Shamoon is back!...Case in point. As reported in a recent U.S.News article, the Shamoon Virus (aka W32.DistTrack), first discovered by Seculert in 2012, made its return. The virus is highly destructive to infected systems and can easily transfer over networked devices. It has one purpose – cyber espionage – something every company in the world understands the impact of. It is also preventable.
… and preventableBecause Shamoon requires the use of an administrative account to infect a system, implementing least privilege, part of privileged access management, negates its ability to gain a foothold. This is a core competency of BeyondTrust. Our PowerBroker for Windows, Unix/Linux and Mac solutions assist with the operational roadblocks enterprises hit when removing admin rights from users. Attackers have also been known to steal admin credentials to use with Shamoon. Understanding which users have access to these credentials and under what conditions is a fundamental component in preventing this, and other breach attacks. PowerBroker Password Safe addresses this need by controlling access to accounts and systems within your network, and identifying misuse. To prevent the effects of Shamoon and Shamoon-like attacks, consider a step-wise deployment of privileged access management solutions, targeting your most at-risk accounts and users first. Download our free privileged account discovery tool and start scanning for at-risk accounts. Then, check out our guide to help you get started on your privileged access management path. If going to the Shamoon isn’t in your travel plans, contact us today.
Jason Silva, Sr. Solutions Architect
Jason Silva is a Senior Solutions Architect focused in Privilege Access Management (PAM), Identity and Access Management (IAM), and Least Privilege. Jason brings over 25 years of experience in solutions management to BeyondTrust's Privileged Access Management Solutions enforcing Privileged Password Management and Privileged Session Management, Privileged Endpoint Management, and Secure Remote Access which utilizes a single pane of glass for all management aspects including Automated Account Discovery, Privileged Management and Elevation, Audit and Compliance, and Reporting.