It is important for companies to educate employees and make them aware of the risks behind unsanctioned downloads. Browser extensions and other software downloaded from the internet directly by end-users represent a risk to corporate network security. One effective policy for mitigating this risk is to provide a convenient way for employees to request software needed to perform their job functions and allocate sufficient funds and IT staff hours to quickly respond to employee requests. With this policy in place, employees can be prevented from installing any software through security controls, without causing disruption to the business. Employee accounts should never have administrator-level access to computer systems because malware that is introduced to systems by employee mistakes will run with the same access level as the employee’s account. Binary Defense Managed Detection and Response is capable of detecting attacker post-compromised events such as privilege escalation (gaining administrator access from a non-privileged account) and lateral movement, as well as many other attacker behaviors.