Security news aggregator

Latest coverage for Privileged Access Management

Privileged Access Management limits misuse of powerful accounts by enforcing least privilege, strong authentication, and session monitoring.

1 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Privileged Access Management (PAM) controls identities and sessions with authority to administer systems, applications, databases, networks, or cloud resources. It limits who can use elevated rights, which actions they can perform, and how long access remains active. This includes administrator accounts, service accounts, emergency access, and cloud roles. PAM matters because stolen credentials or excessive standing privileges can let an attacker disable controls, move between systems, alter configurations, or access sensitive data.

Key practices include separate administrative identities, least privilege, multifactor authentication, secure credential storage and rotation, and just-in-time access that expires when the task is complete. Approval workflows and session or command recording provide accountability and help investigators distinguish authorized administration from misuse. PAM can reduce the blast radius of a vulnerability or compromised account, but it does not replace endpoint security or correct an overly permissive role; its effectiveness depends on accurate inventory, appropriate access policies, and useful monitoring.

Volume over time

Weekly headline count for the current query.

Showing 1 most recent headlines Filtered view

TrendAI™ Research breaks down Quasar Linux (QLNX), a previously undocumented sophisticated Linux RAT with low detection rates. In this blog, we examine a full-featured Linux threat incorporating a rootkit, a PAM backdoor, credential harvesting, and more, revealing how this malware enables stealthy access, persistence, and potential supply-chain attacks.