StealC hackers hacked as researchers hijack malware control panels

A cross-site scripting (XSS) flaw in the web-based control panel used by operators of the StealC info-stealing malware ...
https//fedtechmagazine.com

What Is a Cross-Site Scripting (XSS) Attack & Are You Prepared?

Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. The Department of Homeland Security has warned federal agencies ...
The Hacker News

Security Bug in StealC Malware Panel Let Researchers Spy on Threat Actor Operations

Experts exploited an XSS flaw in StealC’s admin panel, exposing operator sessions, system details & stolen cookies without ...

StealC Operators Exposed After Control Panel Hack

In an unusual twist, security researchers managed to turn the tables on cybercriminals behind StealC, a widely used ...

NotificationX WordPress WooCommerce Plugin Vulnerabilities Impact 40k Sites

An advisory was issued for a WordPress plugin vulnerability that can enable unauthenticated attackers to inject malicious ...
Infosecurity Magazine

Researchers Exploit Bug in StealC Infostealer to Collect Evidence

Ari Novick, a malware researcher at identity security specialist CyberArk, explained in a blog post that the XSS bug was ...

Exposed malware control panels could reveal criminal secrets

Infostealer tactics are uncovered ...
NextBigFuture

BreachLock Expands Adversarial Exposure Validation (AEV) to Web Applications

BreachLock, a global leader in offensive security, today announced that its Adversarial Exposure Validation (AEV) solution ...
InfoWorld

Astro web framework maker merges with Cloudflare

The merger with Cloudflare follows the release of Astro 6 beta, which features development server updates to improve Astro’s ...