Yaron Kassner, CTO and co-founder of Silverfort, discusses why using all-seeing privileged accounts for monitoring is bad practice.
https://threatpost.com/domain-admin-accounts-scan-network/177194/
Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.
https://threatpost.com/ssrf-flaw-fintech-bank-accounts/179247/