News flash: accounts with higher levels of IT credentials are more valuable targets than other accounts. Diversify and protect accordingly.
Summary article by Fred Donovan in FierceITSecurity.
Emphasis in red added by me.
Brian Wood, VP Marketing
Infographic: Privileged accounts give attackers ‘all access pass’ to corporate networks
Cyberattackers are focusing on privileged accounts as their enterprise entry point for advanced persistent threat attacks, according to a study by CyberArk with participation by Cisco, Deloitte, Mandiant, RSA and Verizon.
Privileged accounts consist of IT admin credentials, default and hardcoded passwords, and application backdoors. These accounts provide an “all access pass” for APT attackers to explore the target firm’s network without restriction. They also use these accounts to hide their tracks and steal data.
The report estimates that cybercrime has resulted in close to $1 trillion in corporate losses, $159 per capita in losses, and more than half million jobs being lost in the United States.
Check out the full-size infographic here.