Research Confirmed: More Security Awareness Training required

At the Black Hat USA 2016 conference in Las Vegas earlier this month, Thycotic, a specialist in privileged account management (PAM) solutions, surveyed more than 250 attendees who self-identified as hackers (respondents remained anonymous).

Hackers believe no password is safe from a determined attacker, but they agree that five key security measures can make it a lot harder to penetrate enterprise networks.

The five security methods which hackers say it makes their life more difficult:

  1. Limit admin access to systems
  2. Protect privileged account passwords
  3. Extend IT security awareness training
  4. Limit unknown applications
  5. Protect user passwords with security best practices

Most security professionals believe that human beings are the weakest link in any organization’s security.

“As more sophisticated social engineering and phishing attacks have emerged in the past few years, companies need to seriously consider expanding their IT security awareness programs beyond simple online tests or acknowledgements of policies,” Thycotic writes. “Especially as personal mobile devices are increasingly used for business purposes, educating employees on secure behaviors has become imperative.”

Full article with detailed explanation for each point at CIO Magazine: 3112740/security/5-security- practices-hackers-say-make- their-lives-harder.html