Folks,
In light of current geopolitical events, I'd like to ask a very simple question, one that the entire world ought to consider, posed above.
To the wise, I needn't say more (, so I won't.)
Thanks,
Sanjay
The official blog of Paramount Defenses, the world's #1 cyber security company in Privileged Access Audit and Active Directory Security.
Folks,
In light of current geopolitical events, I'd like to ask a very simple question, one that the entire world ought to consider, posed above.
To the wise, I needn't say more (, so I won't.)
Thanks,
Sanjay
Folks,
I hope this finds you doing well. Today's post will be short, because we strive not to comment on any geopolitical events, but out of an abundance of caution, I felt the need to state that which may/should already be obvious to the entire world.
It is a well-known fact that Israel, like many countries in the western world, is a highly digital nation, wherein thousands of its business and government organizations across all sectors e.g. financial, transport, medical, government, defense etc., have and thus operate a digital IT infrastructure.
For the last two decades, for the most part, most of these organizations have been operating on trustworthy, autonomously (independently) operable "on-premises" Microsoft technologies, primarily, Active Directory, Exchange and Office, which enabled and empowered these organizations to operate securely and autonomously without having to rely on anyone else.
However, over the past few years, under the guise of "modernization", Microsoft has been spending billions of dollars to convince/persuade organizations to transition over to its new subscription-based Cloud offerings, Azure and 365 (Office).
As a result, in all likelihood, today thousands of business and government organizations in Israel are now likely using, i.e. relying on, Microsoft 365 and Microsoft Azure for likely all organizational communications, access, mgmt and security.
To put it in layman terms for the world's populace, today, in all likelihood, communication, productivity and security at thousands of business and government organizations in Israel, today depends on Microsoft Azure and Microsoft 365.
In light of this elemental fact, it would appear that a successful attack on Microsoft Corporation's various Cloud Services could have a disruptive impact on the digital foundation of thousands of business and government organizations in Israel.
For instance, hypothetically speaking, a cyber attack that could result in a successful denial-of-service (DoS) attack on just Microsoft 365 services to thousands of Israeli organizations, could impact many mission-critical services across Israel.
In light of the above, if as is being widely reported, were Iran to launch a strike on Israel, it seems possible that it could try to also launch a cyber attack on Microsoft prior to doing so, to try and disrupt essential services/comms within Israel.
It must be mentioned that Microsoft is a successful American Corporation and likely has many cyber defenses in place. However, it must be noted that, unlike script-kiddies or lone-wolfs, when a nation state decides to wage a cyber attack, it has the financial and operational resources of an entire nation at its disposal, and you have to ask yourself whether the defenses of what is basically a for-profit business, may be adequate against a proficient, nation-state cyber adversary.
It must also be stated that there are many Israeli cyber security companies today, including several prominent publicly-held American Corporations, and there are many Israelis working in cyber security within Microsoft, and yet, logically speaking, no cyber security company can protect an organization from the impact of a successful denial-of-service attack launched against Microsoft 365 i.e. I mean, if there is no service, there is no service, period. (All email, access etc. comes to a halt.)
That's all I wanted to say today. This is all public knowledge, but I felt the need to state it out of an abundance of caution.
Sincerely,
Sanjay.
PS: Please note that the perspective shared above is not unique to Israel. Today, thousands of organizations worldwide have basically taken on a mission-critical dependency on Microsoft Cloud Services, having relinquished operational autonomy for a semblance of better security, and a formidable cyberattack on Microsoft could impact all of them.
Folks,
At Paramount Defenses, we care deeply about the foundational cyber security of all organizations worldwide, and we remain committed to helping organizations secure their foundational Active Directory deployments.
Towards that objective, it is my privilege to announce that today we are introducing a free service to help all organizations worldwide instantly obtain an accurate assessment of the state of privileged access in their foundational Active Directory.
Without further adieu, I'd like to introduce our 100% FREE Active Directory Privileged Access Assessment Service.
Unique and 100% Free
This service is 100% free, with no strings attached, and no obligation of any sort, and is intended to help organizations determine exactly how many individuals possess privileged access in their foundational Active Directory domains.
The most important and novel aspect of this service is that it is unlike any other in the world, because it is the only service that can deliver such paramount insights based on the accurate determination of Active Directory Effective Permissions.
Accurate and Instant Insights
This unique service is powered by our unique, unrivaled Microsoft-endorsed Gold Finger software tooling, which uniquely enables us to instantly deliver accurate Active Directory privileged access insights to organizations worldwide.
In less than an hour, every organization that wants to know, can now have the following determinations, for free -
These are merely a few of the many Active Directory privileged access insights that we can instantly deliver to any and every organization in the world. We can actually answer just about any question related to effective access in any AD, so if your organization has any specific/niche needs, just let us know, and we'll be happy to help you figure it out in minutes.
Of course, if you want to know the simple stuff like how many users have any kind of permissions in Active Directory, how many users own objects in Active Directory etc., that's 100 times easier to figure out, and we'll do that as well, all for free.
A Limited Opportunity
At Paramount Defenses, we care deeply about the foundational cyber security of all organizations worldwide, and are happy to be able to offer this unique and valuable service free of cost to help organizations across the world.
Today, thousands of organizations in over a hundred and seventy countries worldwide operate on Active Directory (AD), and that makes it difficult for us to be able to offer this service to every single organization that may wish to avail of it.
We have thus decided to offer this service to the first one thousand (1000) organizations that request it, from each country, at our discretion, and capacity permitting, we will strive to accommodate all additional requests on a best-efforts basis.
How to Sign-up
Organizations that wish to avail of this unique, free service can do by submitting their request on the service page here.
You can also find a list of helpful frequently asked questions (FAQ) related to the service at the bottom of the page.
Finally, to help you get some perspective, you may want to consider the above, in light of what I've shared here.
That wraps up the little announcement that we wanted to make today. Thank you very much.
Best wishes,
Sanjay
Folks,
Hello. I hope this finds you doing well. Let me begin by saying that we are slated to make a small announcement today or tomorrow, and this post is NOT that announcement. That should likely follow in a few hours, or tomorrow.
Our Cloud/Modernization Strategy - We Impose ZERO TRUST in the Cloud
In this post, I wanted to take a few moments to share our Cloud/Modernization strategy.
There appears to be a narrative in the world, likely funded by the world's many Cloud Computing companies, that every organization ought to consider and implement a Cloud/Modernization strategy, or risk getting left technologically behind.
At the core of this narrative appears to be a strong (but inaccurate) message that the Cloud is inherently more trustworthy and cost-effective to use than the traditional computing systems that most of the world's organizations operate on today.
A closer look reveals that such narratives/their core principles seem to emanate from and be delivered to a global audience via guidance from government organizations tasked with promoting "American innovation and industrial competitiveness", published in the form of high-level guidance, which American cloud computing companies seize the opportunity to quote.
It also seems that such narratives/initiatives seem to provide certain vendors of operating systems and hosting providers (, mostly American Corporations,) a golden opportunity to additionally have their entire global organizational customer base now also pay them, on a recurring basis, for a host of new computing and cyber security services built, marketed and labelled as the 'Cloud.'
To further worsen the situation, it appears that some of these vendors seem to invest billions of dollars in sophisticated marketing strategies, to not only get some of these initiatives to become part of American Government policy, but also to convince/persuade the "C-Suite" at their global organizational customer base, to transition assets over to their Cloud.
Little do these hapless organizational customers from across the world seem to realize that whilst embracing these new services marketed as the Cloud may sound rosy and secure, in reality, it requires (involves) them to basically relinquish* operational control (autonomy) and privacy, and take on an eternal dependency on an external third-party.
* The moment an organization transitions its primary identities into the Cloud is the moment it loses its operational autonomy.
The world's organizations and their shareholders may want to contrast this with the undeniable fact that the alternative, i.e. operating on traditional computing systems upon which the world has been successfully operating for years now, does NOT require organizations to relinquish their operational autonomy, privacy or security, i.e. give up their sovereignty.
It appears that this paramount fact, one that directly impacts the security, autonomy and sovereignty of every organization, and in the case of governments, also impacts national sovereignty and national security, is astonishingly overlooked!
The Cloud is a No-Starter for Us
It likely cannot be stated any simpler than someone already has - "The Cloud is just someone else's computer."
The world ought to understand, in no uncertain terms, that the moment you put your assets onto someone else's computer, they are no longer, either private OR solely yours. They can be accessed by, copied, modified and destroyed by ANYONE who has ADMINISTRATIVE or sufficient access to that computer, or anyone who could gain UNAUTHORIZED access to it, including 1000s of the Cloud provider's personnel (, whose identities/computers too could be compromised and misused.)
Further, because these Cloud providers are starting to be used by thousands of organizations, they themselves are now MASSIVE targets for highly proficient, and often state-funded adversaries, and their compromise could easily cascade.
Finally, when you use an Identity Provider (IDP), you must understand that that IDP now knows exactly who you are, where you are, what you are logging on to, and what you are accessing. In other words, you have no privacy left. None.
For starters, for that reason to begin with, the Cloud is a no-starter for us.
Concluding Thoughts
My time is very valuable so I will not spend more time on this. Time permitting, I may pen another blog post in the future with sufficient (concrete) technical details, but for now, this is all I wish to say, and have time to say regarding the Cloud.
Let me be very clear - we are perfectly capable of offering the most technologically advanced services in the Cloud as well, but since it is conceptually a no-starter for us, we do not invest time or resources to build and offer Cloud based services.
In short, at Paramount Defenses, we literally impose zero trust in the Cloud, and since we know how to operate a secure IT environment, we do NOT rely on anyone i.e. any Cloud provider to operate our internal organizational IT infrastructure.
As a result, we fully retain our operational autonomy, organizational privacy and cyber security.
That's all I have to say about it. As a well-wisher, I encourage the entire world to consider the perspective shared above.
Thanks,
Sanjay
We use cookies to give you the best online experience. Please let us know if you accept these cookies.
Some cookies are required to make this website work and cannot be turned off. For non-essential cookies, we must obtain your consent. Please make your choices below, you can update them at any time by visiting our cookie page.
Strictly Necessary
These cookies are needed to run our website, to keep it secure, and to obey any regulations that apply to us.
Always On
Functional
These cookies control your settings within the site, such as accessibility and manage your credential in our ecommerce areas.
Always On
Performance
These cookies tell us how our customers use our website We study and profule this data to help us improve our products and performance.
Off
Marketing
These cookies help us decide which products, services and offers may be relevant for you. We use this data to tailor the ads you see on our own and other websites and apps.
Off