Case Study: Global Communication Solutions Provider eliminates Pass-the-Hash attacks and secures Smart Card-enabled privileged accounts with CyberArk Privileged Account Security Solution

Global Communication Solutions Provider Deploys CyberArk’s Enterprise Password Vault™ to Mitigate the Threat of Pass-the-Hash Attacks

A publicly traded global communications solutions provider with ~22,000 employees and $8.7B in revenue faced increasing targeted attacks—specifically Pass‑the‑Hash attacks against Windows admin accounts. Initial mitigation by issuing Smart Cards proved insufficient because Smart Card–enabled passwords didn’t expire or change, leaving stolen hashes usable indefinitely and exposing privileged accounts across the network.

The company deployed the CyberArk Privileged Account Security Solution to centrally manage privileged credentials, enforce role‑based access, automate unique and complex password rotation (including one‑time changes after use), and log all privileged activity. The solution was quick to implement, reduced admin exposure to high‑risk endpoints, and—since deployment—has eliminated privileged account abuse and prevented any Pass‑the‑Hash incidents, improving the organization’s Smart Card security posture.