"...One popular means of credential access is the use of Mimikatz, described as the “AK47 of cyber” . The OverWatch team regularly sees Mimikatz used by both targeted adversaries and pen testers..."
Quote from CrowdStrike Co-Founder, Dmitri Alperovitch.
BOTTOM LINE UP FRONT:
Risk Awareness... it's got to be a cornerstone of your Attack Prevention Strategy... where can you get a "... Cyber Security Early Warning System?...".
Since I am not attempting to sell you anything, I'll tell you the truth... you need a stellar DNS Security Tool as the Crown Jewel of your Attack Prevention Strategy. There are many players, mostly Johnny come Lately's on the far side of the Technology Adoption Curve, fighting over the crumbs in the marketplace.
One of the only Companies we recommend to our customers is "ThreatSTOP' from Carlsbad CA. They have the defacto competitive advantage, the creator of DNS, Dr. Paul Mockapetris is their Chief Scientist and has been on their team for over seventeen years. Hard to beat that!
SOME EXCELLENT REFERENCES on MIMIKATZ BASED CREDENTIAL HARVESTING
Great walk thru of a Mimikatz Credential Harvesting Attack
Great non-technical backgrounder...