Yuval Gordon

🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability It allows compromising any user in AD, it works with the default config, and.. Microsoft currently won't fix it 🤷‍♂️ Read Here - akamai.com/blog/security-…

We just released a new beta build for PingCastle on GitHub to detect the new BadSuccessor risk that @YuG0rd found! github.com/netwrix/pingca… Code is in the BadSuccessor branch.

Another Monday. Another week of… endless emails, annoying meetings, and oh look, a three-headed monkey behind you! Now that we have your attention, we can unveil the agenda for #RomHack2025 romhack.io/romhack-confer… #infosec #securityconference

If you can't beat them, ban them 😏 Malicious Cryptominers can be tough to dismantle - but we found a way. 👀 By exploiting common mining topologies, Akamai researchers were able to ban attackers from their mining pools and shut down their operations. akamai.com/blog/security-…

פיד ישראל: מקומות שניתן לתרום להם בדולרים ויש להם חשבון ב benevity? 🇮🇱 אשמח אם תעזרו לי להפיץ את ההודעה

I'm super happy to announce an operationally weaponized version of @YuG0rd's BadSuccessor in .NET format! With a minimum of "CreateChild" privileges over any OU it allows for automatic escalation to Domain Admin (DA). Enjoy your inline .NET execution! github.com/logangoins/Sha…

We did an analysis across participating customers & found that ~96% had > 1 user that has the necessary permissions to be susceptible to this attack, but only ~3% had a 2025 server. So there are a lot of orgs that have the opportunity to resolve this issue before they bring a…

Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the recently introduced dMSA feature, and show how it enables turning a very common, seemingly benign permission, into a full domain take over. akamai.com/blog/security-…