A critical design flaw in Microsoft’s latestWindows Server 2025enables attackers to bypass authentication and generate passwords for all managed service accounts across enterprise networks.
The vulnerability, dubbed “Golden dMSA,” exploits a fundamental weakness in the newly introduced delegated Managed Service Accounts (dMSAs) that reduces complex cryptographic protections to a trivialbrute-force attackrequiring only 1,024 attempts.
Semperis Security Researcher Adi Malyanker discovered the vuln...
Sophos Intercept X for Windows Vulnerabilities Enable Arbitrary Code Execution
Cybersecurity News
40 minutes ago
Three critical vulnerabilities in the Sophos Intercept X for Windows product family could allow local attackers to achieve arbitrary code execution with system-level privileges. Identified as CVE-2024...