Attivo Networks, a lateral movement attack prevention company, announced that it has expanded its identity infrastructure assessment technology for Azure Active Directory.
The new features add support for hybrid environments for continuous visibility and provide troubleshooting guidance for on-premises, cloud, and managed AD environments.
According to Attivo Networks, almost 80% of attacks are caused by threat actors who use identity vulnerabilities to gain privileged access and move laterally through the network to execute their attack plans.
The release complements the company’s existing identity security portfolio, which offers more than 200 checks for vulnerabilities that attackers use to gain privileges, install backdoors, and distribute malware. The new improvement adds 15 additional automated Azure AD risk health checks and remediation guidance.
“The Attivo ADAssessor solution continues to provide the essential visibility of identity disclosure across on-premises and cloud deployments, now including Azure AD,” said Srikant Vissamsetti, senior vice president of engineering at Attivo Networks.
“Organizations can now reduce risk by finding, remediating, and remediating exposures within AD,” he says.
“Our technology limits the attacker’s ability to identify sensitive targets, compromise misconfigurations, move laterally, and gain persistence in hybrid environments.”
Enterprise Management Associates recently analyzed the rapid growth in Active Directory exploits and identity-based attacks, and the industry’s response to this growing threat. More than 70% of organizations said they accepted AD attacks because of operational concerns, and only 33% said they believed they could defend against AD attacks in real-time. More than half of the organizations surveyed plan to further prioritize securing Active Directory to defend against identity-based attacks.
“With this expanded offering, organizations can easily enhance their protection of Active Directory in Azure and on-premises, and gain continuous visibility with actionable insights into risk and misconfiguration across domains, users, and devices,” said Vissamsetti.
“ADAssessor is the gold standard for easy, scalable usage, non-elevated deployment on a single standard workstation within the AD forest.”
The solution includes a management console for analysis and management.
Attivo Networks specializes in Identity Threat Detection and Response, protecting against identity compromise, privilege escalation and lateral movement attacks. Through data cloaking, misdirection, and cyber deception, the platform prevents attacks from escalating across Active Directory, cloud environments, and devices.
Attivo Networks has entered into a definitive agreement to be acquired by SentinelOne.
With the acquisition, SentinelOne plans to expand its AI-powered prevention, detection and response capabilities to identity-based threats.
Under the terms of the agreement, SentinelOne will acquire Attivo Networks in a cash and stock transaction valued at $616.5 million. The acquisition is expected to close in SentinelOne’s upcoming second fiscal quarter, subject to regulatory approvals and customary closing conditions.
The two companies say they will deliver comprehensive identity security as part of Singularity XDR for autonomous protection, including: