A lot of active directory defaults are wildly insecure, even on a newly built do... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		patmorgan23 on July 19, 2024 \| parent \| context \| favorite \| on: CrowdStrike Update: Windows Bluescreen and Boot Lo... A lot of active directory defaults are wildly insecure, even on a newly built domain, and there are a lot of active directory admins out there that don't know how to properly delegate as permissions.

datavirtue on July 19, 2024 [–]

This is true. You are basically one escalation attack on the CFO away from someone wiring money to hackers and a new remotely embedded admin freely roaming your network.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact