You're listening to the Cyberwire Network, powered by N2K.

What's the common denominator in security incidents?

Escalations and lateral movement.

When a privileged account is compromised, attackers can seize control of

critical assets. With bad directory hygiene and years of technical debt, identity attack paths are

easy targets for threat actors to exploit, but hard for defenders to detect. This poses risk

in active directory, intra- ID, and hybrid configurations.

Identity leaders are reducing such risks with attack path management.

You can learn how attack path management is connecting identity and security teams

while reducing risk with Bloodhound Enterprise, powered by SpectorOps.

Head to SpectorOps.io today to learn more.

SpectorOps, see your attack paths the way adversaries do.

Thank you. They're not using any sort of really advanced techniques.

They're using pretty simple stuff, but they're using it in a different way.

And by using it this way, they show that they have an understanding of how soft work,

which is something that a lot of directors don't.

That's Max Gannon, intelligence Manager with CoFence Intelligence.

The research we're discussing today is titled,

The Rise of Precision Validated Credential Thft, a New Challenge for Defenders.

My team has what we call qualitative groups, And when we find some kind of interesting behavior, we tag it with a group. And a lot of times, we'll only see it once or twice. So it's

not really worth writing about it just yet. But when we've seen enough of this qualitative group,

especially if it suddenly starts to become more common, then we'll really do an in-depth dive on it and start writing about it.

...