Virtualization Technology News and Information
Semperis Unveils Purple Knight Post-Breach for Partners to Accelerate Malware-Free Recovery from Active Directory Attacks and Help Prevent Follow-on Assaults
Semperis announced the release of Purple Knight Post-Breach, a channel-only edition of its free Active Directory (AD) security assessment tool, to help service providers conduct attack mitigation and recovery for their customers following an identity-based cyberattack. The exploitation of identity systems-such as AD and Azure AD, used in more than 90% of businesses worldwide-is a primary method that attackers use to get unauthorized privileged access and infiltrate target networks.

Today's news expands on the community edition of Purple Knight, which has been downloaded by more than 5,000 users since its initial release in March 2021. Purple Knight Post-Breach enables partners to specify an attack window to accelerate attack mitigation, ensure a malware-free recovery, and close security gaps to prevent follow-on attacks.

"In the aftermath of a cyber disaster, finding the source of the attack is a tedious undertaking that requires sifting through masses of data-all while adversaries could be preparing a follow-on assault," said Dave Evans, VP of Global Channels and Alliances at Semperis. "Purple Knight Post-Breach speeds the post-attack forensics process for our partners so they can help customers mitigate damage and fully recover from AD-related attacks."

When an organization's AD environment is breached, every minute counts in stopping the in-progress attack and recovering the AD to a known-secure state. With Purple Knight Post-Breach, organizations can determine whether an attack was in progress when the latest AD backup was taken. During the recovery period following an AD-related attack, Purple Knight Post-Breach helps security and incident response teams find and remediate any additional vulnerabilities before bringing the recovered environment back into production.

"The faster we can accurately assess the current intrusion, the faster we can eradicate the threat and restore system access," said Marty Momdjian, Healthcare Solutions Advisor at Sirius Healthcare. "What would take us hours or sometimes days, Purple Knight Post-Breach can do in minutes, giving us another crucial tool in our incident response toolbelt."

Semperis partners with some of the world's largest cybersecurity service providers to conduct incident response for organizations that have experienced AD-related cyberattacks. In a recent example, Semperis partnered with one of the top five global consulting companies to help a multinational insurance provider recover AD after a cyber disaster. The team used Purple Knight Post-Breach to scan the customer's environment for open vulnerabilities, saving hours of downtime. Semperis also launched a ransomware task force for healthcare providers, in partnership with Sirius Healthcare, to improve the cybersecurity posture and resiliency of hospitals, pharmaceutical manufacturers, and insurers. By accelerating AD attack forensics, Purple Knight Post-Breach empowers cybersecurity service providers to help customers minimize downtime following an AD breach and quickly recover business operations to a known-secure state.

Published Thursday, June 02, 2022 11:00 AM by David Marshall
Filed under:
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<June 2022>