article

The Akira Playbook: How Ransomware Groups Are Weaponizing MFA Fatigue

The Akira Playbook: How Ransomware Groups Are Weaponizing MFA Fatigue

AndyC 20 November 2025

This article unpacks how Akira operationalized MFA push-spam into a global intrusion tactic, why traditional VPNs and weak identity controls continue...

Read More

Gartner: European IT leaders to boost spending on local clouds amid geopolitical worries

The Learning Counsel: 3 Steps to a Robust Zero-Trust Architecture in K-12 Schools This Year

AndyC 13 November 2025

This article was originally published in The Learning Counsel on 11/5/25 by Charlie Sander. It’s time for district leaders...

Read More

Signal’s Post-Quantum Cryptographic Implementation

Signal’s Post-Quantum Cryptographic Implementation

AndyC 30 October 2025

Signal has just rolled out its quantum-safe cryptographic implementation. Ars Technica has a really good article with details: Ultimately,...

Read More

Roll your own bot detection: fingerprinting/JavaScript (part 1)

Roll your own bot detection: fingerprinting/JavaScript (part 1)

AndyC 8 October 2025

This is the first article in a two-part series where we show how to build your own anti-bot system to...

Read More

Magazine Insights

Scam Compound Operators: Members of The Four Great Families sentenced to death in China

AndyC 4 October 2025

(photo from BBC article "China sentences 11 members of mafia family to death") On Monday this week, Chinese authorities sentenced...

Read More

Invisible Prompt Injection: A Threat to AI Security

The Menace of Covert Prompt Injection on AI Security

AndyC 23 January 2025

This piece will elucidate the concept of invisible prompt injection, detailing its operational mechanics, illustrating a potential attack scenario, and...

Read More

Pacific Rim timeline: Information for defenders from a braid of interlocking attack campaigns

Chronology of Pacific Rim: Guidance for protectors from a network of interwoven assault campaigns

AndyC 1 November 2024

As delineated in our overview article, Sophos has been actively countering various threat groups originating from China targeting perimeter devices...

Read More

Focus on What Matters Most: Exposure Management and Your Attack Surface

Concentrate on the Vital Aspects: Controlling Exposure and Your Attack Landscape

AndyC 24 August 2024

If you want to hear firsthand Andy's insights, watch Intruder's on-demand webinar. To get more information on diminishing your attack...

Read More

Content updates and product architecture: Sophos Endpoint

Updates for content and architecture of products: Sophos Endpoint

AndyC 16 August 2024

Expanding on our recent piece regarding the kernel drivers in Sophos Intercept X, in which we explored their testing methods...

Read More

Turning the screws: The pressure tactics of ransomware gangs

Raising the stakes: The coercion strategies of ransomware syndicates

AndyC 6 August 2024

In the year 2021, Sophos X-Ops released an article detailing the top ten methods ransomware operators employ to intensify pressure...

Read More

Think Your Computer is Safe? Unmasking the Most Famous Computer Viruses in the Cyberworld!

Believe Your PC is Secure? Revealing the Most Well-Known Computer Malware in the Cyberworld!

AndyC 24 July 2024

Back in 1966, a computer expert and mathematician named John von Neumann released an essay titled, “Concept of self-replicating mechanisms”....

Read More

WHAT-DOES-TRANSPARENCY-IN-CYBERSECURITY-REALLY-MEAN.jpg

UNDERSTANDING THE TRUE MEANING OF OPENNESS AND CLARITY IN ONLINE SECURITY

AndyC 1 June 2024

Published in: ...

Read More

Cybersecurity-in-education-What-s-missing-Black-hat.jpg

Security Measures in Education: What’s Lacking? – Dr. Erdal Ozkaya

AndyC 1 June 2024

Security Measures...

Read More

ESET Threat Report H2 2025

ESET Threat Report H2 2025

AndyC 17 December 2025

ESET Research A view of the H2 2025 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

SonicWall warns of actively exploited flaw in SMA 100 AMC

SonicWall warns of actively exploited flaw in SMA 100 AMC

AndyC 18 December 2025

Signal’s Post-Quantum Cryptographic Implementation

Why Venture Capital Is Betting Against Traditional SIEMs

AndyC 18 December 2025

CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

AndyC 18 December 2025

Enterprise Spotlight: Setting the 2026 IT agenda

The Hidden Cost of “AI on Every Alert” (And How to Fix It)

AndyC 18 December 2025

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

AndyC 18 December 2025