Static Passwords Are No Longer Enough to Secure Systems
While there have been varying views about the decision to host RSA Conference 2020 in San Francisco despite the onset of Coronavirus infections, which has evolved into the COVID-19 pandemic, one thing organizers got right this year was the theme: The Human Element.
This year marks the first time since 1995 that the conference’s theme matched cyber security realities and was not solely driven by marketing hype. When it comes to breaches, all roads still lead to the human element. In fact, hackers don’t hack in anymore — they log in using weak, default, stolen, or otherwise compromised credentials. Forrester estimates that 80 percent of security breaches involve compromised privileged credentials. It seems obvious, imposing better controls over the human element should lead to significant improvements in data breach prevention.
Despite all the new technologies, strategies, and artificial intelligence being employed by security experts and threat actors alike, one thing remains constant: the human element. As humans we’re fallible — a fact that threat actors frequently exploit when launching phishing and social engineering campaigns to establish a foothold in their victim’s IT environment. Yet most organizations continue to invest the largest chunk of their security budget on protecting the network perimeter rather than focusing on security controls which can protect against the leading attack vector: privileged access abuse.
This is a big mistake. PAM has been on the Gartner Top 10 Security Projects list for the past two years for good reasons. Organizations should make privileged access management (PAM) a top priority, and here are three best practices for doing so...
Go Beyond Pa ..
Support the originator by clicking the read the rest link below.
