"Everyone had local admin rights, it made installing software easier."
COMPANY
Sector: Media
Size: 400 employees
Location: Flanders
FACTS & FIGURES
All users granted local admin privileges
Malware installed through unauthorized software
Business Impact: Data corruption and prolonged downtime
STORY
At a media company in Ghent, employees were granted local admin rights on their laptops to avoid helpdesk delays. While this improved short-term productivity, it also allowed staff to install unauthorized software, including malicious applications. One infected laptop spread malware across the corporate network, corrupting shared files and forcing days of downtime.
INCIDENT OVERVIEW
Unrestricted admin rights are a major risk, removing the safeguards that separate users from system-critical changes. Attackers exploit admin rights to disable security tools, install persistence mechanisms, and escalate privileges. Here, the company’s attempt to reduce IT bottlenecks backfired, creating an environment where malware could thrive unchecked.
BUSINESS IMPACT
Corruption of shared data
Loss of productivity during downtime
Increase workload for IT remediation
SECURITY MEASURES
Apply least-privilege principle across all endpoints
Remove local admin rights from standard accounts
Provide self-service portals for approved software installation