One More Day for OnDemand Cybersecurity Training Special Offer - Your Choice, Learn More

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Legacy Authentication and Password Spray, Understanding and Stopping Attackers Favorite TTPs in Azure AD

  • Monday, August 19, 2019 at 1:00 PM EDT (2019-08-19 17:00:00 UTC)
  • Mark Morowczynski, Ramiro Calderon

You can now attend the webcast using your mobile device!

  

Overview

One of attackers' favorite techniques today is password spraying. And it should be: in August 2018, 200,000 accounts were compromised using this. Nearly all password spray attacks are targeting legacy authentication protocols. The good news there are several steps you can take to prevent this type of attack. In this session we will focus on what legacy authentication is, how to look for it in your environment and what you need to do to prevent it from compromising your accounts.

Speaker Bios

Mark Morowczynski

Mark is a Principal Program Manager on the customer success team in the Microsoft Identity division . He spends most of his time working with customers on their deployments of Azure Active Directory . Previously he was Premier Field Engineer supporting Active Directory, Active Directory Federation Services and Windows Client performance . He was also one of the founders of the AskPFEPlat blog . Hes spoken at various industry events such as Microsoft Ignite, Microsoft Inspire, Microsoft Ready, Microsoft MVP Summits, The Cloud Identity Summit, SANs Security Summits and TechMentor . He can be frequently found on Twitter as @markmorow arguing about baseball and making sometimes-funny gifs .


Ramiro Calderon

Ramiro Calderon is a Principal Program Manager in the Azure AD product group . He is part of the customer success team and his role as an architect is to accelerate the adoption of cloud services across enterprise customers . This involves establishing a long-term advisory relationship with customers; working with the engineering team throughout the whole engineering cycle; training customers and partners with identity products and services; and producing reusable intellectual property . Ramiro has more than 10 years of experience in the identity space in Microsoft, shipping multiple releases of Active Directory Federation Services, active directory, and Azure AD Connect Health .

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.