BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Looking At Security From The Inside Out With Least Privilege

Posted July 5, 2011    Peter McCalister

Many organizations have invested heavily in perimeter security, helping to protect against hackers and outside threats, but very few have addressed the weak link in the security chain. Users with excessive privileges are that weak link, and allowing users to make security decisions can have disastrous consequences.

Over the past several months, we have seen news articles describing more and more malware that is posing as legitimate software updates and anti-virus software. Once installed by the end user, the malware will infect a machine and then attempt to extort money from the end user to purchase the bogus fix for the infection. The main goal of the malware is to coerce users to give up their credit card details for the fix to remove the problem application. Recently, an article from PCWorld highlighted one such malware attack that leaves a machine running a Firefox browser potentially vulnerable to this malware.

In the comments section, a user emphatically discusses the importance to run as a standard user, not an administrator. Most malware of this type requires administrator privileges to install and get its hooks so deeply into the operating system. If more organizations removed administrator privileges from users, and if more home users ran without administrator privileges for day to day use, malware would have a much harder time infiltrating a system.

Leave a Reply

Additional articles

beyond-trust

PowerBroker for Windows – Most Innovative IAM Solution by Cyber Defense Magazine

Posted April 21, 2015    Scott Lang

PowerBroker for Windows has been selected as a winner by the 2015 Cyber Defense Magazine Awards Program in the category of “Most Innovative Identity and Access Management Solution”.

Tags:
, , ,
pbps-customer-campaign-image

Are you changing your passwords as often as the weather changes?

Posted April 20, 2015    Scott Lang

There is one thing that should change more frequently than the weather: Your privileged passwords. Why? If you’re like more than 25% of companies out there, then your current IT environment contains unmanaged accounts putting you at risk of data breaches and compliance violations, and you don’t have a process to control those accounts.

Tags:
, , , ,
webinar1

On Demand Webinar: Advanced Windows Tracing

Posted April 17, 2015    BeyondTrust Software

Webinar: Security MVP, Paula Januszkiewicz, shows Windows administrators how to be more aware of what happens whenever somebody does something within the system.

Tags:
, ,