SafeBreach
-
Iran-linked APT Infy resurfaces with updated Foudre and Tonnerre malware
SafeBreach and other researchers reported renewed activity by the Iranian APT known as Infy (Prince of Persia), documenting updated Foudre and Tonnerre malware, use of a domain generation algorithm for C2 resilience, and a Telegram-based channel in recent campaigns affecting targets in the Middle East, India, Canada and Europe.
-
New Attack Technique Leveraging Windows Domain Controllers Threatens Cybersecurity
Researchers at SafeBreach have unveiled a new technique known as Win-DDoS, which exploits vulnerabilities in Windows domain controllers to facilitate powerful DDoS attacks. The findings highlight significant risks to cybersecurity, necessitating a reevaluation of current defenses against such threats.
