For most organizations, Secure Shell (SSH) key credentials are left unprotected and leave the door open to be exploited. System administrators and automated applications, which use SSH keys for authentication and access, have the highest level of rights and privileges for accessing servers,
applications, and virtual instances.
APTs and other attackers want to gain and leverage this trusted status. While SSH keys are often used to secure access to the most sensitive systems and data, there is usually little awareness or policy enforcement in place around their use. If you don’t know which administrator or SSH key has access to which servers, your IT environment may already be at risk.
Read this white paper to learn more...