Published at Infosecurity on May 13, 2018 by Raz Rafaeli
Why do we have a situation where hackers are able to take advantage of Microsoft’s Active Directory bugs?
No matter how you slice it, the error in the model can be traced to one factor – the password. If that were not compromised, hackers would not have an opportunity to carry out attacks in the first place.
AD centralizes authentication and authorization for domain resources, but also creates a critical single point of failure – the account password that grants access to all resources. If the password is stolen, the attacker can gain access to all systems/resources authorized for the account.