|
|
|
|
|
|
by panarky
644 days ago
|
|
|
I'm sorry, but no, most ransomware attacks are not caused by admins giving their ignorant and irresponsible end users root access to everything. Most ransomware attacks start by phishing an end user who already has appropriately limited permissions for their job function. The real damage comes from the attacker exploiting widely known vulnerabilities, almost always in Microsoft Windows, to escalate their own privileges irrespective of the permissions of the end user they phished. Microsoft Windows is by far the most significant factor here, not dumbass end users with root access. |
|
|
Trying to make it an either-or thing is not correct. It's multiple things, but the lack of real permissions is a non-trivial percentage of cases.