BeyondTrust

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

Cybersecurity Strategies to Stop Lateral Movement Attacks & Leave Your Adversaries Marooned

​To a cyber threat actor, lateral movement means all the difference between compromising a single asset and potentially navigating throughout an organization to establish a persistent presence. While a hacker might initially succeed in infiltrating an environment via a number of methods, such as an opportunistic phishing attack, or a targeted attack based on stolen credentials or an exploit, lateral movement is the means to find data of value, compromise additional assets, and, ultimately, execute malware for reconnaissance and command and control.

Read this post

BeyondTrust Expands Cloud Leadership with Endpoint Privilege Management Delivered as-a-Service

​Starting mid-Q2, 2020, BeyondTrust will be offering its leading Privilege Management solution for enforcing least privilege on Windows and macOS systems via a SaaS management platform. With full management capabilities in the cloud, BeyondTrust gives customers the best the cloud has to offer—high availability, security, access, and scalability, while removing the overhead of managing infrastructure.

Read this post

Edge Security & Privilege Management: What You Need to Know

As computing has become more distributed, security has evolved in multiple ways to address new use cases and cyberthreat vectors. One trend is edge computing, which is transforming how data is being processed and delivered. However, this decentralized approach to computing at the edge requires a decentralized approach to data security. One such approach is edge security.

Read this post

February 2020 Patch Tuesday

Patch Tuesday, February 2020 saw patches for 99 vulnerabilities from Microsoft and 42 vulnerabilities from Adobe. One vulnerability from Microsoft is currently under active exploitation in the wild, and five of them are publicly known. None of the Adobe vulnerabilities were disclosed prior to patching.

Read this post

BeyondTrust BeyondInsight and Password Safe: Enhanced User Experience & Powerful New Features with Version 6.10 Release

​BeyondInsight is the industry’s most innovative and comprehensive privileged access management platform. The platform maximizes visibility, simplifies deployment, automates tasks, improves security, and reduces privilege-related risks. Password Safe combines privileged password and privileged session management to discover, manage, and audit all privileged credential activity. Together, BeyondInsight and Password Safe enable organizations to achieve complete control and accountability over privileged accounts. Read on for a summary of what’s new with the release of version 6.10.

Read this post

Using Role-based Access Control (RBAC) to Tighten Kubernetes Security

In my most recent Kubernetes attack and defense webinar, I demonstrate a Kubernetes attack through a Scott Pilgrim-themed scenario. If you haven’t seen the Scott Pilgrim movie, definitely check it out! The attacks in my webinar demonstrate defeating the “evil ex” bad guys of the movie as you escalate privilege through a Linux-based Kubernetes cluster. In one step, we gain a password through a monkey-in-the-middle (MitM) attack, where we intercept a communication between two containers in the cluster. It’s much easier than it sounds! There are a number of defenses we discuss in the webinar. The most widely applicable is Kubernetes’ primary authorization rules language, called role-based access control (RBAC). RBAC is pretty easy to learn.

Read this post

Why Enterprises are finally Wising up to the Risks of Consumer-Grade Remote Access/Support Tools

Consumer-grade remote support tools continue to make the news for the wrong reasons. Recently, it’s been reported that some financial institutions are preventing their applications from being run if they detect common free and/or consumer-grade remote access tools installed on the device. This is intended to protect their customers from being victimized by these tools. While this approach could be considered severe, it reflects the risk these institutions have experience with these tools, and their fears of further damage.

Read this post

The Must-Have Remote Support Capabilities for the Modern Service Desk

​With help desk ticket counts on the rise, IT environments and computing platforms increasing in diversity and complexity, and management striving to control costs, IT professionals need more than free or basic remote support tools. In fact, the basic tools that teams bring on to bridge a capability gap and "get by are increasingly stretched beyond their limited use cases—impairing service desk effectiveness, frustrating customers, and even creating dangerous cyber risks. So, if you’re in the market for a new remote support tool, consider how these tools will impact the security, flexibility, reliability and the reputation of their organization.

Read this post

Windows 7 & Server 2008 & R2 End-of-Life (EOL): One Clock Winds Down, Another Starts Ticking

​The end of life (EOL) clock for Microsoft Windows 2008 and 2008 R2 Server and Windows 7 (all versions) has wound down, marking a significant milestone for the support of those operating systems. However, now a new clock is ticking, counting down the time until dangerous, new exploitable vulnerabilities arise that will not be patched by MSFT. Barring any custom-extended support contracts signed on a case-by-case basis with Microsoft, none of these EOL operating systems will receive further security updates, features, or technical support after January 14, 2020.

Read this post

Avoid these Common Privileged Access Management (PAM) Pitfalls & Misconceptions

Many organizations maintain long, firmly held beliefs about privileged access management (PAM) tools and concepts that don’t hold up to much scrutiny. These misconceptions can cause IT teams to overlook easy, and highly attainable ways to reduce risk, and also cause organization to use dangerous tactics and workarounds that inflate their organization’s risk surface.

Read this post