Borrow it
Coverart for item
The Resource Privileged attack vectors : building effective cyber-defense strategies to protect organizations, Morey J. Haber, Brad Hibbert

Privileged attack vectors : building effective cyber-defense strategies to protect organizations, Morey J. Haber, Brad Hibbert

Creator
Author
Contributor
Summary
See how privileges, passwords, vulnerabilities, and exploits can be combined as an attack vector and breach any organization. Cyber attacks continue to increase in volume and sophistication. It is not a matter of if, but when, your organization will be breached. Attackers target the perimeter network, but, in recent years, have refocused their efforts on the path of least resistance: users and their privileges. In decades past, an entire enterprise might be sufficiently managed through just a handful of credentials. Today's environmental complexity means privileged credentials are needed for a multitude of different account types (from domain admin and sysadmin to workstations with admin rights), operating systems (Windows, Unix, Linux, etc.), directory services, databases, applications, cloud instances, networking hardware, Internet of Things (IoT), social media, and more. When unmanaged, these privileged credentials pose a significant threat from external hackers and insider threats. There is no one silver bullet to provide the protection you need against all vectors and stages of an attack. And while some new and innovative solutions will help protect against or detect the initial infection, they are not guaranteed to stop 100% of malicious activity. The volume and frequency of privilege-based attacks continues to increase and test the limits of existing security controls and solution implementations. Privileged Attack Vectors details the risks associated with poor privilege management, the techniques that hackers and insiders leverage, and the defensive measures that organizations must adopt to protect against a breach, protect against lateral movement, and improve the ability to detect hacker activity or insider threats in order to mitigate the impact. What You'll Learn: Know how identities, credentials, passwords, and exploits can be leveraged to escalate privileges during an attack Implement defensive and auditing strategies to mitigate the threats and risk Understand a 12-step privileged access management Implementation plan Consider deployment and scope, including risk, auditing, regulations, and oversight solutions
Language
eng
Work
Publication
Extent
1 online resource
Note
Includes index
Contents
  • Chapter 1: Privileges
  • Chapter 2: Shared Credentials
  • Chapter 3: Password Hacking
  • Chapter 4: Privilege Escalation
  • Chapter 5: Insider Threats
  • Chapter 6: Insider Threats
  • Chapter 7: Threat Hunting
  • Chapter 8: Data Centric Audit and Protection
  • Chapter 9: Privileged Monitoring
  • Chapter 10: Privilege Access Management
  • Chapter 11: PAM Architecture
  • Chapter 12: Break Glass
  • Chapter 13: Industrial Control Systems (ICS)
  • Chapter 14: Internet of Things (IoT)
  • Chapter 15: The Cloud
  • Chapter 16: Mobile Devices
  • Chapter 17: Ransomware
  • Chapter 18: Secured DevOps (SDevOps)
  • Chapter 19: Regulatory Compliance
  • Chapter 20: Sample PAM Use Cases
  • Chapter 21: Deployment Considerations
  • Chapter 22: Privileged Account Management Implementation
  • Chapter 23: Key Takeaways
  • Chapter 24: Conclusion.-#xE000
Isbn
9781484230473
Instance
Label
Privileged attack vectors : building effective cyber-defense strategies to protect organizations
Title
Privileged attack vectors
Title remainder
building effective cyber-defense strategies to protect organizations
Statement of responsibility
Morey J. Haber, Brad Hibbert
Creator
Contributor
Author
Subject
Language
eng
Summary
See how privileges, passwords, vulnerabilities, and exploits can be combined as an attack vector and breach any organization. Cyber attacks continue to increase in volume and sophistication. It is not a matter of if, but when, your organization will be breached. Attackers target the perimeter network, but, in recent years, have refocused their efforts on the path of least resistance: users and their privileges. In decades past, an entire enterprise might be sufficiently managed through just a handful of credentials. Today's environmental complexity means privileged credentials are needed for a multitude of different account types (from domain admin and sysadmin to workstations with admin rights), operating systems (Windows, Unix, Linux, etc.), directory services, databases, applications, cloud instances, networking hardware, Internet of Things (IoT), social media, and more. When unmanaged, these privileged credentials pose a significant threat from external hackers and insider threats. There is no one silver bullet to provide the protection you need against all vectors and stages of an attack. And while some new and innovative solutions will help protect against or detect the initial infection, they are not guaranteed to stop 100% of malicious activity. The volume and frequency of privilege-based attacks continues to increase and test the limits of existing security controls and solution implementations. Privileged Attack Vectors details the risks associated with poor privilege management, the techniques that hackers and insiders leverage, and the defensive measures that organizations must adopt to protect against a breach, protect against lateral movement, and improve the ability to detect hacker activity or insider threats in order to mitigate the impact. What You'll Learn: Know how identities, credentials, passwords, and exploits can be leveraged to escalate privileges during an attack Implement defensive and auditing strategies to mitigate the threats and risk Understand a 12-step privileged access management Implementation plan Consider deployment and scope, including risk, auditing, regulations, and oversight solutions
Member of
Cataloging source
N$T
http://library.link/vocab/creatorName
Haber, Morey J
Dewey number
005.8
Index
index present
LC call number
QA76.9.A25
Literary form
non fiction
Nature of contents
dictionaries
http://library.link/vocab/relatedWorkOrContributorName
Hibbert, Brad
http://library.link/vocab/subjectName
  • Computer security
  • Computer networks
  • Computer networks
Label
Privileged attack vectors : building effective cyber-defense strategies to protect organizations, Morey J. Haber, Brad Hibbert
Instantiates
Publication
Distribution
Copyright
Note
Includes index
Antecedent source
unknown
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
text
Content type code
  • txt
Content type MARC source
rdacontent
Contents
Chapter 1: Privileges -- Chapter 2: Shared Credentials -- Chapter 3: Password Hacking -- Chapter 4: Privilege Escalation -- Chapter 5: Insider Threats -- Chapter 6: Insider Threats -- Chapter 7: Threat Hunting -- Chapter 8: Data Centric Audit and Protection -- Chapter 9: Privileged Monitoring -- Chapter 10: Privilege Access Management -- Chapter 11: PAM Architecture -- Chapter 12: Break Glass -- Chapter 13: Industrial Control Systems (ICS) -- Chapter 14: Internet of Things (IoT) -- Chapter 15: The Cloud -- Chapter 16: Mobile Devices -- Chapter 17: Ransomware -- Chapter 18: Secured DevOps (SDevOps) -- Chapter 19: Regulatory Compliance -- Chapter 20: Sample PAM Use Cases -- Chapter 21: Deployment Considerations -- Chapter 22: Privileged Account Management Implementation -- Chapter 23: Key Takeaways -- Chapter 24: Conclusion.-#xE000
Control code
SPR1015239849
Dimensions
unknown
Extent
1 online resource
File format
unknown
Form of item
online
Isbn
9781484230473
Level of compression
unknown
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Other control number
10.1007/978-1-4842-3048-0
http://library.link/vocab/ext/overdrive/overdriveId
cl0500000931
Quality assurance targets
not applicable
Reformatting quality
unknown
Sound
unknown sound
Specific material designation
remote
System control number
  • on1015239849
  • (OCoLC)1015239849
Label
Privileged attack vectors : building effective cyber-defense strategies to protect organizations, Morey J. Haber, Brad Hibbert
Publication
Distribution
Copyright
Note
Includes index
Antecedent source
unknown
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
text
Content type code
  • txt
Content type MARC source
rdacontent
Contents
Chapter 1: Privileges -- Chapter 2: Shared Credentials -- Chapter 3: Password Hacking -- Chapter 4: Privilege Escalation -- Chapter 5: Insider Threats -- Chapter 6: Insider Threats -- Chapter 7: Threat Hunting -- Chapter 8: Data Centric Audit and Protection -- Chapter 9: Privileged Monitoring -- Chapter 10: Privilege Access Management -- Chapter 11: PAM Architecture -- Chapter 12: Break Glass -- Chapter 13: Industrial Control Systems (ICS) -- Chapter 14: Internet of Things (IoT) -- Chapter 15: The Cloud -- Chapter 16: Mobile Devices -- Chapter 17: Ransomware -- Chapter 18: Secured DevOps (SDevOps) -- Chapter 19: Regulatory Compliance -- Chapter 20: Sample PAM Use Cases -- Chapter 21: Deployment Considerations -- Chapter 22: Privileged Account Management Implementation -- Chapter 23: Key Takeaways -- Chapter 24: Conclusion.-#xE000
Control code
SPR1015239849
Dimensions
unknown
Extent
1 online resource
File format
unknown
Form of item
online
Isbn
9781484230473
Level of compression
unknown
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Other control number
10.1007/978-1-4842-3048-0
http://library.link/vocab/ext/overdrive/overdriveId
cl0500000931
Quality assurance targets
not applicable
Reformatting quality
unknown
Sound
unknown sound
Specific material designation
remote
System control number
  • on1015239849
  • (OCoLC)1015239849

Subject

Member of

Library Locations

Library Links

Structured data from the Bibframe namespace is licensed under the Creative Commons Attribution 4.0 International License by University of Liverpool. Additional terms may apply to data associated with third party namespaces.
Processing Feedback ...