New Research Outlines Hacker Preferences When Targeting Privileged Credentials
Hikvision Hack Insights: Using Ethical Hackers to Help Your Company Uncover Vulnerabilities
New research inquired into hacker preferences and outlined results in the Security magazine article, “What are Hacker Preferences When Targeting Privileged Credentials?”
IT security company Thycotic conducted research of 300 attendees of a recent Black Hat conference with 49 percent of attendees identifying as hackers and 51 percent identifying as security professionals.
According to identity management firm BeyondTrust, privileged credentials are “the secure storing, sharing, creating, and handling of privileged passwords.” In addition, “Privileged password management, sometimes called enterprise password management, or enterprise password security, refers to the practice and techniques of securely controlling credentials for privileged accounts, services, systems, applications, and more.”
According to the article, hacker preferences when targeting privileged credentials are focused primarily on Domain Admin Accounts (34 percent).
“Both hackers and security pros strongly agree that service accounts are an attractive target because hackers can easily elevate privileges and gain access to sensitive information. Interestingly, a third of all respondents say that passwords are only changed after a compromise occurs,” from the article.
Hikvision provided hack insights in this blog, “Using Ethical Hackers to Help Your Company Uncover Vulnerabilities, Part 1.” The article explains that “Ethical hackers are ‘a community of puzzle-solvers–curious and eager to share the vulnerabilities we uncover that can have repercussions for your company and your customers. Many major enterprises– including Google, Facebook and automaker GM–understand the value of the hacker community and already employ bug bounty programs, which offer payment.’”