BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Transgression Tuesday: Ways to Avoid a Data Breach

Posted June 28, 2011    Peter McCalister

We’ve talked a lot about change, and how it’s one of the only things in the IT world that remains the same. Another constant is human nature- specifically our reactions when we do something we shouldn’t. People have this funny tendency to hide their wrong-doings: sweep them under a proverbial rug. The problem is that those rugs can turn into uncontrollable problems, and in the IT world mean the dreaded “D” word: Data Breach. Hiding bad habits and improper actions never cloak the issue, but allows the problem to compound until one day it becomes a raging war.

That being said, let’s shake out a couple rugs and bring to light some bad habits that could make your enterprise the next Sony. We’ll start with a couple- I’ve often found that when one bad habit is being practiced, others aren’t far behind. The last thing we want is to overwhelm you, so the two IT sins we’re bringing to your attention today are as follows:

1. Allowing all users to run with administrator rights/root credentials. Allowing everyone access to all IT resources only leaves your sensitive data in danger. Whether its accidental, inadvertent, or intentional, privileges get misused when your company’s assets are available to all.

2. Not running regular inventory of which users have what rights. With changing job descriptions, new hires, lay-offs, and the changing of projects, user privileges change frequently. It is therefore crucial that you analyze privileged identities on a frequent basis, as well. Think about how different Gucci’s story would have been if they had done this- their previous employee wouldn’t have been able to access the information he leaked.

Do you have these habits going on in your enterprise. Now is the time to fix them, before you have to deal with the ramifications of a data breach. Stay tuned for future Transgression Tuesdays- we’ll keep you up to date on warning signs to look out for and traps to avoid.

Leave a Reply

Additional articles

VMware Hardening Guidelines-img3

How to Audit VMware ESX and ESXi Servers Against the VMware Hardening Guidelines with Retina CS

Posted February 27, 2015    BeyondTrust Research Team

Retina CS Enterprise Vulnerability Management has included advanced VMware auditing capabilities for some time, including virtual machine discovery and scanning through a cloud connection, plus the ability to scan ESX and ESXi hosts using SSH. However, in response to recent security concerns associated with SSH, VMware has disabled SSH by default in its more recent…

Tags:
, , , ,
dave-shackleford-headshot

Privileged Passwords: The Bane of Security Professionals Everywhere

Posted February 19, 2015    Dave Shackleford

Passwords have been with us since ancient times. Known as “watchwords”, ancient Roman military guards would pass a wooden tablet with a daily secret word engraved from one shift to the next, with each guard position marking the tablet to indicate it had been received. The military has been using passwords, counter-passwords, and even sound…

Tags:
, , ,
Privileged Account Management Process

In Vulnerability Management, Process is King

Posted February 18, 2015    Morey Haber

You have a vulnerability scanner, but where’s your process? Most organizations are rightly concerned about possible vulnerabilities in their systems, applications, networked devices, and other digital assets and infrastructure components. Identifying vulnerabilities is indeed important, and most security professionals have some kind of scanning solution in place. But what is most essential to understand is…

Tags:
, , , , ,