Domain accounts are part of almost every Windows enterprise environment, and they're a core piece of Identity and Access Management (IAM). Adversaries that get control of domain accounts can move through an environment largely undetected, a wolf in sheep's clothing. Start detecting this covert behavior and begin stopping it in its tracks today.
Active Directory and its associated domain accounts are a regular feature in any enterprise Windows environment. They are a core part of the IAM strategy at these organizations. In fact, a properly secured domain environment can go a long way to thwarting adversary actions. Imagine if one of these adversaries were able to get their hands on a few legitimate domain accounts. Their actions on objective suddenly look a lot like regular user traffic and their ability to accomplish multiple tactics expands dramatically.
Get the hands-on skills you need to detect and mitigate this attack in Cybrary's MITRE ATT&CK Framework courses aligned to the tactics and techniques used by financially motivated threat group FIN7. Prevent adversaries from accomplishing the tactics of Defense Evasion, Persistence, Privilege Escalation, and Initial Access in your environment now.
Complete this entire course to earn a Domain Accounts Certificate of Completion