SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers

Exclusive: How Semperis is tackling identity-based cyber threats in APJ region

Today

It's a simple question, but something not everyone has the answer to.

"How long can you survive as a company without access to anything?" asks Lincoln Goldsmith, Director of Channels & Alliances APJ at Semperis.

This question encapsulates the growing urgency for organisations to address identity-based cybersecurity threats, as the digital perimeter shifts and adversaries become more and more sophisticated.

Goldsmith, who has been in his current role for five months but boasts over 15 years of experience in regional technology alliances, describes Semperis as an "identity-driven cyber resilience and threat mitigation company."

Semperis focuses on protecting organisations' identity systems, particularly Active Directory (AD), which he describes as the "heart of your network."

Active Directory, used by over 90% of organisations globally, has become a prime target for hackers, Goldsmith explained.

"Previously, the focus was on endpoint security, but as investments in that area have made it harder for attackers, the threat actors have shifted to identity systems like Active Directory," he said. These identity systems, which govern user access to applications and data, have now become the new security perimeter.

And according to Goldsmith, the risks are high.

He highlighted a chilling scenario shared by a bank's credit card division, where a complete encryption of their AD would render their recovery systems inaccessible.

"The response I got was, 'Then we're in real trouble.'" This stresses the disconnect between perceived readiness and actual preparedness in many organisations.

The Disconnect in Security Perception

Goldsmith highlighted a troubling gap between how secure organisations think they are and their actual vulnerability.

"Historically, AD has been managed by infrastructure teams, while security teams focused on endpoints, networks, and access management," he explained.

This division often leaves AD security inadequately addressed, making it a weak link that attackers exploit.

A key component of Semperis' mission is bridging this gap. "We provide customers with continuous monitoring of their Active Directory systems, alerting them to potential threats," he said. Their solutions not only mitigate risks but also enable malware-free recovery within hours, a stark contrast to the weeks or months traditional methods may require.

Danger of Holidays

Semperis' recent ANZ Holiday Ransomware Report reveals a worrying trend: 69% of attacks occur during weekends, holidays, or major corporate events.

Goldsmith attributes this to reduced staffing levels during these periods.

"Threat actors know when to strike," he said. With skeleton crews and outsourced Security Operations Centres (SOCs), organisations often lack the vigilance necessary to detect and respond to threats effectively.

Moreover, attackers often lie dormant within systems, conducting reconnaissance before launching their attacks.

"This sophistication allows them to strike with maximum impact," he added. The risks are particularly severe for industries like healthcare, where compromised systems can jeopardise lives.

Why Paying Ransom is a Trap

Despite widespread advice against paying ransoms, many organisations succumb, sometimes repeatedly. Goldsmith outlined three reasons why this happens:

  • Backups often unknowingly restore malware, allowing attackers to return.
  • Paying a ransom marks a company as an "easy target" within criminal networks.
  • Organisations lack confidence in their ability to recover without paying.

"It doesn't pay to pay," Goldsmith emphasised. Instead, having robust identity system recovery processes can eliminate the need to pay ransoms. "Our solution ensures organisations can recover their systems confidently and quickly, without restoring malware," he said.

The Semperis Edge

Goldsmith is proud of Semperis' unique approach.

"We focus exclusively on identity systems like Active Directory, offering 170 threat indicators and the ability to roll back malicious changes in real-time," he explained. The company's automated recovery process reduces downtime by up to 90% compared to traditional methods.

This capability is particularly appealing as identity-based threats rise.

"We're giving customers the peace of mind to know they can recover confidently, no matter the circumstances," Goldsmith said.

Growth and Outlook

In just five months, Goldsmith has witnessed significant growth in Semperis' APJ operations.

"We've doubled our sales presence in Singapore and Australia and expanded our network of channel partners across the region," he said.

The company's ability to address critical identity security challenges resonates with customers, from financial institutions to healthcare providers.

Looking ahead, Goldsmith sees Semperis playing a pivotal role in shaping how organisations approach identity security.

"Cybersecurity cannot wax and wane; it must be steady and ever-present," he said, quoting Chris Inglis, a strategic advisor to Semperis and former US National Cyber Director.

For Goldsmith, the ultimate goal is to ensure organisations are prepared for the worst.

"Having an assumed breach mindset keeps you on your toes," he explained. "It's not about scare tactics but about being ready to face and recover from simultaneous, sophisticated attacks."

Goldsmith reiterated Semperis' commitment to empowering organisations.

"We're here to help customers protect what matters most and recover when it counts," he said.

"That's what makes this work so rewarding."

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X