Security software provider Remediant wants to move beyond basic privileged access management (PAM) to help CSOs secure enterprise networks.It\u2019s adopting a new approach it calls PAM+, aimed at helping enterprises protecting access to their systems and build on Zero Trust initiatives.Tim Keeler, CTO and co-founder of Remediant, set out the need for the new strategy: \u201cOrganizations\u2019 inability to properly manage identities and privileges across the enterprise has left a large number of attack surfaces unprotected and vulnerable to cyberattacks that result in ransomware. A majority of today\u2019s cybercriminals are able to accomplish their mission by leveraging privilege (or admin) account sprawl \u2014 a very large and highly exploited attack surface.\u201d\u00a0Nearly 80% of today\u2019s cyberattacks involve leveraging privileged identities, he said.Remediant has been working on PAM+ with its agentless SecureONE product. It said it has doubled its deployments of SecureOne over the last twelve months, with 75% of these deployments delivering on functionality promised by legacy PAM vendors that were never met.\u00a0Keeler said Remediant\u2019s PAM+ strategy was created to help negate password and other credential-based compromises, protect access and accelerate Zero Trust initiatives. \u201cPAM+, as well as SecureONE, goes beyond legacy PAM approaches to address these risks \u2014 regardless of size, architecture model or vendor ecosystem. It also maintains a Zero Standing Privilege (ZSP),\u201d he said.\u00a0Zero Standing PrivilegeZSP, a term coined by Gartner, removes the typical, 24x7 admin authorization and protects admin authorization and organizations against the discovery of admin credentials, hashes or secrets from inside the network, even if the attacker has gained a foothold with weak passwords.\u00a0\u201cZSP protects organizations by reducing the attack surface and is the most critical and proactive cybersecurity measure an organization can do to mitigate threats,\u201d said Keeler.\u00a0Remediant said its newly launched PAM+ strategy offers six capabilities that differentiate it from legacy PAM. It does away with the always-on, always-available privilege access, eliminates the impact of compromised admin credentials, renders password-stealing malware ineffective, routes all administrative access with multi-factor authentication, radically improves IAM\/PAM program maturity by protecting access, and delivers rapid time-to-value: agentless, with integration into IT and security workflows, the company said.\u00a0\u201cPrivilege sprawl and credential misuse is a factor in nearly every cyberattack, so much so that both are being specifically identified as reasons for rapidly increasing cyber insurance premiums,\u201d Raj Dodhiawala, president and CEO of Remediant, said in the statement.\u00a0\u201cThe innovative PAM+ strategy promises to disrupt the stagnant PAM solutions market and truly solve today\u2019s operational and cybersecurity pains. Remediant is laser-focused on protecting access, thereby preventing lateral movement for every customer \u2014 regardless of size, architecture model or vendor ecosystem,\u201d the recently promoted CEO added.\u00a0Increasing lateral movement attacksIn lateral movement attacks, once an attacker is inside any infrastructure or system, they elevate privileges and move laterally to find the organization\u2019s crown jewels (for example, the active directory, where all credentials are stored). Once this is done, attackers can encrypt data, execute a ransomware attack and much more.According to the\u00a0Global Incident Response Threat Report\u00a0by VMware, 25% of respondents witnessed instances of lateral movement in the past year. One in every 10 respondents reported that lateral movement was present in more than half of their engagements. Telemetry from Threat intelligence cloud VMware Contexa\u00a0found that in April and May of this year, almost half of all intrusions included a lateral movement event.