Cybersecurity thought leader, privacy advocate and public speaker, Gabriel Gumbs talks with host Jonathan Sander about NYCRR 500, the new cybersecurity regulation by the New York State Department of Financial Services (DFS).

For more information on NYCRR 500 and how your financial services entity is likely impacted, visit: https://www.stealthbits.com/nycrr-500

Service accounts are a favorite target of attackers because these accounts give them privileged access to systems, applications and data. Since service accounts do not have strict password reset policies, attackers can exploit them for extended periods of time without being detected. In this podcast, cybersecurity expert Jeff Warren speaks with host Jonathan Sander about four service account attacks and how to protect against them, including preventing attackers from using silver or golden tickets.

The recent flare up around EternalBlue and other SMB attacks has put the spotlight back on Microsoft security vulnerabilities. In this podcast, cybersecurity veteran Jeff Warren speaks with host Jonathan Sander about four Active Directory attacks almost every organization can fall prey to—and how with tools like BloodHound, PowerShell, and Mimikatz, even newbie attackers can quickly escalate privileges to compromise your entire Active Directory domain, even exfiltrating your Ntds.dit file.

These Active Directory attacks are scarier than those involving SMB vulnerabilities because there is no patch available. To protect yourself, you need to broaden your definition of admin groups and privileges to include everyone who can logon to critical servers and domain controllers.

Listen to this podcast to find out how to protect your Active Directory now. Click on these links for the full blog series and webinar.