How Attackers Bypass Synced Passkeys
Oct 15, 2025Ravie LakshmananData Protection / Browser Security TLDR Even if you take nothing else away from this piece, if...
Year: 2025
Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped
Microsoft on Tuesday released fixes for a whopping 183 security flaws spanning its products, including three vulnerabilities that have come...
Two CVSS 10.0 Bugs in Red Lion RTUs Could Hand Hackers Full Industrial Control
Oct 15, 2025Ravie LakshmananVulnerability / Critical Infrastructure Cybersecurity researchers have disclosed two critical security flaws impacting Red Lion Sixnet remote...
Hackers Target ICTBroadcast Servers via Cookie Exploit to Gain Remote Shell Access
Oct 15, 2025Ravie LakshmananVulnerability / Server Security Cybersecurity researchers have disclosed that a critical security flaw impacting ICTBroadcast, an autodialer...
Banking Scams Up 65% Globally in Past Year
Image: Adobe Stock Prices go up. Population goes up. And to complete this unhappy trinity, banking scams go up. A...
‘A Call to Arms’ as UK Faces 50% Surge in Major Cyberattacks
Image: Adobe Stock Cyberattacks are on the rise in the UK, according to the National Cyber Security Centre (NCSC), the...
Inspiring Futures: Empowering the Next Generation of Girls in Tech
At Sophos, we recognize the importance of creating early opportunities for girls to explore technology and develop skills for the...
Roll your own bot detection: server-side detection (part 2)
This is the second part of our series on building a lightweight, vendor-free anti-bot system to protect your login endpoint....
A Look at AI: Black Hat 2025 Revealed Concerns & Spotlighted Opportunities
Artificial Intelligence (AI) dominated conversations at Black Hat USA 2025. On the show floor, attendees and vendors discussed AI-powered capabilities...
Using Digital Twins to Model Cyber Risk: BS or BFF?
A “digital twin” – a construct borrowed from engineering and manufacturing – is having an extended moment across cybersecurity and beyond, with...
New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login
Oct 15, 2025Ravie Lakshmanan Enterprise Software / Vulnerability SAP has rolled out security fixes for 13 new security issues, including...
Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access
Enterprises today face a growing challenge: securing a distributed workforce, protecting SaaS and private applications, and staying ahead of evolving...
The 8 Most Dangerous File Types for Malware Infections
October 14, 2025 Every file your organization touches is a potential threat in disguise. Behind the spreadsheets, contracts, and reports...
Risk-Based Vulnerability Management: Prioritize What Actually Matters
Oct 14, 2025 Risk-Based Vulnerability Management (RBVM): Prioritize What Actually Matters Threat Detection and Response in cybersecurity is a two-part...
Researchers warn of widespread RDP attacks by 100K-node botnet
Researchers warn of widespread RDP attacks by 100K-node botnet Pierluigi Paganini October 14, 2025 A botnet of 100K+ IPs from...
