Latest News: Plurilock Announces US$820,000 Order with a State Law Enforcement Agency — November 18, 2024

Latest News: Plurilock CEO Ian L. Paterson on the Insurtech Leadership Podcast — November 16, 2023

Secure your small business:
Apps → Data →

Live Now:

Adapting to the Latest Cyber Threats to ICS/OT

Glossary Term

Cybersecurity Reference > Glossary

Frequently Asked Question

Lateral Movement

Definition

ANSWER

Lateral Movement is a term used to describe how hackers move from an initial point of entry deeper into a network.

When normal users access a network, they tend to start at a defined entry point like a desktop or laptop and fan and access additional resources in a star pattern emanating from the initial entry point. The “one hop” star pattern is an intentional security design feature of Kerberos that is supposed to prevent hackers from performing lateral movement. The idea is that Kerberos only allows a ticket to be used one-hop from where it was issued. Note that Microsoft actually refers to the one-hop restriction as the double-hop problem, but one-hop is probably more descriptive for what we’re talking about. In reality, hackers have found many ways around the double-hop problem and are able to move in linear or “lateral” patterns. Because hackers are able to steal multiple identities, they can switch user identities as needed and, in some cases, use software exploits to create sessions between computers that are completely unauthenticated. It is this chaining of sessions from entry point to objective that we refer to as lateral movement.

2FA/MFA Rapid Reference

Authentication at a glance

Download the 2FA/MFA Rapid Reference now:

2FA and MFA basics and common solutions

The benefits and drawbacks of each

Glossary of authentication terms

2FA/MFA Rapid Reference

2FA and MFA basics and common solutions
The benefits and drawbacks of each
Glossary of authentication terms

Downloadable References

PDF

Sample Governance Policy for AI Use

Sample, shareable addition for employee handbook or company policy library to provide governance for employee AI use.

PDF

Establishing Guardrails for AI Whitepaper

Generative AI is exploding, but workplace governance is lagging. Use this whitepaper to help implement guardrails.

PDF

Practical Cybersecurity Cheat Sheet

Cheat sheet for basics to stay secure, their ideal deployment order, and steps to take in case of a breach.

PDF

Plurilock DEFEND™

Real-time, continuous authentication using behavioral biometrics and machine learning.

Other Plurilock Terms

ADAPT

AFS

DEFEND

Endpoint Agent

Enrollment

Identity Score

Impossible Travel

JavaScript Agent

Location Data

Master Profile

Network Context

Plurilock API

Profile

Threshold

Safeguard your company data.

Stop unauthorized downloading, uploading, copy-pasting, emailing, and sharing.

Related Destinations

Cybersecurity Reference

Frequently Asked Questions

Plurilock AI Cloud

Plurilock AI DLP

Plurilock AI Complete

Plurilock AI PromptGuard

Plurilock DEFEND

Plurilock Blog

Identity-Focused Attacks Are a Trend—Here’s How They Work and What To Do About Them

Cybersecurity Awareness Month 2024 Provides Four Simple Steps to Secure Our World

Uncovering Hidden Threats: The Crucial Role of Penetration Testing in Cybersecurity

Plurilock Critical Services Mobilizes Rapidly—and This Transforms Outcomes

How Many Vendors Are Represented In Your Environments?

Plurilock AI is a Quadrant Gold Medalist for the Fifth Year Running

About
Plurilock

Plurilock sells cybersecurity solutions to the United States and Canadian federal governments along with Global 2000 companies. Through these relationships, Plurilock sells its unique brand of critical services—aiding clients with our expertise to defend against, detect, and prevent costly data breaches and cyberattacks.

REACH US

Recent Blog
and Press Activity

Identity-Focused Attacks Are a Trend—Here’s How They Work and What To Do About Them

Cybersecurity Awareness Month 2024 Provides Four Simple Steps to Secure Our World

Plurilock Announces US$820,000 Order with a State Law Enforcement Agency

Plurilock Security Corporate Update for Shareholders

Stay informed.
Subscribe to the Plurilock newsletter.

First Name

Last Name

Email

ng_country

I state that I opt in to email communication from Plurilock and agree to Plurilock's Privacy Policy.

Done. You're subscribed to the Plurilock newsletter!