Access management outfit BeyondTrust has urged organizations to remove admin rights from users, arguing that doing so would have at least mitigated more than 100 vulnerabilities in Microsoft products last year.
Restricting privileges is infosec 101: as Microsoft explains here, it limits the amount of damage or change an individual can do, which is especially thankful when their account is hijacked. However, there are businesses and groups out there that are, for instance, pressured internally into handing people admin rights to keep folks working with awkward software deployments.
BeyondTrust – which has a clear commercial interest here as it sells tools that manage privileged access – gives an example of an overworked IT support desk granting users long-term special rights to perform tasks to stop them filing new tickets each time they need to a ..
Support the originator by clicking the read the rest link below.
