Aorato has released Active Directory Vulnerability Disclosure: Weak encryption enables Attacker to change a victims password without being logged report. With 95% of Fortune 500 companies deploying Active Directory, the potential for this particular vulnerability to cause harm and theft is high. The attacker can perform this activity unbeknownst to event logs, making log-based SIEMs and Big Data Security Analytics useless against these kinds of advanced attacks. Despite current security protocols, logged events miss the vital indication of an identity theft attack.”]