Legacy vulnerabilities persist, with Active Directory targeted by threat actors like TA459. Tenable aids global clients in cyber risk management. Ransomware exploits AD features, while tools like BloodHound pose risks. Cobalt Strike use rose in 2021, prompting improved detection in 2022.