Semperis

Are you ready for the next ransomware attack? Semperis' new Ransomware Risk Report reveals that 78% of organizations worldwide were targeted by ransomware in the past year. ▪️The Manufacturing/Utilities and IT/Telecom industries were hardest hit ▪️Attacks were most prevalent in the UK ▪️More than half of all reported attacks succeeded ▪️Almost three-quarters of companies that were successfully targeted suffered multiple attacks Is your organization ready to prove its resilience against ransomware and other cyber threats? Find statistics for your region and industry—as well as tips for fighting the good fight. Read it now: https://xmrrwallet.com/cmx.plnkd.in/gthCgFNP

Golden dMSA—a novel AD attack technique discovered by Semperis Security Researcher Adi Malyanker—presents a challenging risk to environments using Windows Server 2025. In our blog, Malyankar deep dives into how: · The research team discovered and reverse-engineered the attack method · Attackers find dMSAs and identify ManagedPasswordId attributes · A single root key extraction enables cross-domain lateral movement and persistent access to managed service accounts Learn about Golden dMSA and its risks. Get the details in our blog: https://xmrrwallet.com/cmx.plnkd.in/gJWtu2VQ

🐐 In our second EntraGoat attack scenario, follow the steps from a carelessly leaked certificate to capture the Global Admin password—and full Entra ID compromise. 🔎 In this practical Entra ID attack exercise, you’ll discover your possible identity governance blind spots. 🔗 Take on the challenge! https://xmrrwallet.com/cmx.plnkd.in/gBS7KGzA

Leadership Announcement We’re thrilled to announce Randall Belknap has joined Semperis as Head of U.S. Federal Sales. With more than three decades of experience in federal enterprise software sales, including leadership roles at Checkmarx, HPE, Micro Focus, and Oracle, Randall brings unmatched expertise in identity security, channel strategy, and scaling federal operations. He’ll lead our public sector go-to-market efforts, drive strategic growth across U.S. federal agencies, and expand our federal partner ecosystem. https://xmrrwallet.com/cmx.plnkd.in/gmPKydDw Welcome to the team, Randall!

🎯 “If you’re down from a full-on ransomware attack, how are you going to recover?” That question led Foulston Siefkin LLP, the largest Kansas-based law firm, to rethink its identity system resilience. CTO Matt Spurlock, MBA shares how his team: ✅ Strengthened disaster recovery planning ✅ Streamlined AD recovery testing ✅ Automated security posture reports with daily insights With Semperis ADFR and DSP, the team has the confidence and tools to recover quickly if ransomware ever strikes. Read their story: https://xmrrwallet.com/cmx.plnkd.in/g96YtS3b

🐐 How can a low-privileged user account exploit service principal ownership—and complete an Entra ID tenant takeover? 🔎 Find out when you dive into EntraGoat Scenario 1—a practical exercise in our Entra ID simulation environment, built to strengthen your identity defense capabilities. 🔗 Discover the real-world consequences of application mismanagement: https://xmrrwallet.com/cmx.plnkd.in/eC5bPyJd

Ever done a tabletop exercise at a football stadium? 🏈 We have. Operation Blindspot | Black Hat Edition unfolded at Allegiant Stadium yesterday, where security leaders—including renowned researcher Marcus Hutchins—stepped into a high-stakes, cyber crisis simulation. Participants were immersed in a simulated identity-based breach scenario—testing their incident response, surfacing blind spots, and strengthening defenses where it counts most. Special thanks to moderator Marty M., Blue Team lead Courtney Guss, and Red Team lead Sean Deuby for guiding the action—and to everyone who brought their A-game. As you know, when it comes to protecting critical identity infrastructure, every second matters—and so does your playbook.

In the event of an attack, restoring Entra ID data quickly is critical. Disaster Recovery for Entra Tenant (DRET) offers secure backup and recovery for key Entra ID assets—like user, group, role objects, security groups, and conditional access policies—ensuring fast, reliable recovery. Recover soft and hard-deleted objects, restore policies, and retain backup versions—all from an easy-to-use dashboard. 👉 Learn more: https://xmrrwallet.com/cmx.plnkd.in/gUNi3qt4

Ransomware attacks aren’t letting up, and neither is the need for deeper visibility and preparedness. At this year’s Black Hat conference, our CEO Mickey Bresman sat down with CyberRisk Alliance on #CyberRiskTV to break down the findings from last week’s 2025 #Ransomware Risk Report. The key takeaway? The threat is relentless, and the time to act is now. For those interested in learning how to increase their resilience against ransomware attacks and stop the scourge before it spreads, reach out to our team. https://xmrrwallet.com/cmx.plnkd.in/gm8Ewk-E

🛡️ DSP delivers continuous protection for hybrid identity environments. Your AD and Entra ID environments are under constant threat. DSP 5.0 puts hybrid identity security on autopilot with: ✅ Continuous security posture validation ✅ Tamperproof logging ✅ Real-time rollback of malicious changes Stay ahead of advanced hybrid attacks. Read the full blog: https://xmrrwallet.com/cmx.plnkd.in/gSKDEFSw #HybridIdentity #ADSecurity #CyberResilience