Cybersecurity Tip of The Day #2

Limit privileged accounts in your domain, then protect them with enhanced controls and technologies

Studies and surveys have shown that nearly 70-80% of data breaches and malicious attacks within organizations involve some form of privileged access by the attacker(s). There are several ways to address privileged accounts; however, one of the first steps should be a thorough evaluation of all accounts with elevated permissions on your domain and a strong effort to significantly consolidate them.

After reducing the number of privileged accounts on your network, protect what is remaining through the implementation of a least-privilege concept and enhanced security controls. An ideal state may be the enforcement of rotating new passwords and two-factor authentication to check out an account with elevated privileges. Don't leave yourself exposed while waiting for this possibility, however. Simple and cost effective interim steps can be taken, such as increasing the password complexity and rules on privileged accounts and publishing a policy requiring all owners of these accounts to limit their use to only when required.