Organizations are struggling to stop advanced attacks from both external attackers and malicious internal users. These attackers follow a pattern of gaining access to accounts (i.e., local business user accounts) and using those to gain access to additional assets, accumulating privileges, and eventually reaching their target to complete the mission of the attack. Organizations must know the path of an attack, and block it with privileged account security to reduce the damage attackers can cause to the organization.