all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Pwned by the Mail Carrier

Add to bookmarks
March 20, 2024, 4:28 p.m. | Jonas Bülow Knudsen

Security Boulevard securityboulevard.com

How MS Exchange on-premises compromises Active Directory and what organizations can do to prevent that.


At SpecterOps, we recommend our customers establish a security boundary around their most critical assets (i.e., Tier Zero) of Active Directory (AD). We help them find and remediate the attack paths that cross this security boundary with BloodHound Enterprise. One of the most common challenges we and our customers face is Microsoft Exchange on-premises (Exchange).


If you compromise Exchange in AD, you are …

active directory assets attack attack paths bloodhound can carrier critical critical assets customers directory enterprise exchange find mail microsoft exchange ms exchange organizations pwned research security security-boundaries specterops

Visit resource

More from securityboulevard.com / Security Boulevard

Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness 8 hours ago | securityboulevard.com
automation awareness chief cloud +28
USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 11 hours ago | securityboulevard.com
access authors conference events +15
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656) 13 hours ago | securityboulevard.com
ant application customers cve +21
Understanding Cybersecurity Vulnerabilities 13 hours ago | securityboulevard.com
advice attacks can cybersecurity +12
Bridging the Gap: Uniting Development and AppSec 14 hours ago | securityboulevard.com
application security appsec aspm bridging the gap +20
Open-Source Software Security 15 hours ago | securityboulevard.com
blog blog post cloud cloud-native +14
USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android … 15 hours ago | securityboulevard.com
access android authors conference +20
Agile by Design: Cybersecurity at the Heart of Transformation 17 hours ago | securityboulevard.com
agile blog business can +25
Announcing two new LMS libraries 17 hours ago | securityboulevard.com
algorithm bits cryptography digital +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior InfoSec Manager - Risk and Compliance

@ Federal Reserve System | Remote - Virginia
View on infosec-jobs.com

Security Analyst

@ Fortra | Mexico
View on infosec-jobs.com

Incident Responder

@ Babcock | Chester, GB, CH1 6ER
View on infosec-jobs.com

Vulnerability, Access & Inclusion Lead

@ Monzo | Cardiff, London or Remote (UK)
View on infosec-jobs.com

Information Security Analyst

@ Unissant | MD, USA
View on infosec-jobs.com
View more jobs