{"id":5184,"date":"2020-12-28T10:00:08","date_gmt":"2020-12-28T14:00:08","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=5184"},"modified":"2020-12-21T17:04:39","modified_gmt":"2020-12-21T21:04:39","slug":"locking-down-privilege-escalation-in-2021-the-key-to-security","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/","title":{"rendered":"Locking Down Privilege Escalation in 2021: The Key to Security?"},"content":{"rendered":"

\"Locking<\/p>\n

Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0<\/span><\/p>\n

By now, you most likely heard of the SolarWinds Breach. It represents one of the most devastating breaches on the U.S. government, easily becoming the Breach of 2020. Further, it raises new questions moving forward about the future of cybersecurity, cyber-warfare, and business workflows online.\u00a0<\/span><\/p>\n

As we dove deeper into the SolarWinds Breach, the more questions we found. One of the most interesting and the most critical we found involves privilege escalation in 2021. As part of the SolarWinds breach, the hackers responsible initially granted themselves powerful permissions in the SolarWinds Orion software.\u00a0<\/span><\/p>\n

These privileges, once gained, enabled the hackers to establish their nefarious backdoors and lateral movements, causing the true damage of the breach. Yet the foundation of the attack builds on privilege escalation.\u00a0<\/span><\/p>\n

Here\u2019s why privilege escalation could devastate your business in 2021, and why locking privileges down<\/a> matters now more than ever.\u00a0<\/span><\/p>\n
Widget not in any sidebars
\n

What is Privilege Escalation in 2021?\u00a0<\/b><\/h2>\n

Privilege escalation is a nefarious action that both external and internal actos could undertake. As you probably already know, every actor on your network and IT environment possesses certain permissions. These permissions enable access to certain databases, applications, and IT architectural tools (the ability to post on the company blog, for instance).\u00a0<\/span><\/p>\n

Ideally, your enterprise should follow the Principle of Least Privilege. More of a guideline than an actual capability, the Principle of Least Privilege states that each account and user should only possess the privileges they absolutely need to perform their roles. That\u2019s it.\u00a0<\/span><\/p>\n

However, while enterprises often begin by following the principle of Least Privilege, they often fail with maintaining it and following through. Sometimes, the necessity of temporary projects leads to users acquiring more permissions than they need to fulfill them; frequently, enterprise IT security teams forget to revoke those temporary privileges after the fact.\u00a0<\/span><\/p>\n

Additionally, as employees take on new roles or move into lateral positions in the business, IT security teams can lose track of who has what privileges.\u00a0<\/span><\/p>\n

All of these are examples of privilege escalation. Yet without the right kinds of management tools and capabilities in place, users can raise their own privileges without alerting the security team. This means that if hackers infiltrate the network, they could do the damage inflicted on Solarwinds…and then some.\u00a0<\/span><\/p>\n

How to Lock Down Privilege Escalation<\/b><\/h3>\n

One of the first things your enterprise needs to do in 2021 is to ensure privilege escalation can only occur in controlled and monitored ways. Deploying privileged access management can certainly help secure your privileged users (although 2021 may be the year to consider who has privileges and why). However, deploying identity governance and administration (IGA) solutions can help prevent privilege escalation in 2021.\u00a0<\/span><\/p>\n

IGA solutions keep temporary privileges temporary by implementing automatic timers on all project-based assigned privileges; this helps IT security teams reduce their workloads and keep access controlled. Further, IGA solutions can lock permissions to certain roles through role management, reducing the possibility of malicious privilege escalation by external or internal actors.\u00a0<\/span><\/p>\n

Finally, with IGA you can revoke privileges from users, which helps manage their privileges if they somehow exceed their roles. Learn all you need to know in our IGA Buyer\u2019s Guide<\/a>.\u00a0<\/span><\/p>\n
Widget not in any sidebars
\n","protected":false},"excerpt":{"rendered":"

Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0 By now, you most likely heard of the SolarWinds Breach. It represents one of the most devastating breaches on the U.S. government, easily becoming the Breach of 2020. Further, it raises new questions moving forward about the future of cybersecurity, cyber-warfare, and business workflows […]<\/p>\n","protected":false},"author":41,"featured_media":4581,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5,1],"tags":[1573,142,125,16,76,425,286,397,188,1528],"acf":[],"yoast_head":"\nLocking Down Privilege Escalation in 2021: The Key to Security?<\/title>\n<meta name=\"description\" content=\"Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0We take a look at this fundamental isssue and how to overcome it.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/\",\"name\":\"Locking Down Privilege Escalation in 2021: The Key to Security?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg\",\"datePublished\":\"2020-12-28T14:00:08+00:00\",\"dateModified\":\"2020-12-21T21:04:39+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0We take a look at this fundamental isssue and how to overcome it.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"CVS Database Containing Over 1 Billion Records Exposed\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Locking Down Privilege Escalation in 2021: The Key to Security?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, & Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer's Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Locking Down Privilege Escalation in 2021: The Key to Security?","description":"Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0We take a look at this fundamental isssue and how to overcome it.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/","url":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/","name":"Locking Down Privilege Escalation in 2021: The Key to Security?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg","datePublished":"2020-12-28T14:00:08+00:00","dateModified":"2020-12-21T21:04:39+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Is locking down privilege escalation in 2021 the key to cybersecurity?\u00a0We take a look at this fundamental isssue and how to overcome it.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2019\/09\/Hacker-New-Image-Mod.jpg","width":800,"height":400,"caption":"CVS Database Containing Over 1 Billion Records Exposed"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/locking-down-privilege-escalation-in-2021-the-key-to-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Locking Down Privilege Escalation in 2021: The Key to Security?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, & Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer's Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5184"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=5184"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/5184\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/4581"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=5184"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=5184"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=5184"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}