Cyber-Ark Software has announced the introduction of its Discovery & Audit solution to help organisations easily identify security risks by scanning and analysing privileged accounts across their networks. Cyber-Ark DNA is a light-weight, standalone tool that exposes the magnitude of a privileged account security problem allowing organisations to develop a more complete understanding of the risk privileged accounts present to their environment.
Privileged accounts, including shared, administrative, default and hardcoded passwords are critical attack points found throughout an organisation’s IT infrastructure: on desktops, laptops, servers, databases, applications, network devices, and throughout their cloud deployments.
Privileged accounts are exploited in virtually every advanced cyber-attack. Before an organisation can begin to manage the risk these accounts present, they need to know how many they have and where they are. For what was once a manual, labour-intensive undertaking, Cyber-Ark has now developed a simple, three-step tool that identifies these privileged access points, saving untold man hours of time.
“One of the biggest challenges for our organisation is in the number and variety of privileged accounts in place over multiple domains. The challenge of enumerating these and understanding what they are used for is not to be underestimated,” said Steve Mair, security and information risk advisor, Capita plc. “Cyber-Ark DNA has provided a quick and easy way to identify privileged accounts which, with some analysis, has helped identify the areas we need to address as a matter of priority.”
Benefits of Cyber-Ark DNA scanning and reporting include:
* The ability to recognise and measure risk by discovering privileged accounts and evaluating their status;
* Delivery of a comprehensive and reliable report flagging incompliant privileged accounts that exist in the network;
* Ease of auditing preparation time and cost by enabling organisations to better manage, secure and automate their privileged account processes; and
* Simple installation and execution, with no requirement to deploy agents or other software throughout the IT environment.
“Every privileged account is a potential attack point,” said Roy Adar, vice president of product management at Cyber-Ark. “Unmanaged, unprotected privileged accounts are all too often the critical link for executing high-profile cyber-attacks. We created Cyber-Ark DNA to help organisations quickly and easily understand where their privileged accounts exist, which is the first step towards achieving privileged account security and compliance.”