June 13, 2024 Phishing, BEC attackers target candidates in local election, among others An escalating series of email-borne attacks were sent to candidates, including the author Threat Research
June 12, 2024 RD Web Access abuse: Fighting back Investigation insights and recommendations from a recent welter of incident-response cases Security OperationsThreat Research
June 11, 2024 June Patch Tuesday squares up with 49 patches Just one critical-severity issue addressed, but don��t sleep on an industry-wide DNS issue Threat Research
July 09, 2024 July Patch Tuesday Unleashes a Torrent of Updates Microsoft fixes 138 bugs in Windows and other products this month Threat Research
June 05, 2024 Operation Crimson Palace: Sophos threat hunting unveils multiple clusters of Chinese state-sponsored activity targeting Southeast Asian government Threat clusters targeted a government agency for cyberespionage in a campaign that had precursors dating back to early 2022. Threat Research
May 14, 2024 No mayday call necessary for the year’s fifth Patch Tuesday A return to pre-April CVE volumes, mostly for Windows, though two vulns – or is it three? -- are already under exploit Threat Research
May 13, 2024 Extracting data from encrypted virtual disks: six methods For incident responders, a variety of techniques for information retrieval from locked-up VMs Security OperationsThreat Research
May 07, 2024 Defenders assemble: Time to get in the game Recent research finds signs of progress in the public-private alliance against ransomware Threat Research
April 26, 2024 Malware campaign attempts abuse of defender binaries Command-and-control wares try to sneak onto systems disguised as various vendors; payloads vary, but Sophos customers are protected Security OperationsThreat Research
April 17, 2024 ‘Junk gun’ ransomware: Peashooters can still pack a punch A Sophos X-Ops investigation finds that a wave of crude, cheap ransomware could spell trouble for small businesses and individuals – but also provide insights into threat actor career development and the wider threat landscape Threat Research
April 10, 2024 A tumultuous, titanic Patch Tuesday as Microsoft makes some changes The largest CVE count in recent history rolls out Threat Research