Teacher
Professional
- Messages
- 2,669
- Reaction score
- 819
- Points
- 113
In seven out of ten Russian companies, cybercriminals can easily obtain domain administrator rights, which means they can manage all computers and websites of these companies.
Cybercriminals can obtain domain administrator rights from 70% of Russian firms, RBC writes with reference to a study conducted by BI.ZONE. Its experts have checked over 200 medium and large firms from various industries.
As the director of the block of expert services at BI.ZONE Yevgeny Voloshin explained, domain administrator rights make it possible to connect to any computer of the company, install software, restrict access, create an account or completely close its website. To obtain the rights, a hacker must hack into the account of an ordinary employee using social engineering methods. The victim receives a malicious file or a link to it. If she downloads a file, an attacker gains access to her device and begins to study the internal infrastructure of the enterprise. Gradually, a cybercriminal can get to the computer where the domain administrator account is stored.
Voloshin stressed that the main reasons for the success of such attacks are insufficient monitoring of resources located on the external IT perimeter, as well as the lack of streamlined processes to search for vulnerabilities in the IT infrastructure.
Experts recommend that enterprises audit infrastructure, implement and configure security systems to increase the level of security. Patch management procedures should also be implemented (securing operating systems, eliminating vulnerabilities, fixing software errors, and preventing malware attacks).
Cybercriminals can obtain domain administrator rights from 70% of Russian firms, RBC writes with reference to a study conducted by BI.ZONE. Its experts have checked over 200 medium and large firms from various industries.
As the director of the block of expert services at BI.ZONE Yevgeny Voloshin explained, domain administrator rights make it possible to connect to any computer of the company, install software, restrict access, create an account or completely close its website. To obtain the rights, a hacker must hack into the account of an ordinary employee using social engineering methods. The victim receives a malicious file or a link to it. If she downloads a file, an attacker gains access to her device and begins to study the internal infrastructure of the enterprise. Gradually, a cybercriminal can get to the computer where the domain administrator account is stored.
Voloshin stressed that the main reasons for the success of such attacks are insufficient monitoring of resources located on the external IT perimeter, as well as the lack of streamlined processes to search for vulnerabilities in the IT infrastructure.
Experts recommend that enterprises audit infrastructure, implement and configure security systems to increase the level of security. Patch management procedures should also be implemented (securing operating systems, eliminating vulnerabilities, fixing software errors, and preventing malware attacks).
