{"id":5033,"date":"2020-08-26T15:41:47","date_gmt":"2020-08-26T19:41:47","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=5033"},"modified":"2020-08-26T15:41:47","modified_gmt":"2020-08-26T19:41:47","slug":"what-is-privilege-escalation-how-can-it-pose-a-threat","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/","title":{"rendered":"What is Privilege Escalation? How Can It Pose A Threat?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-4622\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg\" alt=\"What is Privilege Escalation? How Can It Pose A Threat?\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD--300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD--768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD--540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD--162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD--360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate the effects of privilege escalation?\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Privilege escalation refers to a dangerous cybersecurity exploit, which might arise from unpatched vulnerabilities, database or login misconfiguration, or simply a lapse in human judgement. Through this exploit, a user (or a hacker using their credentials) can elevate their privileges above what they might typically possess. A hacker could thus conduct a privileged access attack even if they only compromise a regular user account.\u00a0<\/span><\/p>\n<p><b><br \/>Widget not in any sidebars<br \/><\/b><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">This may seem harmless on the surface. However, escalated privileges (an example of the ever present problem of access creep) can put your business in jeopardy. After all, with power privileges, a user can perform all kinds of unauthorized actions. For example, a hacker could delete or download sensitive data, alter work processes, or install unwanted programs. Worse, if a hacker escalated a stolen accounts\u2019 privileges to an IT level, they could inflict downtime and thus costly monetary losses.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">As a side note, the usual conversation on privilege escalation focuses on vertical escalation (elevating privileges to those of a higher rank in the network). However, a horizontal move could prove devastating as well; with the right combination of privileges, hackers could achieve all sorts of malicious goals.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Obviously, malicious privilege escalation ends up a critical component in many cyber attacks. So why do so many enterprises struggle with preventing these kinds of attacks?\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Privilege Escalation Can Prove Hard to Spot<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Sometimes, privilege escalation takes advantage of a bug in the operating system. Other times, it exploits unmonitored temporary-permissions-request systems or other embedded access granting processes. Moreover, it could come from a simple misconfiguration or an unpatched hole in your security network.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Regardless, hackers take advantage of a gap in your security monitoring to elevate normal privileges. Therefore, traditional identity management tools may not detect a problem or signs of suspicious activity until it is too late.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Therefore, you need a next-generation privileged access management and identity governance and administration solution. How can they help?\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Privilege Escalation Prevention and Mitigation<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">First, you should make sure you know which users attempt to escalate their privileges and for what reasons. This may involve calling upon capabilities such as <a href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">privilege escalation monitoring<\/a> and <a href=\"https:\/\/solutionsreview.com\/identity-management\/identity-governance-and-administration-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">role management<\/a>. The former alerts your security team if a user escalates their privileges at any time, ensuring that suspicious behavior is caught immediately. Meanwhile, the latter bestows users with a set of permissions befitting their station and limits how they can escalate those privileges. Both enforce the Principle of Least Privilege, a cybersecurity concept which states that users should only possess the permissions they absolutely need to perform their jobs.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Second, you should limit the methods by which users or external actors could escalate their privileges unilaterally. This means discovering and closing off unpatched vulnerabilities and spending threat hunting time discovering misconfigurations.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Also, this means setting up automated permissions granting protocols for temporary projects that can be granted or denied in a simple, easily traceable fashion. Those permissions should also come with strict limitations on what permissions users can simply request themselves, as well as strict time limits on how long they can use them.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Finally, elevating privileges should allow any user free range throughout the enterprise. Each privilege should remain limited by the role typically needing it and that role\u2019s department. No user should have unilateral power to make sweeping changes, such as changing workflows or rewriting the IT environment. Further, even privileged users should verify their identities when accessing sensitive data via step-up authentication.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What Should You Seek Out<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Check out our <a href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">Privileged Access Management Buyer\u2019s Guide<\/a> and our <a href=\"https:\/\/solutionsreview.com\/identity-management\/identity-governance-and-administration-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">Identity Governance and Administration Buyer&#8217;s Guide<\/a> for two different perspectives on solving this challenge.\u00a0<\/span><\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate the effects of privilege escalation?\u00a0 Privilege escalation refers to a dangerous cybersecurity exploit, which might arise from unpatched vulnerabilities, database or login misconfiguration, or simply a lapse in human judgement. Through this [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":4622,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5,1],"tags":[142,125,16,1204,76,425,286,397,188,70,124,123,1528,90,25],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What is Privilege Escalation? How Can It Pose A Threat?<\/title>\n<meta name=\"description\" content=\"What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate its effects?\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/\",\"name\":\"What is Privilege Escalation? How Can It Pose A Threat?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg\",\"datePublished\":\"2020-08-26T19:41:47+00:00\",\"dateModified\":\"2020-08-26T19:41:47+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate its effects?\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg\",\"width\":800,\"height\":400,\"caption\":\"Why Identity Governance Takes on New Importance in Remote Workplaces\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What is Privilege Escalation? How Can It Pose A Threat?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is Privilege Escalation? How Can It Pose A Threat?","description":"What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate its effects?\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/","url":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/","name":"What is Privilege Escalation? How Can It Pose A Threat?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg","datePublished":"2020-08-26T19:41:47+00:00","dateModified":"2020-08-26T19:41:47+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"What is privilege escalation? How can it pose a threat to your enterprise? Which capabilities should your security team seek out to mitigate its effects?\u00a0","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/11\/Cybersecurity-Better-MOD-.jpg","width":800,"height":400,"caption":"Why Identity Governance Takes on New Importance in Remote Workplaces"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/what-is-privilege-escalation-how-can-it-pose-a-threat\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"What is Privilege Escalation? How Can It Pose A Threat?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5033"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=5033"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5033\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/4622"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=5033"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=5033"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=5033"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}