Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.


Privileged Account Management


Stopping the Skeleton Key Trojan

Posted June 29, 2015    Robert Auch

Earlier this year Dell’s SecureWorks published an analysis of a malware they named “Skeleton Key”. This malware bypasses authentication for Active Directory users who have single-factor (password only) authentication. The “Skeleton Key” attack as documented by the SecureWorks CTU relies on several critical parts.

, , , , ,

Privileged Account Management – Another AH-HA in Cyber Security

Posted June 25, 2015    Nigel Hedges

I strongly believe that the Top 4 mitigation strategies don’t just simply apply to Australian organizations, it should be a global realization, a worldwide “ah ha!” for those still not quite understanding the importance here. Here’s a refresher (or intro) on the Top 4 mitigation strategies. Read on…

, ,

PowerBroker Management Suite 4.0: New Web Console and Deeper Auditing, including for NetApp Filers

Posted June 22, 2015    Rod Simmons

BeyondTrust has released version 4.0 of PowerBroker Management Suite, our solution for centralized real-time change auditing for Active Directory, File Servers, Exchange, and SQL, and recovery of Active Directory objects or attributes. This new release features some exciting enhancements – especially a new web console, deeper GPO auditing, and the addition of NetApp auditing.

, , ,

On Demand Webinar: Secure Local Window Admins with LAPS

Posted June 19, 2015    BeyondTrust Software

Windows & IT Security Expert, Russell Smith shows you how to configure Microsoft’s free Local Administrator Password Solution (LAPS) tool to secure local administrator accounts. Organizations often use the same password for local administrator accounts across all devices, leaving them vulnerable to Pass-the-Hash (PtH) attacks, which can result in sensitive domain credentials being exposed. LAPS automates regular changes of local administrator passwords, and securely stores passwords in Active Directory (AD).

, , ,

Are you a Data Privacy Hypocrite?

Posted June 18, 2015    Morey Haber

As technology users, we choose to share what we share with the world. However, do you know that there is information being collected on some devices that you might not even know about? Unless you read all the terms of service, you likely don’t know.

, ,

On Demand Webinar: Techniques for Extracting Juicy Information (like Passwords!)

Posted June 10, 2015    BeyondTrust Software

Paula Januszkiewicz explains and demos the techniques for memory acquisition, secrets to obtaining the juicy data, and how to find someone’s memory dump!


BeyondTrust Acknowledged as a Representative Vendor in Gartner’s Market Guide for Privileged Access Management

Posted June 9, 2015    Scott Lang

Gartner PAM market report 2015: BeyondTrust is among the leaders in the privileged access management market as one of three vendors to offer complete integrated solutions in the four product categories which define the PAM market.

, ,

PowerBroker for Unix and Linux 9.0: Advanced Auditing, Database and API Capabilities

Posted June 8, 2015    Paul Harper

PowerBroker for Unix & Linux v9 is now available. This is our solution for efficiently delegating Unix and Linux privileges and authorization without disclosing passwords for root or other accounts. This new release features some exciting enhancements – especially around enhanced audit, database, and API capabilities.


On Demand Webinar: Managing least privilege on multiple Linux UNIX systems

Posted June 4, 2015    BeyondTrust Software

In this webinar, with Security Expert Randy Franklin Smith, you will learn how to define common policies for all systems, how to lump similar systems into groups and assign additional specific sudo rules to those groups of systems and even how to implement exception policies for individual systems. Sudo allows you to do all of this in a single sudoers file shared between all systems.

, , ,

Big Surprise: Cost of Data Breaches Up; Are you Doing the *Right* Things to Mitigate the Costs?

Posted May 28, 2015    Scott Lang

Ponemon Institute Cost of Data Breach Study – costs are going up – to the tune of a 23% increase in total costs of data breaches, and a 12% increase in per-record cost since 2013. Are you doing the right things to mitigate costs?

, ,