top of page
Search
New Win-DoS Flaws Could Weaponize Windows Domain Controllers for DDoS Attacks
A newly discovered attack method could allow hackers to crash public Windows domain controllers (DCs) worldwide and weaponize them for...
Aug 10
Hackers Hijacked Google’s Gemini AI With a Poisoned Calendar Invite to Take Over a Smart Home
For likely the first time ever, security researchers from Safebreach have shown how AI can be hacked to create real-world havoc, allowing...
Aug 5
Safebreach research shows Google Calendar invites let researchers hijack Gemini to leak user data
By sending a calendar invite with an embedded prompt injection, often hidden in the event title, attackers can potentially exfiltrate...
Aug 3
*NEW* SAFEBREACH PROPAGATE
Gain Visibility Beyond the Breach Augment your breach and attack simulation (BAS) deployment with automated attack path validation...
Apr 30
SafeBreach leverages Visa Threat Intelligence for payment fraud prevention
SafeBreach, a breach and attack simulations company, has expanded its collaboration with Visa to leverage the company’s Threat...
Apr 10
Google Released Second Fix for Quick Share Flaws After Patch Bypass
The patches Google rolled out last year to address vulnerabilities in the Quick Share data transfer utility that could lead to remote...
Apr 2
SafeBreach launches enhanced MSSP program
The program provides a clear framework for partners to establish consistent client engagement expectations, ensuring successful...
Mar 25
Safebreach launches platform for enterprise cyber risk view
SafeBreach has unveiled a new platform aimed at providing a comprehensive view of cyber risk in enterprise environments. The newly...
Feb 1
Unpatched Active Directory Flaw Can Crash Any Microsoft Server
One of two critical Active Directory Domain Controller vulnerabilities patched by Microsoft last month goes beyond the original...
Jan 1
This Windows Update exploit is downright terrifying
Windows Update may occasionally backfire with faulty patches , but for the most part, it’s meant to keep us safe from the latest threats....
Aug 10, 2024
Design flaw could allow hackers to roll back Microsoft Windows updates
Some of Microsoft’s most important tools for protecting Windows users from malicious hackers can be twisted into being used in attacks,...
Aug 6, 2024
Researchers claim Windows Defender can be fooled into deleting databases
Researchers at US/Israeli infosec outfit SafeBreach last Friday discussed flaws in Microsoft and Kaspersky security products that can...
Apr 21, 2024
New PoolParty Process Injection Techniques Outsmart Top EDR Solutions
A new collection of eight process injection techniques, collectively dubbed PoolParty, could be exploited to achieve code execution in...
Dec 10, 2023
Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation
Cybersecurity researchers have developed what's the first fully undetectable cloud-based cryptocurrency miner leveraging the Microsoft...
Nov 7, 2023
‘Defender Pretender’ turns Windows’ malware protections against itself
Windows Defender can be hijacked to ignore malware, falsely recognize benign files as malicious and even delete critical system files to...
Aug 14, 2023
Researchers discover vulnerabilities in Moovit software allowing free subway rides
Researchers at cybersecurity firm SafeBreach said they recently disclosed the vulnerabilities to Israeli firm Moovit, which helps users...
Aug 14, 2023
bottom of page