Name: 5 Active Directory Security Settings Attackers Leverage
Start: 2021-06-23T13:36:00Z
End: 2021-06-23T13:36:28.000Z
Location: BrightTALK

Tenable®, Inc. is the Cyber Exposure company. Over 30,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 30 percent of the Global 2000 and large government agencies. Learn more at www.tenable.com.

Watch this on-demand webinar to learn how Tenable Vulnerability Management outpaces other solutions. You'll see how our AI-powered, context-rich approach transforms risk scoring, delivering superior prioritization, unmatched efficiency, and clear explainability.

Tenable Announces AI-Powered Breakthrough in Vulnerability Prioritization

Check out this on-demand webinar to explore key findings from the Tenable Cloud Security Risk Report 2025 and get practical guidance for identifying and remediating critical exposures in your public cloud workloads.

Why Your Cloud Data May Not Be Secure After All: Insights from Tenable Research

Join researchers from Tenable and Verizon to explore and leverage key findings from the 2025 Verizon Data Breach Investigations Report (DBIR) to enhance your organization’s proactive cyber defenses.

The threat landscape is evolving rapidly, and understanding the latest attack vectors is crucial for robust defense. Of note, the recently released 2025 Verizon DBIR revealed a concerning 34% increase in attackers exploiting vulnerabilities to gain initial access.

You can gain more insight into the DBIR findings, along with strategies to help fortify your organization's proactive cyber defenses, by watching this on-demand webinar with Verizon and Tenable researchers covering:

 - What makes the most notable findings from the 2025 DBIR truly concerning, and how might they impact your security program?
 - A deep dive into the Tenable vulnerability data, including what was shared and its strategic implications.
 - How organizations can strengthen their cyber posture and reduce risk by adopting proactive security practices.

Research Insights from the 2025 Verizon DBIR: What You Need to Know to Secure Smarter

Learn how Tenable brings together data from your most valuable security tools to deliver a unified view of risk, with actionable context so you can proactively identify and remediate critical exposures with the highest likelihood of attack.

Security Without Silos: How to Gain Real Risk Insights with Unified Exposure Management

Join cloud security experts from Tenable and AWS to explore proven, real-world practices for streamlining and strengthening your organization’s cloud security using Tenable Cloud Security.

Confident in the Cloud: How to Overcome Complexity and Get AWS Security Right

Join experts from Tenable and the Center for Internet Security to explore ways state and local governments can take a risk-informed approach that strengthens cybersecurity, optimizes resources, and reduces cost, in line with the March 19 Trump Executive Order on Achieving Efficiency Through State and Local Preparedness.

How State and Local Governments Can Boost Cyber Resilience with Exposure Management

Check out this on-demand webinar, where we unpack the limitations of endpoint-first approaches for vulnerability management, and show why more cybersecurity leaders — and CFOs — are choosing Tenable. From asset visibility to risk prioritization to business alignment, you’ll learn how Tenable delivers where endpoint vendors fall short. Topics covered:

 - Identify the security gaps in endpoint-based vulnerability management platforms
 - Align your vulnerability management strategy with both security and financial goals
 - Make the case for Tenable to executives who want more than compliance checkboxes

Endpoint Security Vendors Leave You Vulnerable: Help Your CFO Choose a Better Option

Join Tenable as we explore findings from the 2025 Cloud AI Risk Report. We'll help you uncover critical cloud security vulnerabilities, misconfigurations, and real-world risks, and also share smart strategies for securing cloud AI workloads.

2025 Cloud AI Risk Report: Helping You Build More Secure AI Models in the Cloud

Join Tenable experts to learn how to effectively adopt a more proactive approach to identity security, strengthening your overall cyber posture while fulfilling the promise of exposure management.

3 reasons why it's time to embrace identity as part of exposure management

Public sector organizations increasingly rely on public cloud platforms to deliver critical services. While these platforms offer basic security tools, they often fail to effectively address advanced threats, compliance mandates, and multi-cloud complexity.

Check out this on-demand webinar to learn how Tenable Cloud Security provides the comprehensive protections your state, local, or tribal government agency needs to safeguard citizen data, meet compliance requirements, and enable digital transformation. Through discussion and demonstration, this session shares:

>> Ways to recognize and close gaps in your cloud security tooling
>> Practical strategies for overcoming resource constraints and compliance challenges
>> Real-world success stories of how public sector organizations leverage Tenable Cloud Security

Protect, comply, innovate: your 2025 public sector cloud security survival guide

Join key players on Tenable’s security team for an inside look at how they’ve deployed Tenable Cloud Security to effectively protect Tenable’s cloud environments.

Whether starting your cloud security journey or refining your approach, this on-demand webinar offers practical insights for smart CNAPP deployment and strengthening your cloud security strategy. Topics covered include:

>> Actionable deployment strategies and best practices
>> Effective ways to streamline cloud security operations across multiple platforms while maintaining comprehensive visibility
>> Practical approaches for achieving least privilege and responding to zero-day threats in cloud environments

How does an industry leader like Tenable protect its own cloud environments?

Securing AWS environments is increasingly complex, with evolving cloud services and mounting risks. Tenable is a premier AWS partner. Join us to explore how Tenable Cloud Security, our comprehensive CNAPP solution, delivers unmatched visibility, prioritization, and remediation capabilities for AWS.

Led by Tenable cloud security experts, this on-demand webinar explores how Tenable goes beyond cloud-native tooling to streamline and strengthen your AWS security posture. Topics covered:

>> The limitations of cloud-native security tooling
>> Ways to prioritize and address critical risks across EC2, S3, AI resources, and beyond
>> Key capabilities of Tenable Cloud Security, including AWS integrations for enhanced protection

Ready for AWS Security Beyond the Basics? Gain Full Control with Tenable

Transform security mandates into actionable strategies to better protect your cyber-physical systems (CPS).
Managing cyber risk and compliance across an expansive, interconnected attack surface requires aligning with a complex mix of industry regulations, government mandates, and cybersecurity frameworks.

For guidance on ways you can streamline compliance processes, mitigate risk, and effectively protect critical systems from disruption, check out this on-demand webinar covering the following topics:

>> Navigating OT/IT regulatory conformance without compromising operational efficiency
>> Transforming compliance activities into meaningful security improvements across your cyber-physical systems
>> Gaining real-time visibility into your compliance status and security posture
>> Building a resilient approach to incident response that satisfies both regulatory and security needs

From Compliance Burden to Security Advantage: A Practical Approach for OT/IT Security

Check out this on-demand webinar with former Gartner analyst Tom Croll for guidance on managing cloud compliance challenges across regulations – from GDPR to NIST and beyond.

Keeping up with evolving regulations in the cloud is tough, especially when your organization operates in a multi-cloud environment. To help you address this challenge, join former Gartner analyst Tom Croll and Tenable senior security engineer Ryan Bragg for an on-demand webinar exploring the regulatory trends and compliance strategies shaping 2025.

Beyond the Checkbox: Mastering Cloud Compliance in 2025

As cyber threats against operational technology and critical infrastructure grow more sophisticated, traditional security tools leave dangerous blind spots. For guidance on effectively addressing this challenge, check out this on-demand webinar exploring a unified approach to managing cyber exposures.

During the session, Tenable experts share ways to uncover and close attack paths before breaches begin, prioritize real risks over theoretical ones, and better align security and business objectives to protect your organization more effectively. Key takeaways will include:

>> Getting the attacker's view: Identify hidden vulnerabilities and attack paths that put cyber-physical systems at risk
>> Moving from reactive to proactive: Use AI-powered insights to stop threats before they materialize
>> Optimizing security investments: Align remediation priorities with business impact to maximize ROI

How to protect cyber-physical systems and uncover hidden risks with exposure management

Addressing the escalating cybersecurity risks for K-12 and higher education with resource-conscious, effective solutions from Tenable.
Educational institutions, from K-12 to colleges and universities, face growing cyber threats that can compromise student data, disrupt operations, and strain already limited resources. In this on-demand webinar, Tenable shares insights into how you can use risk-based exposure management to support the unique cybersecurity needs of educational institutions.

Led by Joseph Decker, a Tenable education-sector expert, this session covers:

>> Strategies to manage decentralized, multi-campus IT environments while optimizing resources
>> Best practices for reducing third-party and vendor-related cyber risks
>> Insights into securing legacy systems and infrastructure against modern threats

More secure schools: how a risk-based cyber strategy can make a difference

The Australian Signals Directorate Australian Cyber Security Centre (ASD ACSC), in cooperation with CISA, the NSA, Canadian Centre for Cyber Security (CCCS), United Kingdom National Cyber Security Centre (NCSC-UK), and New Zealand National Cyber Security Centre (NCSC-NZ) recently recommended strategies to mitigate 17 attack techniques used by adversaries and malicious actors to compromise Active Directory (AD).

Join Tenable AD security experts Tim Oroszi and Bradford Eadie for this on-demand webinar to learn how you can detect and mitigate 16 of these threats using Tenable Identity Exposure.

Detect and mitigate 16 widely deployed Active Directory compromises

Led by Tenable Cloud researcher Ari Eitan, and cloud security expert Lior Zatlavi, this on-demand webinar breaks down findings from the Tenable Cloud Risk Report 2024 and shares actionable steps to strengthen your organization’s cloud security in the year ahead. Topics covered will include:

>> Key findings, from the high-risk use of access keys to unmitigated vulnerabilities and publicly accessible Kubernetes API servers
>> Implications of the toxic cloud trilogy found in 38% of workloads
>> Practical tips, practices, and tooling for protecting your organization from these cloud risks and others

Empower Your 2025 Cloud Security Planning with Tenable's Data Insights

Everyone knows Active Directory. Not only is it a seasoned IAM, nearly every organization in the world uses it. That said, there are many built-in configurations and processes that “just work” without the need for any manual configurations. Many administrators are not aware these exist. Surprise: the attacker does and leverages them to move laterally and gain privileges.

In this webinar you will learn:

• How an attacker can leverage the SDProp process
• Which service account configurations attackers look for
• How an old Unix attribute can cause an immediate privilege elevation
• How a migration-related attribute can allow domain admin privileges
• What details you need to verify for your trusts

Looking for concrete actions to fortify your organization's security today? Start watching.

5 Active Directory Security Settings Attackers Leverage

Active Directory

Cyber Security

Cyber Attacks

Ransomware

Information Security

Microsoft

Cyber Defence

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

5 Active Directory Security Settings Attackers Leverage

Presented by

About this talk

Tenable, Inc.