5 'Deadly Sins' Increase the Risk of a Data Breach

 
 
By Eileen McCooey  |  Posted 2017-10-20 Email
 
 
 
 
 
 
 
 
 
  • Previous
    5 'Deadly Sins' Increase the Risk of a Data Breach
    Next

    5 'Deadly Sins' Increase the Risk of a Data Breach

    Many businesses fail to prevent the abuse or misuse of privileged credentials, and this lax behavior costs the typical enterprise nearly $4 million a year.
 

Common-sense security measures are vital to preventing data breaches related to privileged access management, yet many enterprises aren't diligent about enforcing basic practices. A recent study by BeyondTrust, "Five Deadly Sins of Privileged Access Management," reports that in many organizations, users play fast and loose with passwords; users with admin privileges are running amok; unpatched vulnerabilities pose enormous risks; Linux/Unix servers aren't protected; and cloud apps aren't secured. These five "deadly sins" cost the typical enterprise surveyed nearly $4 million annually, as a result of lost productivity, costs to mitigate incidents, and legal or compliance issues. Morey Haber, vice president of technology for BeyondTrust, urged security teams to get control of enterprise credentials by eliminating sharing and getting control over embedded credentials hardcoded in applications and service accounts. "It's imperative to remove local admin rights from all Windows and Mac end users," he added, noting that 94 percent of Microsoft system vulnerabilities in 2016 can be attributed to users with admin rights. "Rather than elevating the entire user on a machine, elevate the user's access to specific applications to perform whatever action is necessary as part of his or her role." The BeyondTrust study is based on a survey of 474 IT professionals from around the world who are involved in privileged access management.

 
 
 
 
 
Eileen McCooey, a New York-based consultant and Baseline contributor, has extensive experience covering a wide range of business and consumer topics, including digital technologies and consumer electronics of all kinds.
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters