Semperis , the identity-driven cyber resilience and crisis management company, today named Women in CyberSecurity (WiCyS) — the premier global advocacy organization dedicated to the recruitment, retention, and advancement of women in cybersecurity—as an Action Partner for Midnight in the War Room , the groundbreaking documentary on cyberwar. Read more.

The elusive Iranian threat group known as Infy (aka Prince of Persia) has evolved its tactics as part of efforts to hide its tracks, even as it readied new command-and-control (C2) infrastructure coinciding with the end of the widespread internet blackout the regime imposed at the start of January 2026. "The threat actor stopped maintaining its C2 servers on January 8 for the first time since we began monitoring their activities," Tomer Bar, vice president of security resea

An attacker can exploit the bug by sending crafted Telnet commands to set the USER variable, bypass authentication, and obtain a root shell, gaining remote code execution (RCE) on vulnerable systems, SafeBreach explains . Read more.

Cohesity has increased its Identity Resilience functionality to better protect Microsoft’s Active Directory and Entra ID. The Cohesity Identity Resilience on-prem Active Directory (AD) protection, plus Entra ID in the cloud, was announced in September last year. It relied on a partnership with Semperis, which provided automated forest recovery and identity protection tools. Entra ID was rebranded from Azure AD in 2023. Many organizations use both Active Directory and Entra I

HackRead reports Iranian advanced persistent threat operation Prince of Persia, also known as Infy, has reemerged with expanded targeting and a more sophisticated attack arsenal almost three years after it went on hiatus. Despite continuing to harness the Foudre and Tonnerre malware pair, Prince of Persia has gone to update the former, which has been launched upon Foudre's discovery of high-value targets, according to a SafeBreach analysis. Read more.

SafeBreach analysts identified this renewed activity after a three-year dormant period, noting the group’s transition to more resilient operational security practices. Their research highlighted the group’s use of distinct malware families, Foudre and Tonnerre, which now feature advanced capabilities for persistence and data theft. The investigation also linked the operation to a specific persona, “Ehsan,” suggesting a centralized and human-operated management of the campaig

Researchers at SafeBreach Labs have uncovered fresh activity from the Iranian state-sponsored hacking group known as “Prince of Persia” (also referred to as “Infy”), revealing that the threat actor has been silently operating sophisticated malware campaigns since resurfacing in 2025 after a three-year hiatus. Read more.

Hoboken-based Semperis , a provider of AI-powered identity security and cyber resilience, has announced a partnership with CGS CyberDefense (CGS), a leading provider of tailored cybersecurity solutions and advisory services. The partnership combines Semperis’ Ready1 crisis management platform with CGS’ expertise in governance, risk and compliance (GRC). Read more.

Most ransomware attacks occur during weekends and holidays, times of distraction or disruption when the majority of SOCs are not adequately staffed. A new report from Semperis finds that 52 percent of surveyed organizations in the US, UK, France, Germany, Italy, Spain, Singapore, Canada, Australia and New Zealand were targeted at holidays or weekends. Alarmingly, 78 percent of companies cut security operation centre (SOC) staffing by 50 percent or more during holidays and w

A sophisticated privilege escalation vulnerability in Windows SMB servers, leveraging Ghost Service Principal Names (SPNs) and Kerberos authentication reflection to achieve remote SYSTEM-level access. Microsoft designated this as CVE-2025-58726 , an “SMB Server Elevation of Privilege” flaw impacting all Windows versions absent enforced SMB signing. According to Semperis, the issue persists in environments with default Active Directory (AD) configurations, underscoring Kerber

In the ever-evolving landscape of mobile technology, Google’s Quick Share is poised for a significant security upgrade. According to recent reports, the file-sharing feature could soon integrate with Android’s Advanced Protection Program, potentially revolutionizing how users safeguard their data during transfers. This development comes amid growing concerns over unauthorized access and file theft in an increasingly connected world. The rumor, first highlighted by Android Aut

If you ask Dr. Chase Cunningham whether we’re in a cyber war, he won’t hedge.“We’ve already had our cyber Pearl Harbor,” he told me. “It just didn’t happen in a single day.” That line lingered with me because it’s not hyperbole. Cunningham, one of the featured voices in Midnight in the War Room , knows what he’s talking about. The new documentary—produced by Semperis —offers an unfiltered look at the modern cyber battlefield and the people trying to hold the line. It’s raw,

Semperis has introduced Ready1 for Identity Crisis Management to support organisations in recovering from identity-based cyberattacks and resuming normal business operations. Ready1 brings together several of Semperis' existing offerings, including Active Directory Forest Recovery (ADFR), Disaster Recovery for Entra Tenant (DRET), and Identity Forensics and Incident Response (IFIR), alongside its enterprise crisis management system. The new product is aimed at enhancing opera

SafeBreach experts have disclosed details of a vulnerability in the Windows Remote Procedure Call (RPC) protocol, patched by Microsoft in the July 2025 update. The flaw, CVE-2025-49760 , allowed an attacker to conduct spoofing attacks and impersonate a legitimate server using the Windows storage mechanism. Ron Ben Yizak discussed the discovery at the DEF CON 33 conference. Read more.

Cohesity and Semperis Announce Groundbreaking Offering that Unifies Data and Identity Resilience Cohesity and Semperis today announced a new product, Cohesity Identity Resilience, powered by Semperis, to defend enterprises’ critical Identity infrastructure, including Microsoft Active Directory assets from cyberattacks. Now available for purchase from Cohesity, the solution is the strongest of its kind in the market, enabling companies to proactively harden defenses, recover r

A newly discovered attack method could allow hackers to crash public Windows domain controllers (DCs) worldwide and weaponize them for...

For likely the first time ever, security researchers from Safebreach have shown how AI can be hacked to create real-world havoc, allowing...

By sending a calendar invite with an embedded prompt injection, often hidden in the event title, attackers can potentially exfiltrate...

Ransomware actors are resorting to extreme measures to pressure victims into paying demands, including threats of physical harm to...

Korea Telecom (KT) , a major telecommunications provider, has initiated a collaboration with HEQA Security , a company specializing in...