Ars Technica

AAD question: using a service account vs service principal

The official Microsoft docs strongly discourage the practice of user accounts employed as service accounts. Instead, they recommend using service principals or managed identities. Leaving aside MI's ...
Bleeping Computer

Five best practices for securing Active Directory service accounts

Windows Active Directory (AD) service accounts are prime cyber-attack targets due to their elevated privileges and automated/continuous access to important systems. Windows Administrators should ...
Bleeping Computer

Kerberoasting in 2025: How to protect your service accounts

Kerberoasting attacks remain an enduring headache for IT professionals, allowing hackers to escalate privileges and reach the highest levels of your Active Directory (AD) environment. But by enforcing ...
Dark Reading

For Service Accounts, Accountability Is Key to Security

COMMENTARY Over my 32 years in cybersecurity, one painful constant has been managing the risks associated with network service accounts. Service accounts are supposed to be machine-to-machine accounts ...