CyberArk
5 tips against insider threats
Simple tips, such as backing up login data or limiting account authorizations, help to identify and prevent insider threats at an early stage.
Threats from within are often difficult for companies to recognize, and the carelessness of employees must also be taken into account. It is difficult to identify potential victims of an attack whose accounts are being exploited. It is also difficult to identify employees who inadvertently become a threat to company systems, applications and data.
The following tips from CyberArk can help prevent this threat:
1. reduce the attack surface. The default user rights should be restricted based on the role to minimize the risk of intentional and accidental damage.
2. secure credentials. Privileged credentials should be stored in a secure, centralized repository that supports strong access controls and multi-factor authentication and provides auditability. In addition, credentials must be changed at regular intervals.
3. limit the powers of accounts. On the basis of a "separation of duties", administrative tasks should be separated according to the roles of privileged users on the basis of a "least privileges concept". Full admin or root access should only be permitted if absolutely necessary.
4. prevent unwanted behavior. A company should monitor the use of privileged and shared accounts and record all activities in order to be able to assign actions to users and prevent them.
5. identify attackers disguised as authorized insiders. Attackers using privileged accounts may initially appear to be authorized insiders, but their behavior is usually different. Companies should therefore monitor and analyze the behavior of privileged users and accounts to make it easier to detect deviations that may indicate an ongoing attack.
You might also be interested in
Is sovereignty a question of hardware?
Industry warns of dependencies in IT infrastructure
Europe is seeking digital independence: how sovereignty can be implemented in concrete terms remains a key question in view of the high level of dependencies in the IT infrastructure. Frank Konrad, Managing Director of Microsens GmbH & Co. KG,...
read more...NIS2 meets store floor
The NIS2 directive significantly increases the requirements for OT security. This article shows how companies can combine structure, verifiability and practical relevance with IEC 62443-2-1 - from governance to auditability on the store floor.
read more...Open automation ecosystems: How collaboration becomes a competitive advantage
How can collaboration between IT, OT and mechanical engineering become a real competitive advantage? Hans Michael Krause shows how open automation ecosystems are advancing brownfield integration, AI and cyber resilience in practice.
read more...Cybersecurity provider strengthens top...
Frank Kölmel becomes CRO in Bitdefender's B2B business
Bitdefender has appointed Frank Kölmel as Chief Revenue Officer of the Business Solutions Group. The experienced cyber security manager will assume responsibility for global growth, sales, marketing and the partner strategy in the company's...
read more...From risk to resilience
NIS2 significantly increases the requirements for industrial security concepts. In addition to cyber resilience, physical access protection is becoming increasingly important.
read more...Security Operations Center module
When cyber attacks reach production
Adlon is further developing its Security Operations Center and adding another module to the existing Managed SOC for Microsoft 365 environments (based on Managed XDR): Managed SOC Advanced.
read more...Cyber threats: Four key trends 2026
Autonomous AI agents, industrialized cybercrime and attacks on critical infrastructures are rapidly changing the threat situation. Why cybersecurity will only work at machine speed in 2026.
read more...How companies can prevent cyberattacks
Instead of using traditional malware, attackers use legitimate programs and system tools within their victims' IT environments. Malicious behavior can hardly be distinguished from normal user behavior. For companies, this means that security...
read more...Statement on the European Data Protection Day
How companies protect digital identities and data
On European Data Protection Day 2026, Christian Kubik, Manager Field Advisory Services Team EMEA at Commvault, explains why digital identities are at the heart of data protection. He shows how companies can prevent cyberattacks, secure data and...
read more...