AD & Entra ID security and resilience training days from Craig Birch are amazing and always get raving reviews. The next ones that have registration open are in New York / New Jersey, DC, and the Bay Area: https://t.co/rcBG8EaBw1
Thanks to everyone who joined us at the AD Resilience Roadshow in Dallas! 100% would "recommend to a colleague" and rated the event as "excellent"! Next up: NY/NJ, June 25!
Seats are limited: https://t.co/npguU7HPKf
@techspence . @Cayosoft Guardian is the best IMHO: https://t.co/FKjnbqnUbU - very easy to use and to configure, covers on-prem AD and Entra ID from one deployment, has alerting and blocking. (I work for the company so happy to answer questions or help with the trial)
@CraigBi41004273 Did you have a PowerShell one-liner to detect these? Or recommended (presumably @Cayosoft :)) tools to address the issue? Or a link to a page to learn more?
Cayosoft's unique approach to #ActiveDirectory#resilience has been officially granted a patent. With @Cayosoft, you have a safe, clean, secure, isolated standby AD in the cloud and can instantly switch to it when #ransomware brings your production AD down https://t.co/EK25Fjvc7L
The #Qilin#Ransomware group, known for the #Synnovis labs #cyberattack, is launching attacks via Active Directory Group Policies. This method enables them to harvest Google Chrome passwords and swiftly deploy ransomware. See below for details, detection, and prevention.
TO ALL JOINT VMWARE CAYOSOFT CUSTOMERS, if you have not upgraded to the latest version of VMware ESXi ESXi80U3-24022510 (or cannot do it for any reason), make sure you use the latest threat definitions in Cayosoft Guardian and enable the CVE-2024-37085 blocking as described here.
#VMware#ESXi vulnerability, CVE-2024-37085, is being actively exploited but a fix isn't available for older versions. Cayosoft has developed functionality to detect and defend against this flaw. Learn more: https://t.co/bxtv1EYPQR
#ransomware#cybersecurity#ITsecurity#ITDR
Here's my explanation of why today's CrowdStrike / Windows incident had such an impact and how Cayosoft technology makes companies much more resilient to such outages.
Businesses globally have been disrupted by massive #ITOutage. CrowdStrike update brought down Microsoft systems, like #ActiveDirectory.
Our CPO, @DSotnikov, talks incident impacts and modern #DisasterRecovery with Cayosoft's instant AD #ForestRecovery. https://t.co/ZRGCSwthZs
With #ransomware and cyber threats on the rise, Dmitry Sotnikov, Cayosoft CPO, shared his thoughts on how to protect your #ActiveDirectory on the @DPGPodcast. Listen now: https://t.co/HTTZPilmwG
@Jaren_Havell@SamErde Check out Cayosoft Guardian: https://t.co/FKjnbqos1s
It does exactly what you mention (Change History for AD), plus Entra/M365/Intune, Threat Detection, Rollback. There's a free trial available & some of the features (including limited Change History) continue working even after
I will be presenting at the Incidence Response Planning webinar / live Q&A this coming Thursday, August 4. See you there if you are interested in learning more! https://t.co/tk2PV9QjAr
@JazonTWong@apisecurityio And also the attacker had to test their membership hypothesis for a specific group. There was no way to simply retrieve all groups - they had to be tried one by one.
@JazonTWong@apisecurityio They made it lower because the attacker needs to be connected to the victim. However, still, I can easily see how this can be a big privacy violation and a stalking tool. There's an expectation that private groups are private and not visible even to "friends".