{"id":7530,"date":"2024-04-30T12:04:44","date_gmt":"2024-04-30T10:04:44","guid":{"rendered":"https:\/\/heliview.com\/identity-access-management\/?p=7530"},"modified":"2024-05-13T11:48:27","modified_gmt":"2024-05-13T09:48:27","slug":"the-identity-underground-report","status":"publish","type":"post","link":"https:\/\/heliview.com\/identity-access-management\/the-identity-underground-report\/","title":{"rendered":"The Identity Underground Report"},"content":{"rendered":"
[vc_row][vc_column width=”2\/3″][vc_column_text css=””]Your defenses are sky high, but underground you\u2019re exposed.<\/p>\n

When it comes to identity protection, the user accounts and configurations we\u2019re aware of lie in full view above the ground. We can, therefore, defend them effectively against identity threats.<\/p>\n

Unfortunately, this aboveground knowledge is painfully limited. Beneath the known identity attack surface exists an underground world of misconfigurations, forgotten user accounts, legacy settings, malpractices, and insecure built-in features. In this report we refer to these as Identity Threat Exposures (ITEs).<\/p>\n

Attackers use these ITEs as co-conspirators to perform credential theft, privilege escalation and lateral movement. What\u2019s more, due to the common practice of syncing AD user accounts to the cloud IdP, this underground exposure could also provide attackers with direct access to your SaaS environment.<\/p>\n

We took a deep dive into the prevalence and severity of ITEs in hundreds of live production environments \u2013 and this is what we discovered:<\/p>\n

67% of organizations exposed their SaaS apps to compromise with insecure on-prem password sync.<\/p>\n

37% of admins authenticate in NTLM, enabling attackers to access cleartext passwords.<\/p>\n

109 new shadow admins are, on average, introduced by a single AD misconfiguration, enabling attackers to reset a true admin\u2019s password.<\/p>\n

31% of all users are service accounts with high access privileges and low visibility.[\/vc_column_text]

\n
\n

download the whitepaper<\/h3>\n

\n E\u00e9n of meerdere velden zijn niet of incorrect ingevuld.\n <\/p>\n

\n