Why It Matters?
A common technique during a data breach is to use stolen credentials to find areas where an attacker can elevate their privileges. This is done to exfiltrate and steal valuable data, such as sensitive financial, customer, or employee information.
What Exactly Does This Policy Do?
This policy helps avoid the exfiltration of database users from the database and prevents further stealing of credentials by forbidding access to the table where database user information is stored.
