all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How to protect LSA credentials

Add to bookmarks
Nov. 6, 2023, 1:48 p.m. | /u/Jkabaseball

cybersecurity www.reddit.com

I'm working through some security recommendations from Defender Vulnerability at the moment. We have MFA on all our admin accounts, and now I'm working on securing the credentials inside LSA. There are currently 3 recommendations for doing this, according to Defender.

1) ASR Rule - Block credential stealing from the Windows local security authority subsystem (lsass.exe)

2) Enable 'Local Security Authority (LSA) protection'

3) Defender Credential Guard



What is everyone running with respect to all 3 of these? It …

accounts admin asr authority block credential credentials credential stealing cybersecurity defender doing local mfa protect recommendations security stealing subsystem vulnerability windows working

Visit resource

More from www.reddit.com / cybersecurity

Sensitive Information Inadvertently Exposed by Publicly Traded Company 4 hours ago | www.reddit.com
can clients code cybersecurity +14
Mentorship Monday - Post All Career, Education and Job questions here! 7 hours ago | www.reddit.com
advice ask asking career +13
Terrible interview process 9 hours ago | www.reddit.com
architect cutting cybersecurity endpoint +13
SecurityHeaders.org 11 hours ago | www.reddit.com
client cybersecurity download found +14
Is the CIA Triad created equal in practice? 13 hours ago | www.reddit.com
aspect availability cia confidentiality +10
How do you address your EDR platform when you aren’t receiving many true positives? 13 hours ago | www.reddit.com
address alerts behavior cybersecurity +8
What are some popular news or security content creators you guys follow to keep up … 13 hours ago | www.reddit.com
articles content creators creators cybersecurity +5
Looking for con suggestions that are mostly for skilled people not for vendors/management 15 hours ago | www.reddit.com
con corporate cybersecurity doing +7
How to effectively track security exceptions in mid-sized startup? 16 hours ago | www.reddit.com
aws basic cybersecurity database +19

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com