Case Study: State Department of Transportation achieves shutdown of Active Directory attack paths and stronger cybersecurity with Quest's SpecterOps BloodHound Enterprise

State Department of Transportation identifies and shuts down attack paths in its complex Active Directory

A U.S. state Department of Transportation (about 2,500 employees) faced growing cybersecurity risk as a long-established Active Directory became convoluted and pandemic-era retirements eroded institutional IT knowledge. The team suspected excessive, stale permissions and hidden attack paths could allow adversaries to escalate privileges, but lacked the visibility to identify and prioritize fixes, putting security, continuity and compliance at risk.

Partnering with Quest and SpecterOps BloodHound Enterprise, the DoT quickly mapped and visualized attack paths, identified choke points for remediation, and secured business buy-in to remove risky permissions. Coupled with Quest Change Auditor and Recovery Manager, the agency reduced exploitable paths, strengthened least-privilege controls, improved cyber resilience and compliance, and eased the burden on its IT staff.