Reset

New Research Outlines Hacker Preferences When Targeting Privileged Credentials

October 4, 2019

Hikvision HikWire blog article using ethical hackers

Hikvision Hack Insights: Using Ethical Hackers to Help Your Company Uncover Vulnerabilities

 

New research inquired into hacker preferences and outlined results in the Security magazine article, “What are Hacker Preferences When Targeting Privileged Credentials?

IT security company Thycotic conducted research of 300 attendees of a recent Black Hat conference with 49 percent of attendees identifying as hackers and 51 percent identifying as security professionals.

According to identity management firm BeyondTrust, privileged credentials are “the secure storing, sharing, creating, and handling of privileged passwords.” In addition, “Privileged password management, sometimes called enterprise password management, or enterprise password security, refers to the practice and techniques of securely controlling credentials for privileged accounts, services, systems, applications, and more.”

According to the article, hacker preferences when targeting privileged credentials are focused primarily on Domain Admin Accounts (34 percent).  

“Both hackers and security pros strongly agree that service accounts are an attractive target because hackers can easily elevate privileges and gain access to sensitive information. Interestingly, a third of all respondents say that passwords are only changed after a compromise occurs,” from the article.

Hikvision provided hack insights in this blog, “Using Ethical Hackers to Help Your Company Uncover Vulnerabilities, Part 1.” The article explains that “Ethical hackers are ‘a community of puzzle-solvers–curious and eager to share the vulnerabilities we uncover that can have repercussions for your company and your customers. Many major enterprises– including Google, Facebook and automaker GM–understand the value of the hacker community and already employ bug bounty programs, which offer payment.’” 

IMPORTANT! This model requires non-standard firmware. Do Not Install standard firmware (e.g. v.4.1.xx) on this model. Doing so will permanently damage your system. You must use custom firmware v.4.1.25 from the iDS-9632NXI-I8/16S product page.

By downloading and using software and other materials available via this website, you agree to be legally bound by HIKVISION General Terms of Use . If you don’t agree to these terms, you may not download or use any of those materials.

If you are agreeing on behalf of your company, you represent and warrant that you have legal authority to bind your company to the General Terms of Use above. Also you represent and warrant that you are of the legal age of majority in the jurisdiction in which you reside (at least 18 years of age in many countries).