In the previous sections, we learned about features that were introduced by Microsoft to prevent pass-the-hash attacks. These types of attacks are still used by attackers in identity infrastructure attacks, so it's important to prevent these attacks whenever and wherever possible. But is this going to secure our identity infrastructures 100%? Software vendors, including Microsoft, release new products, features, security updates, and patches to protect systems, infrastructures, and workloads from various types of threats.
All these companies spend lots of money annually on research and development to protect their software, solutions, and customers from emerging threats. However, we still see constant news about identity infrastructure security breaches. As I see it, this is not a problem with technology. The myth of zero-day attacks is no longer...
