Why It Matters?
A common technique during a data breach is to use stolen credentials to find areas where an attacker can elevate their privilege. This is done to exfiltrate and steal valuable data, such as sensitive financial, customer, or employee information.
What Exactly Does This Policy Do?
This policy helps avoid the exfiltration of database users from the database and prevents further stealing of credentials by requiring an MFA from an authorized user in order to access the table where database user information is stored.
