SafeBreach Archives • Information Security News

Thunder & Lightning Return: Iran’s Infy APT Resurfaces with Advanced Foudre Exploits

Dec 23, 2025

—

by

After nearly five years of apparent dormancy, the Iranian threat group Infy—also known as Prince of Persia—has resurfaced. Security researchers at SafeBreach have identified a new campaign by this long-standing cyber-espionage operation, which has conducted attacks across multiple countries since 2004 while largely remaining in the shadow of other Iranian groups. The recent operation targeted…

our Windows System Is Not Safe: New ‘EPM Poisoning’ Attack Hijacks RPC Protocol

Aug 12, 2025

—

by

ddos

in Vulnerability

Security experts at SafeBreach have disclosed the details of a vulnerability in the Windows Remote Procedure Call (RPC) protocol, patched by Microsoft in the July 2025 security update. Tracked as CVE-2025-49760 with a CVSS score of 3.5, the flaw allowed an attacker to perform spoofing attacks, impersonating a legitimate server through the Windows Storage mechanism.…

New ‘Win-DDoS’ Attack Turns Windows Servers Into a Global Botnet

Aug 11, 2025

—

by

ddos

in Vulnerability

At DEF CON 33, researchers from SafeBreach unveiled a new attack technique dubbed Win-DDoS, capable of transforming thousands of publicly accessible domain controllers (DCs) worldwide into a powerful botnet for large-scale DDoS attacks. The method requires no hardware purchase, code injection, or system compromise—making it exceptionally dangerous and leaving virtually no trace. Win-DDoS exploits a…

Tag: SafeBreach

Thunder & Lightning Return: Iran’s Infy APT Resurfaces with Advanced Foudre Exploits

our Windows System Is Not Safe: New ‘EPM Poisoning’ Attack Hijacks RPC Protocol

New ‘Win-DDoS’ Attack Turns Windows Servers Into a Global Botnet