Homepage Rankings and Research Companies Channelcast Marketing Matters CRNtv Events Acronis #CyberFit Summit 2021 Avaya Newsroom Experiences That Matter Cisco Partner Summit Digital 2020 Cloudera Newsroom 2022 Intel Partner Connect 2021

10 Emerging Cybersecurity Trends To Watch In 2022

A variety of new cybersecurity threats, technologies and business models have emerged as the COVID-19 pandemic dragged into its second year and criminal gangs became more brazen than ever before.

Back 1   2   3   ... 11 Next

Authentication Abuse

CrowdStrike has become one of Microsoft’s most vocal security critics, with Kurtz blasting “systemic weaknesses in the Windows authentication architecture” for exacerbating the impact of the SolarWinds hack during written and oral testimony before the U.S. Senate in February. Shortcomings in how Microsoft authenticates credentials have been replicated in the cloud, furthering customer pain, he said.

“In other technologies, you can’t necessarily just steal passwords and use those encrypted passwords to authenticate to something,” Kurtz told CRN in July. “But in the Microsoft world, you literally can steal an encrypted password, without even decrypting it, and pass that hash to another Microsoft system and access the system as if you knew what the password was.”

Russian hackers also developed a backdoor that exfiltrates sensitive information from compromised Microsoft Active Directory Federation Services (AD FS) servers. “What I cannot get is why customers still do not protect their AD FS keys in an HSM - if they still use AD FS. This was a key vector during the SolarWinds attack and the actor behind it is still chasing these keys,” said Microsoft’s Roger Halbheer.

Back 1   2   3   ... 11 Next

sponsored resources