Just like their malware bitten cousins, Linux hosts are often attacked because of poor privileged credential management. With so much of today’s IT infrastructure running on Linux, the need to win these security battles has never been more important.
privileged credential management
A distinction has to be made when it comes to how far perimeter security products go toward overall IT security. All they really do is keep out noise. In other words, perimeter security only prevents the low-skilled attacks looking for easy targets.
The GRC process is not a one-time fix, but a way of making organizations more robust and secure against a range of cyber threats that are mostly unknown to executives and their staff.
According to Symantec Research Labs, zero day exploits persist in networks for 312 days on average before being discovered. And it’s no wonder – nearly one out of three IT professionals are not confident that their IT teams could detect a cyber intrusion on their network.
What does a customer of privileged credential management technology look like? What problems is he trying to solve and why? We thought we’d answer those questions from the perspective of one of our real-world customers. Though real names are concealed, of course, here’s the story of “Steve”, a CISO at “a large North American financial institution”.
My take is that, fundamentally, social engineering almost always works. The only hope a company has against these cyber criminals is to lock up the data they are looking for so that it it is not persistently available to every employee or even those with a need to know.