Cybersecurity is as big an issue for organizations in 2018 as it has ever been. The WannaCry ransomware attack in May 2017 crippled the UK’s National Health Service (NHS), and disrupted a range of organizations across 150 countries. Despite being a relatively unsophisticated attack, WannaCry was able to make a global impact due to preventable vulnerabilities that had largely gone unaddressed. There were many more attacks in 2017, including high-profile breaches at Uber and Equifax, where heeding cyber-security recommendations may have reduced the impact and fallout. This webcast will dive into the results from Bomgar’s 2018 Privileged Access Threat Report, which outlines the urgency for organizations across the globe to address growing privileged access and identity threats. Gain insight into approaches and solutions that security professionals can adopt to protect their valuable data.

1. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 1
Internal & External
Threats: How to
Address Growing
Privileged Access &
Identity Threats
May 24, 2018

2. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 2
Sam Elliott
Sr. Director of Security Product
Management
Karl Lankford
Sr. Solutions Engineer

3. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 3
@Bomgar
#bomgarwebinar

4. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 4
• 2018 Threat Landscape
• “Problems with Privilege”
• Insider and Third-Party Risks
• Protecting Privileged Identities and Access
from Threats
• Q&A
• Additional Resources
Agenda

5. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 5
• 62 % of respondents
think it’s possible or
definite they’ve suffered
a breach through insider
action
• 66% of respondents think
it’s possible or definite
they have suffered a
breach through third-
party access
2018 Threat Landscape
https://www.bomgar.com/resources/whitepapers/privileged-access-threat-report

6. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 6
But I need to
do my job

7. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 7
A Matter of Trust
• Organizations placing high
trust in insiders and third-
party vendors
• Good faith isn’t good enough

8. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 8
A Matter of Trust

9. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 9
A Matter of Trust

10. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 10
• The ‘Insider Risk
• The ‘Third-Party’ Risk

11. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 11
More and More
People and Systems
Are Gaining Privileges
• Privileges are easy to give,
but difficult to retract
• Failure to secure credentials
used by non-standard users;
service desks, service
accounts, app to app, third
party vendors, etc.
• Limited visibility into all
privileged accounts across
the enterprise

12. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 12
The ‘Insider Risk’

13. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 13
The ‘Insider Risk’

14. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 14
Insider Risk “Hollywood” example
• Sysadmin
• Misused privileges
• Locked other
administrators out
of their accounts
• Shutdown security
systems
• Result: Actions
caused loss of life

15. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 15
In the
News:
Insider
Risk

16. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 16
In the
News:
Insider
Risk

17. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 17
The ‘Third Party’ Risk

18. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 18
The ‘Third Party’ Risk

19. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 19
In the
News:
Third Party
Risk

20. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 20

21. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 21
• Not using PIM Solutions
• No control of privileged credentials
• Manually controlling privileged credentials
• Using PIM Solutions
• Less severe security breaches
• Better Visibility
Control

22. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 22
• Not using PIM Solutions
• No control of privileged credentials
• Manually controlling privileged credentials
• Using PIM Solutions
• Less severe security breaches
• Better Visibility
Control

23. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 23
Confidence
• Greater visibility into who’s accessing what systems
• Greater visibility into when the systems are being access and for how long

24. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 24
Security
• Shrink the attack surface
• Deploy solutions with ‘security by
design’
• Deploy solutions that don’t
impede productivity

25. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 25

26. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 26
Make Least Privilege Productive

27. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 27
Problem #1:
Remote Access
#1 attack pathway
Problems to Solve
Problem #2:
Privileged Credentials
Used in almost every data breach

28. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 28
Secure Vendor Access
• External vendors are “low hanging
fruit” because they have to adhere
to your policies
• The number of third-parties
connecting to company networks is
rapidly increasing
• Eliminate VPNs for vendors to
improve security and access
management

29. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 29
Secure Insider Access
• Any employee who has privileged
access:
• IT Admins
• IT Operations
• Operational Technologists
• Service Desks

30. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 30
Discover and Safely Store
Passwords
• Leverage an automated discovery
tool to continuously find privileged
accounts on your network
• Secure and manage credentials in
an enterprise identity management
solution
• Increase productivity by eliminating
check-in/check-out and
automatically injecting credentials
into a session
• Eliminating their visibility to the
credential reduces threat of being
phished or used through another
pathway

31. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 31
Rotate and Randomize
Privileged Credentials
• Ensure every local credential that
has some type of admin right has a
unique credential – no more shared
passwords
• Stop lateral movement by
eliminating common credentials
across endpoints
• If a credential is compromised, it
won’t be useful for long because
it’s rotated

32. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 32
Protect Service Accounts
• Manage business uptime, but
ensure those credentials can still
be rotated
• Critical business systems often
have the same service account for
years
• Ensure critical systems stay
productive and don’t have
cascading failures while securing
them

33. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 33
Fortify App to App Security
• Malicious users can compromise
had coded credentials in a script or
an application
• Remove a prime target with app to
app credential security
• Obscure credential through an
identity management solution and
rotate them to remove threat

34. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 34
Make Least Privilege Productive

35. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 35
Support Users. Access Endpoints. Protect Credentials

36. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 36
• 2018 Privileged Access Threat
Report
• 2018 PATR Infographic
• Four Pitfalls of Privilege
• Six Steps to Secure Access for
Privileged Insiders and Vendors
• Bomgar Privileged Access
• Bomgar Privileged Identity
Additional Resources

37. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 37
Questions?

38. ©2018 BOMGAR CORPORATION ALL RIGHTS RESERVED WORLDWIDE 38
Thanks for
Joining Us!
bomgar.com/resources/whitepapers/
privileged-access-threat-report