Cybersecurity analysts have revealed what they describe as a “significant design vulnerability” in delegated Managed Service Accounts (dMSAs) unveiled in Windows Server 2025.
“This vulnerability could lead to severe attacks, allowing cross-domain lateral movement and ongoing access to all managed service accounts and their resources throughout Active Directory indefinitely,” Semperis stated in a report circulated with