From ThreatPost:
Most Targeted Attacks Exploit Privileged Accounts
I would tend to agree with this. I have seen far too many organizations who have regular users in the Local Admins group and grant Domain Admin privileges to whomever asks for them. This is par for the course in most SMB's.
Whenever possible the Principle of Least Privilege should always be used. No matter what line of business you are in only the people who actually require escalated privileges should have them. Even then the scope of that privilege should be as narrow as possible. This even applies to the C-level. No employee should be able to access anything that is not required for them to do their job.
No comments:
Post a Comment