Cyber Heads Up: Badsuccessor - A Critical Active Directory Privilege Escalation Vulnerability In Windows Server 2025
Security Boulevard, Friday, May 23rd, 2025
Akamai researchers have identified a significant privilege escalation vulnerability in Windows Server 2025, termed 'BadSuccessor.'
This flaw exploits the newly introduced delegated Managed Service Accounts (dMSAs) feature, allowing attackers to impersonate any Active Directory (AD) user, including domain administrators, without altering existing accounts or group memberships.