StealC hackers hacked as researchers hijack malware control panels

A cross-site scripting (XSS) flaw in the web-based control panel used by operators of the StealC info-stealing malware ...

Mandiant releases rainbow table that cracks weak admin password in 12 hours

Security firm Mandiant has released a database that allows any administrative password protected by Microsoft’s NTLM.v1 hash ...

New Facebook Warning For 3 Billion Users After Password Attacks

That warning concerns what is known as a browser-in-the-browser attack and, according to the Trellix security boffins, is an ...
Infosecurity Magazine

TamperedChef Malvertising Campaign Drops Malware via Fake PDF Manuals

TamperedChef creates backdoors and steals user credentials – particularly in organizations reliant on technical equipment ...
SecurityWeek

Russia’s APT28 Targeting Energy Research, Defense Collaboration Entities

Russian state-sponsored group APT28 has targeted energy research, defense collaboration, and government communication ...