Living-off-the-Land (LOTL) techniques use legitimate system tools to evade detection by blending in with user activity. Today they are involved in nearly all major cybersecurity breaches, signaling the failure of conventional approaches and controls to stop them. This session will feature unique insights from Bitdefender breach investigations and research into how attackers are leveraging LOTL, and how excessive attack surfaces and unnecessary application access are enabling threat actors. A new defensive approach is proposed, one that minimizes risk by enabling deeper proactive hardening for each user, without impacting productivity.