October Patch Tuesday Fails Hard — Windows Update Considered Harmful?
Showstopper bugs with security certificates—plus failing USB keyboards and mice—cause QA questions.Microsoft’s Windows security update rollup is badly buggy this...
#featured
Announcing the latest evolution of our Security Operations portfolio
Today, we’ve announced significant enhancements to our Security Operations portfolio, already trusted by 75,000 organizations worldwide via Sophos XDR and...
Introducing Sophos Identity Threat Detection and Response (ITDR)
Adversaries exploit compromised identities, infrastructure weaknesses, and misconfigurations to gain unauthorized access to sensitive data and systems, putting user-based access...
Getting salty with LLMs: SophosAI unveils new defense against jailbreaking at CAMLIS 2025
Scientists from the SophosAI team will present their research at the upcoming Conference on Applied Machine Learning in Information Security...
When the Backbone Breaks: Why the F5 Breach is a Five-Alarm Fire
They say a fire drill wakes you up. This isn’t a drill. The breach at F5 — the theft...
Sophos Intelix for Microsoft Copilot now brings threat intelligence directly into Copilot
We’re excited to announce the early access program (EAP) for Sophos Intelix for Microsoft Copilot, a new integration that brings...
From inbox clutter to costly compromise: Why email threats still matter
When people think of cyber threats today, ransomware tends to dominate the conversation. It’s flashy, destructive, and grabs headlines. But...
Suspected Chinese Hackers Spent a Year-Plus Inside F5 Systems: Report
The Chinese state-sponsored threat actors believed to be behind the high-profile hack of F5’s corporate networks reportedly infiltrated the security...
Threat Intelligence Executive Report – Volume 2025, Number 5
The Counter Threat Unit™ (CTU) research team analyzes security threats to help organizations protect their systems. Based on observations in...
Sky-High Hack: How $600 Unlocked Global Secrets Streaming from Space
Right now, satellites are broadcasting your most private data in plaintext.A groundbreaking academic study just exposed a catastrophic security failure:...
Qualys ROCon: From SOC To Roc, Evolving To Agentic Risk Surface Management
Global sales SVP at Qualys Shawn O’Brien kicked off the company’s Qualys ROCon 2025 event this week in Houston, Texas....
F5 network compromised
On October 15, 2025, F5 reported that a nation-state threat actor had gained long-term access to some F5 systems and...
October Patch Tuesday beats January ’25 record
Microsoft on Tuesday announced 170 patches affecting 21 product families. Eight of the addressed issues are considered by Microsoft to...
MCPTotal Unfurls Hosting Service to Secure MCP Servers
MCPTotal today launched a hosting service to secure the Model Context Protocol (MCP) servers that are now starting to be...
China’s Flax Typhoon Exploits ArcGIS App for Year-Long Persistence
A China-backed threat group exploited what ReliaQuest researchers called a “common security blind spot” to maintain persistence in a widely...
