Semperis launched Purple Knight Post-Breach, a channel-only edition of Semperis’ free Active Directory (AD) security assessment tool to assist service providers in attack mitigation and recovery for their customers following an AD-related cyber disaster. Semperis integrates critical enterprise directory services at every step of the cyber kill chain, reducing recovery time for security teams in hybrid and multi-cloud environments.

Exploiting identity systems such as AD and Azure AD, which are used extensively worldwide, is a primary method for attackers to gain privileged access and infiltrate target networks. Purple Knight Post-Breach assists organizations in determining whether an attack was underway at the time an AD backup was taken. Purple Knight Post-Breach assists response teams in identifying and remediating vulnerabilities after an AD recovery before returning the recovered environment to production.

Marty Momdjian, Healthcare Solutions Advisor at Sirius Healthcare stated, “The faster we can accurately assess the current intrusion, the faster we can eradicate the threat and restore system access. What would take us hours or sometimes days, Purple Knight Post-Breach can do in minutes, giving us another crucial tool in our incident response toolbelt by Semperis.”

Semperis collaborates with some of the world’s largest cybersecurity service providers to respond to AD-based cyberattacks for organizations. In collaboration with Sirius Healthcare, Semperis recently launched a ransomware task force to improve the cybersecurity posture and resilience of hospitals, pharmaceutical manufacturers, insurers, and other healthcare companies.

Semperis also collaborated with one of the world’s top three consulting firms to assist a large multinational insurance company in recovering from a cyberattack. Purple Knight Post-Breach reduces downtime for customers and quickly restores business operations to a known-secure state, preventing follow-on attacks by accelerating AD attack forensics.

Dave Evans, VP of Global Channels and Alliances commented, “In the aftermath of a cyber disaster, finding the source of the attack is a tedious undertaking that requires sifting through masses of data—all while adversaries could be preparing a follow-on assault. Purple Knight Post-Breach speeds the post-attack forensics process for our partners so they can help customers mitigate damage and fully recover from AD-related attacks.”

Read more articles:

API Security Should Be Your Priority in 2022