Metrics Every CISO Needs for Threat-Led Defense Success
Security leaders are under increasing pressure to prove that their defenses actually work. Board members and stakeholders want to...
Blog
Fake Chrome Extension “Safery” Steals Ethereum Wallet Seed Phrases Using Sui Blockchain
Nov 13, 2025Ravie LakshmananBrowser Security / Threat Intelligence Cybersecurity researchers have uncovered a malicious Chrome extension that poses as a...
Google Sues ‘Lighthouse’ Phishing Service After $1B+ Scams Target Millions
Image: halfpoint/Envato Google is going after a group of Chinese hackers who have reportedly stolen over $1 billion from millions...
Rust in Android: move fast and fix things
Posted by Jeff Vander Stoep, Android Last year, we wrote about why a memory safety strategy that focuses on vulnerability...
Sophos named a Leader in the KuppingerCole 2025 Leadership Compass for Email Security
Click to enlarge We’re excited to announce that Sophos has been named a Leader across all four evaluation categories —...
Case Study: University of West England uses Sophos solutions to protect thousands of students across multiple campuses
At the University of the West of England (UWE Bristol), cybersecurity plays a critical role in ensuring uninterrupted education for...
How Rapid AI Adoption Is Creating an Exposure Gap
As organizations rush to deploy AI, enterprise defenses are struggling to keep up. This blog explores the emerging AI...
Book Review: The Business of Secrets
The Business of Secrets: Adventures in Selling Encryption Around the World by Fred Kinch (May 24, 2004) From the...
Understanding Classroom Management Styles and How To Find the Right One for Your Students
Every teacher runs their classroom a little differently. Some thrive on structure, others on flexibility, and most land somewhere...
Building checksec without boundaries with Checksec Anywhere
Since its original release in 2009, checksec has become widely used in the software security community, proving useful in...
U.S. CISA adds WatchGuard Firebox, Microsoft Windows, and Gladinet Triofox flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds WatchGuard Firebox, Microsoft Windows, and Gladinet Triofox flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November...
Amazon alerts: advanced threat actor exploits Cisco ISE & Citrix NetScaler zero-days
Amazon alerts: advanced threat actor exploits Cisco ISE & Citrix NetScaler zero-days Pierluigi Paganini November 13, 2025 Amazon warns that...
OWASP Top 10 Business Logic Abuse: What You Need to Know
Over the past few years, API security has gone from a relatively niche concern to a headline issue. A...
How AI-Generated Content is Fueling Next-Gen Phishing and BEC Attacks: Detection and Defense Strategies
With over 25 years of experience in cybersecurity and hundreds of incident response cases across UK businesses, I’ve witnessed the most dramatic shift in attack sophistication to date. AI phishing attacks have fundamentally reshaped the threat landscape, with attackers now using natural language models to craft emails that even experienced...
GUEST ESSAY: How to defend against decision mimicry — a practical AI-era checklist for leaders
By Nikolay Valov AI is getting better at mimicking how leaders think — not just how they sound. The...