Tip of the Week – May 28, 2026

Limit Administrative Privileges

Accounts with administrative privileges are frequently targeted by threat actors because they provide broad access across networks and systems. WaterISAC encourages utilities to regularly review privileged accounts, remove unnecessary administrator access, and separate standard user accounts from administrative accounts wherever possible. Applying the principle of least privilege can help reduce the impact of compromised credentials and limit an attacker’s ability to move laterally within the environment.