Privilege Creep

Privilege Creep occurs when an individual within an organization gradually accumulates access rights or permissions beyond what is necessary for their current role or responsibilities.

This typically happens over time as employees change roles, departments, or take on additional tasks, but their previously granted privileges are not revoked.

This poses a security risk because it increases the potential for insider threats or unauthorized access to sensitive data or systems as attackers might exploit these excessive permissions if they gain access to an employees’ account.