Definition:
Privilege escalation is a type of attack in which an attacker gains elevated access to a system, moving from a lower level of access (such as a standard user) to a higher level (such as an administrator).
Use Cases:
- Used by attackers to gain administrative control over a system after compromising a regular user account.
- Employed in advanced cyberattacks to maintain persistent access and take control of critical resources.
Related Terms:
Questions and Answers:
- What are the two types of privilege escalation?
The two types are vertical privilege escalation, where an attacker gains higher-level access (such as administrative rights), and horizontal privilege escalation, where the attacker accesses resources of another user at the same privilege level.
- How can privilege escalation attacks be prevented?
Organizations can prevent privilege escalation by enforcing the principle of least privilege, patching vulnerabilities, and regularly auditing access controls.
- What are the consequences of a privilege escalation attack?
Consequences can include unauthorized access to sensitive data, administrative control over systems, and the ability to install malware or create backdoors for future attacks.