Threat Post

Three Service Account Secrets Straight from Hackers and Security Pros

A survey of nearly 300 Black Hat conference attendees this year showed strong agreement that service accounts are an attractive target. Nearly 19,000 infosec experts travel from all over the world to ...
The Hacker News

FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

Attackers exploit FortiGate vulnerabilities to steal LDAP credentials and breach networks, enabling AD access and malware deployment.

Why Password Audits Miss the Accounts Attackers Actually Want

Password audits often focus on complexity rules but miss the accounts attackers actually target. Specops Software explains ...
Dark Reading

Best Practices for Securing Service Accounts

Now is the time to establish cybersecurity best practices to prevent service accounts from becoming the attack vector for today's cyber thieves. Service accounts are responsible for granting the ...
Ars Technica

Policy question: Service accounts and non-expiring passwords

Those of you running mid-large MS networks: do you have a policy of how to handle passwords on service accounts? This has recently become an issue at my company, and since I've taken a newly created ...
Hosted on MSN

Locking down service accounts without disrupting operations

The security of service accounts cannot rely on outdated practices. (Image: Supplied) When securing service accounts, a long-standing best practice has been to enforce regular password rotation. But ...