Bleeping Computer

Five best practices for securing Active Directory service accounts

Windows Active Directory (AD) service accounts are prime cyber-attack targets due to their elevated privileges and automated/continuous access to important systems. Windows Administrators should ...

Kerberoasting in 2025: How to protect your service accounts

Kerberoasting attacks let hackers steal service account passwords and escalate to domain admin, often without triggering ...
CSOonline

BadSuccessor: Unpatched Microsoft Active Directory attack enables domain takeover

Unprivileged users with permission to create objects inside an Active Directory organizational unit can abuse the new Delegated Managed Service Accounts (dMSA) feature to elevate their privilege to ...
Dark Reading

Unpatched Windows Server Flaw Threatens Active Directory Users

An easily exploitable flaw in Windows Server 2025 allows attackers to escalate privileges and assume the permissions of any Active Directory (AD) user. The flaw occurs due to the fumbling of ...
Ars Technica

AD Service Account Password Expirations

How do you guys deal with AD service accounts that are part of the password policy? I'm looking for a way to notify the owner of the account that the password is about to expire via e-mail. We run a ...