Delinea Reduces Risk of Lateral Movement in Cybersecurity Breaches

Delinea, a provider of solutions that extend privileged access management (PAM), released the latest version of Cloud Suite, part of its Server PAM solution, which provides privileged access to and authorization for servers.

Updates include more granular support for just-in-time (JIT) and just-enough privilege access automation and improved identity assurance through enforced human interaction when prompted for multi-factor authentication (MFA) at server log-in or privilege elevation.

A 30-day study conducted by VMware revealed that almost 45 percent of intrusions included a lateral movement event. The most common MITRE ATT&CK techniques associated with the lateral movement were Samba/Windows Admin Shares, Pass the Hash, SSH, and RDP.

The best defenses against these techniques include limiting the standing privilege for enterprise identities and presenting users with additional challenges that validate their identity when accessing and granting elevated privileges on servers containing critical business data.

Implementing just-in-time and just-enough privileges can prevent bad actors from executing damaging commands using the above-mentioned techniques.

Updates to Cloud Suite’s privilege elevation controls allow administrators to request specific commands or sets of commands from within the interface when accessing local or cloud-hosted servers. Policies can be set up to automate just-in-time and just-enough privilege scenarios, reducing the risk related to standing privileges and aligning with Zero Trust best practices.

Additionally, enhancements to the MFA enforcement functionality in Cloud Suite involve additional requirements for human interaction to authenticate and cannot be bypassed through automation.

Additional updates in the release include support for FastSQL, further improving the performance, security and scalability of Cloud Suite.