Privileged administrative accounts 'need active management'

2009-08-05

To prevent a data breach from inside attackers firms, should actively manage privileged administrative and application accounts, it has been claimed.

Mark Fullbrook, writing for Data Center Journal, said that these accounts should also have their underlying passwords also actively managed, secured and changed on a regular basis.

He also suggested setting up a safe harbour for particularly sensitive data as this will integrate security into the business process outside of the network infrastructure.

This will help protect information from hackers as well as employees who are trying to gain access to certain data, Mr Fullbrook explained.

All privileged accounts should be indentified as well, followed by working out where the greatest risk lies and then creating a plan to secure privileged passwords, he added.

Merchants Information Solutions recently asserted that most data breach incidents happen through social engineering, including current and old employees as well as vendors who are often part of criminal networks.

Read more security news.