It’s inevitable. You’ve given a number of individuals in your organization rights to run around in AD making changes as they see fit, with little oversight. It’s a situation that’s ripe for abuse. A user with admin rights can grant another permissions with little more than a group membership change, giving an unauthorized user access to commit data theft, or fraud. Too many users, with too many privileges… an no one watching to prevent abuse.
Think it doesn’t happen? Nearly two-thirds of organizations today believe threats stemming from insiders are more difficult to detect, citing their already credentialed access as the number one reason.
With 59% of organizations concerned about privileged users posing an insider threat to the organization , it’s time to do something about the potential abuse that exists within your Active Directory.
If you do nothing, abuse will eventually occur… and you’ll likely never know.
So, what are you supposed to do about the abuse? No organization wants it to occur, but can it be stopped? Avoided? You’ve already given the keys to your AD to a number of individuals for quite some time.
Don’t worry, all is not lost. There are tangible steps you can take to address the potential abuse that exists within your organization.