Latest news with #ActiveDirectory
Business Wire
a day ago
- Business
- Business Wire
Andromeda Security Unveils Strategic Enhancements to Combat Escalating Identity Attacks
SAN FRANCISCO--(BUSINESS WIRE)-- Andromeda Security, the company automating permissions and lifecycle across human and non-human identities, today announced a major product expansion delivering broad support for cloud services, granular resource-level access visibility, and critical integrations such as Active Directory. This launch reflects the company's continued mission to reduce the identity attack surface and help organizations accelerate their Zero Trust journey. With 95% of permissions over-provisioned, and 99% of organizations blaming insecure identities for breaches, enterprises face mounting risk from both human and non-human identities (NHIs) and the coming onslaught of AgenticAI. 'Andromeda stands out as a strategic partner in identity security, providing the holistic visibility needed for both human and non-human identities," said Bill Harper, Director of IAM, New American Funding. 'Its powerful risk and behavioral context fuels intelligent automation for streamlined Just-in-Time access, giving us immense confidence in our security posture.' Cloud-scale has broken traditional identity tools. The complexity and speed of today's hybrid environments require intelligent automation that's informed by deep, real-time context. Siloed identity tools leave dormant accounts or over-provisioned access unmonitored, making them prime targets for exploitation and contributing directly to financial losses. When organizations are managing thousands of identities across cloud and applications with minimal visibility into actual usage patterns, they're operating blind. 'This release is a testament to our team's rapid pace of innovation and deep understanding of the modern identity threat landscape,' added Basavaiah. 'We are not just adding features, we are expanding the breadth, depth, and precision needed to address today's most complex identity challenges.' The updates deliver on a roadmap driven by customer demand, providing the most expansive coverage for identity security across multi-cloud and hybrid deployments including: Expanded Cloud Service Provider Support: Comprehensive support for Google Cloud Platform (GCP), reaching parity with AWS and Azure. Includes JIT access, User Access Reviews (UAR), and activity-based insights for GCP identities. Active Directory Integration: Bridges hybrid identity by ingesting on-prem AD data to provide compliance and risk visibility across humans, NHIs, and the Group and UARs. Business-Critical App & Data Store Integrations: New support for Salesforce, Snowflake, MongoDB Atlas, and ElasticSearch risk insights across humans and NHI, JIT access and UARs. Fine-Grained Cloud Resource Management: Resource-level visibility, JIT access and UAR now available for AWS (S3, RDS, DynamoDB, Redshift, EC2, Secrets Manager), GCP (BigQuery, Cloud Storage), and Azure (Blob Storage, VMs). Kubernetes Security: Native support for EKS, AKS, GKE, and self-managed clusters for namespace- and cluster-level access control. Expanded HRIS & ITSM Integrations: Support for Workday, ADP, and Jira, including JIRA-based access validation for JIT workflows. UAR & JIT Enhancements: More advanced user access review features (e.g., group reviews, auto-revocations) and expanded JIT workflows, now integrated with Jira, Slack, and Teams. Multi-Tenancy for MSSPs: New capabilities for MSSPs and enterprises managing multiple environments. Andromeda's architecture is purpose-built for contextual, risk-driven identity automation, ingesting data from identity providers, cloud logs, and applications into a unified graph-based data lake. Its AI models power insights and decisions around risk, posture, usage, and behavior, delivering automated remediation, access enforcement and improved compliance with confidence and speed. 'What began as a search for a better User Access Review tool quickly turned into a game changing move for our identity security program,' said Emilio Sepulveda, Director of Security & Compliance at Deepwatch. 'Andromeda did not just improve our access reviews—it redefined how we manage identity across the organization. The onboarding was seamless and the platform gave us immediate, precise control over both human and nonhuman identities.' About Andromeda Security Andromeda Security addresses the most persistent challenges in identity security: excessive and inappropriate access across both human and non-human identities, manual processes and a lack of end-to-end context – compounded by fragmented data. Its data-centric platform unifies identity, entitlement, and activity data into a graph-based architecture—building rich context and laying the foundation for intelligent automation while delivering holistic visibility and remediation. Powered by AI, Andromeda utilizes contextual intelligence built on risk and behavior insights to provide automated and continuous enforcement of least privilege, Just-in-Time (JIT) access, User Access Reviews (UAR), and identity lifecycle governance—helping organizations reduce their attack surface, improve operational agility, and simplify compliance.
Yahoo
a day ago
- Business
- Yahoo
AXA XL launches cyber assessment services in North America
AXA XL has introduced cybersecurity assessment services for its cyber insurance policyholders in North America. The insurer launched these services in collaboration with Fenix24, which specialises in ransomware response and recovery. The suite of assessments available to AXA XL's clients includes a Ransomware Backup & Resiliency Assessment to evaluate an organisation's preparedness for a ransomware attack by identifying which systems and data are resilient and establishing expected recovery time frames. Fenix24 CEO and co-founder Mark Grazman said: "Partnering with AXA XL allows us to bring battle-tested assessments to the front lines, before an incident occurs, so we can help organisations close critical security gaps, reduce business risk and bounce back faster if they are ever hit." Another service is the Firewall Hardening Assessment, which looks to pinpoint and rectify vulnerabilities in an organisation's network perimeter defences. The third service offered is the Active Directory Hardening Assessment, strengthening the security of essential identity management systems to avoid unauthorised access by implementing targeted enhancements. AXA XL clients can access each assessment at a discounted flat rate through 2025. AXA XL incident response and cyber services lead Gwenn Cujdik stated: "By teaming up with Fenix24, we are giving organisations powerful new tools to boost their defences, speed up recovery and stay resilient against today's cyber threats. This is about helping them stay resilient – no matter what comes their way." Recently, AXA XL named Sylvain Bouteillé as the new chief underwriting officer for its Specialty Americas division. Bouteillé will oversee the development and execution of the regional strategy for the Specialty insurance unit. "AXA XL launches cyber assessment services in North America " was originally created and published by Life Insurance International, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site.
Techday NZ
7 days ago
- Business
- Techday NZ
ManageEngine AD360 adds identity risk & MFA to combat breaches
ManageEngine has announced the general availability of new identity risk exposure management and local user multifactor authentication (MFA) features in its AD360 identity and access management platform. The new features are intended to help security teams detect privilege escalation risks and secure unmanaged local accounts, two attack vectors that are frequently targeted by threat actors. These additions come amid continuing concern over identity-centric breaches, as reported in Verizon's 2025 Data Breach Investigations Report, which found that credential abuse was the initial access vector in 22% of breaches and highlighted ongoing exploitation of mismanaged local accounts and privilege chains. Manikandan Thangaraj, Vice President of ManageEngine, said, With this release, ManageEngine AD360 moves beyond traditional IAM by embedding identity threat defences into core identity operations. By turning identity data into actionable security insights, we're helping customers make IAM the first line of defence, not a check box. The update to AD360 introduces risk exposure mapping using attack path analysis, as well as the ability to enforce MFA on local accounts. According to ManageEngine, these capabilities are designed to assist enterprises in closing attack paths that may otherwise go undetected, thereby advancing the role of identity management from basic access control to active security enforcement. Risk exposure management The identity risk exposure management feature operates using graph-based analysis to map lateral movement and privilege escalation paths within Active Directory (AD). By representing AD objects as nodes and privilege inheritance as lines, the system models and visualises attack chains in real time. It automatically prioritises risky AD configurations and provides IT staff with actionable remediation steps, enabling organisations to address threats proactively. Local account MFA enforcement The new local user MFA capability extends adaptive MFA protections beyond domain-joined devices, allowing enterprises to secure credentials on local accounts that reside on non domain-joined servers, assets in demilitarised zones (DMZ), and in test environments. This move is intended to mitigate risks associated with credential stuffing and persistence techniques, which have proven effective in attacks on unmanaged local accounts. Machine learning-driven recommendations ManageEngine has also incorporated machine learning (ML) into AD360 to support access recommendations. During both provisioning and periodic access review campaigns, the software now analyses permission patterns and suggests adjustments designed to enforce least privilege access. This is expected to reduce the incidence of excess entitlements and consequently limit attackers' ability to move laterally following an initial compromise. Access certification and governance Enhancements to the platform's access certification module include expanded entitlements for more comprehensive review coverage. The risk assessment capabilities now feature additional indicators for improved identity risk monitoring across both Active Directory and Microsoft 365 environments. ManageEngine states that these changes are aimed at improving compliance reporting and strengthening access governance across enterprise environments. The newly added features in AD360 are intended to support compliance with NIST SP 800-207 for Zero Trust architecture, align with PCI DSS Version 4.0 Requirement 8, and facilitate controls for SOX, HIPAA and GDPR regulations. AD360 is positioned by ManageEngine as a single-console, unified identity platform designed to provide visibility and control over enterprise identity infrastructure. The platform offers automated lifecycle management, secure single sign-on (SSO), adaptive MFA, risk-based governance, auditing, compliance and identity analytics, with built-in integrations and support for custom connectors to fit into existing IT environments.
Business Standard
24-07-2025
- Business
- Business Standard
SysTools Achieves Seamless 5000 Active Directory Users Migration for Sammaan Capital Showcasing Innovation Collaboration and Enterprise Grade Precision
VMPL New Delhi [India], July 24: SysTools, a global leader in data management, enterprise migration, and security solutions, is proud to announce the successful completion of a landmark domain migration project for Sammaan Capital (formerly Indiabulls). This transformative initiative involved the migration of over 5,000 Active Directory users into a newly established domain infrastructure, utilizing the advanced capabilities of SysTools' flagship tool -- mMigrator for Active Directory. This strategic collaboration reflects the evolving technology landscape of India's financial services sector, where agility, resilience, and cybersecurity are increasingly at the heart of organizational success. For Sammaan Capital, a major player in housing finance, real estate, and investment services, modernizing and fortifying their digital foundation became essential for operational continuity, governance, and future scalability. A Complex Project with Zero Business Downtime The migration's scope extended beyond user account transfers -- it involved preserving intricate legacy configurations, user privileges, and group policy structures, while maintaining consistent access across systems and departments. Given the financial sector's stringent compliance requirements and reliance on uninterrupted digital services, the execution demanded exceptional planning, technical precision, and rapid responsiveness. Despite the challenge of transitioning a large-scale Active Directory environment, SysTools delivered a zero-disruption experience. End users continued their daily operations without performance lags, access issues, or confusion -- a testament to the solution's reliability and the team's methodical execution. Engineering Excellence: Inside the mMigrator Deployment The migration leveraged a suite of advanced features packed into SysTools mMigrator for AD, including: * sIDHistory migration for identity integrity and access continuity * User password synchronization to ensure credential consistency * Bulk user mapping and automated VPN validation, reducing manual overhead and boosting security * AI-powered pre-migration health assessments, enabling predictive failure mitigation * Delta sync and retry capabilities for seamless correction of any migration exceptions * Real-time dashboards and audit reports for stakeholder visibility and compliance tracking * DNS configuration and GPO link transfer, ensuring policy alignment across domains * Account prioritization and concurrency control, enhancing performance and minimizing overlap These capabilities ensured not only smooth execution but also provided valuable transparency and operational insight throughout the lifecycle of the migration. Strategic Leadership and Collaborative Synergy Key to the success of this migration was the active involvement of Sammaan Capital's Head IT Infra, Mr. Sanjay Gupta, whose strategic vision and unwavering commitment drove the project forward. "SysTools has proven to be a reliable partner in this critical migration project," said Mr. Gupta. "The team's technical acumen, proactive engagement, and seamless execution ensured zero disruption to our daily operations. Their dedication was evident from start to finish. What truly stood out was their leadership's presence -- consistently engaged and ready to make decisions that kept the momentum strong." This engagement highlights the evolving role of technical leaders who prioritize innovation, clarity of vision, and continuous transformation of legacy infrastructure to meet modern enterprise needs. A Shared Commitment to Excellence Prashant Dheer Gupta, Chief Revenue Officer at SysTools, offered insight into what made the partnership thrive: "This project exemplifies the power of trusted partnerships and a deep understanding of customer needs. From initial discovery sessions to final cutover, our teams operated in unison, driven by shared accountability and mutual respect. The precision, agility, and customer-first mindset that powered this success reinforces our commitment to being more than just a vendor -- we are transformation enablers." Such projects serve not only as milestones for SysTools, but also as blueprints for scalable and secure domain transitions across the financial services ecosystem. About Sammaan Capital Formerly known as Indiabulls, Sammaan Capital is one of India's most respected and innovative financial services organizations. With a diversified portfolio encompassing housing finance, real estate investments, and securities, Sammaan continues to evolve with the changing financial landscape, maintaining its dedication to customer service, operational excellence, and technological leadership. About SysTools SysTools is a pioneer in enterprise-grade data migration, security, and management tools. With a global footprint and a client base spanning diverse industries, SysTools empowers organizations to adapt to complex IT challenges with speed and precision. Known for its reliability, intuitive technology, and customer-centric approach, SysTools continues to lead the way in transforming legacy systems into future-ready digital infrastructures.
Web Release
23-07-2025
- Business
- Web Release
ManageEngine Enhances AD360 With Risk Exposure Management and Local User MFA Features to Strengthen Identity Threat Defenses
ManageEngine, a division of Zoho Corporation and a leading provider of enterprise IT management solutions, today announced the general availability of identity risk exposure management and local user MFA features in AD360, its converged identity and access management (IAM) platform. The release enables security teams to detect privilege escalation risks and secure unmanaged local accounts, two common identity attack vectors that attackers continue to exploit at scale. Identity remains the primary attack vector in modern enterprises, as shown by Verizon's 2025 Data Breach Investigations Report, which found that credential abuse was the initial access vector in 22?% of breaches. The report also highlighted widespread abuse of poorly managed local accounts and privilege paths across over 12,000 confirmed breaches. 'With this release, ManageEngine AD360 moves beyond traditional IAM by embedding identity threat defenses into core identity operations. By turning identity data into actionable security insights, we're helping customers make IAM the first line of defense, not a check box,' said Manikandan Thangaraj, vice president of ManageEngine. While most IAM tools focus on provisioning and policy enforcement, AD360 adds risk exposure mapping via attack path analysis as well as local MFA enforcement, helping enterprises close attack paths that often go undetected. This marks a key step in identity management evolving from an access control layer into an active security control. New Capabilities · Identity risk exposure management: Graph-based analysis maps lateral movement and privilege escalation paths in Active Directory (AD), automatically prioritizing risky configurations and recommending remediation steps. The graph engine models AD objects as nodes and privilege inheritance as lines, revealing multi-step attack chains in real time, with actionable suggestions that IT teams can implement to close exposed paths. · Local user MFA: This feature extends adaptive MFA to local accounts on non-domain-joined servers, DMZ assets, and test environments, thwarting credential stuffing and persistence techniques. · ML-driven access recommendations: During provisioning and access review campaigns, machine learning analyzes permission patterns and suggests adjustments to implement least privilege access, helping prevent excess entitlements. Additionally, ManageEngine has enhanced AD360's access certification module, which now includes expanded entitlements for comprehensive review coverage, and the risk assessment capabilities feature new indicators for improved identity risk monitoring across AD and Microsoft 365 environments. These enhancements are designed to streamline compliance reporting and strengthen access governance across the enterprise. The new capabilities support NIST SP?800-207 on Zero Trust architecture, align with PCI DSS?Version 4.0 Requirement 8, and facilitate SOX, HIPAA, and GDPR controls.
