Recent news of a cyberattack on a water treatment plant carried out by a remote perpetrator came as an unwelcome shock to organizations around the world. The attack was surprising in itself in that there was no sophisticated or complex attack strategy involved - the attacker was able to breach the public infrastructure by simply taking advantage of the treatment plant's inadequate security practices.
With work from home being an ongoing necessity among the global workforce, VPNs and privileged remote sessions have become the only way through which employees can access their corporate resources. However, with remote work growing popular across the globe, there has also been a significant surge in the number of remote-session-based attacks, where cyber criminals break into critical infrastructure using compromised credentials. Since the credentials are legitimate, attackers can mimic legitimate users to avoid being detected.