Bleeping Computer

Five best practices for securing Active Directory service accounts

Windows Active Directory (AD) service accounts are prime cyber-attack targets due to their elevated privileges and automated/continuous access to important systems. Windows Administrators should ...
Bleeping Computer

How to harden your Active Directory against Kerberoasting

Kerberoasting is a common attack targeting Microsoft Active Directory, enabling attackers to compromise service accounts with low risk of detection. Because it manipulates legitimate accounts, it can ...
CSOonline

BadSuccessor: Unpatched Microsoft Active Directory attack enables domain takeover

Unprivileged users with permission to create objects inside an Active Directory organizational unit can abuse the new Delegated Managed Service Accounts (dMSA) feature to elevate their privilege to ...