Active Directory stories

Cyber attacks on industrial systems in 2025 shifted from quiet spying to coordinated operations aiming to disrupt critical infrastructure.

ExtraHop sharpens its network detection tools with deeper identity and Kubernetes insight to power more reliable agentic SOC automation.

Arctic Wolf says attackers are actively exploiting a critical BeyondTrust vulnerability in self-hosted remote access systems.

BlueCat launches Horizon SaaS to unify DNS, DHCP, IPAM, security and observability, promising AI-assisted, self-healing intelligent networks.

SpecterOps has launched BloodHound Scentry, a managed identity risk service to find and remediate attack paths across complex environments.

Cayosoft and XMS Solutions will overhaul identity systems for a US war agency, bolstering Zero Trust security across hybrid Microsoft environments.

Semperis has bought MightyID to extend its identity resilience platform with Okta and Ping backup and recovery across hybrid environments.

Routine admin tools, not exotic exploits, let attackers race across networks, compromising over half of systems in under an hour.

Infostealer attacks are increasingly compromising enterprise SSO, with Flare warning 16% of late-2025 infections exposed identity access.

Lateral movement now eclipses zero-day exploits as the top cyber risk, Zero Networks warns, with attacks able to hit 60% of systems in an hour.

Cohesity has expanded its Identity Resilience tools to detect, block and rapidly undo attacks on hybrid Active Directory and Entra ID.

CoreView launches Tenant Resilience and Tenant Management to tackle rising Microsoft 365 tenant-level attacks and configuration risks.

Recast and System Centre Dudes team up to offer free, community-built Intune tools and webinars led by Microsoft MVPs worldwide.

Cybersecurity in 2026 pivots from building higher walls to one core question: how fast can organisations recover when attacks inevitably hit?.

CrowdStrike will acquire identity security specialist SGNL to add continuous, AI-ready access enforcement across human and machine users.

Commvault predicts ‘ResOps’ will unite security, identity and recovery by 2026 as AI and identity-based attacks transform cyber risk.

Cyber chiefs warn a widening gap between cyber plans and real resilience as boards eye 2026 with only marginal spend increases.

Commvault launched its Unity platform to simplify and secure data recovery across hybrid environments, offering unified cyber resilience and faster recovery times.

Ransomware attacks in Australia and New Zealand spike during holidays and weekends, exploiting reduced cybersecurity staffing to disrupt organisations.

Commvault CEO Sanjay Mirchandani used his SHIFT keynote in New York to argue that enterprises must prepare for a new era of AI-driven resilience.