protecting critical assets, unconstrained delegation in Active Directory poses a significant risk. This vulnerability can enable attackers to impersonate users and gain unauthorized access to vital resources. Stay informed and proactive with our latest blog post. In this article, we cover: ? The dangers of unconstrained delegation ? Steps to defend against these attacks and secure your AD environment ? Tools to monitor and mitigate risks, including ???????????? ???????????? and ???????????????? ?????????????????? ???????????????? ?????????????????? Don’t let unconstrained delegation pave the way for cyberattackers. Enhance your defenses now! ?? Read more: https://lnkd.in/g54f-_SJ

It was a packed room at BSides Limburg as Jorge de Almeida Pinto, Senior Incident Response Lead at Semperis, took the stage to share best practices for safeguarding Active Directory (AD) security—before and after an attack. Jorge walked attendees through real-world identity security risks, the importance of hybrid identity protection (AD & Entra ID), and how ITDR tools can help identify vulnerabilities before attackers do. He also highlighted the critical role of an AD Recovery Plan in maintaining operational resilience and tackled the challenges of reconnecting AD and Entra ID post-attack.

A new case study from Dragos sheds light on the challenges presented by the notorious Volt Typhoon threat group and its ability to remain undetected for 300 days in the network of a public utility. Semperis' Dan Lattimer spoke to IT Pro about why geopolitical factors will continue to heighten risks for operators in the CNI space and increase the likelihood of OT-related cyberattacks. He also shared some best-practice advice. You can read his interview here: https://lnkd.in/gBEEj3_4

???????????? ?????? ???????????? ???????????????? ????????????????????? Happy Pie Day to—wait. ?????????? ???????? ?????? ????????????????! Don't risk the resilience of your operations by letting cyberattackers catch you unprepared for Active Directory recovery. AD-specific backups and a tested plan for automated, secure AD recovery are a delicious defense. This Pie Day, grab a fork and fill up on hybrid identity resilience expertise! https://lnkd.in/g4eiR_bG