Defenders assemble: Time to get in the game
Ransomware often feels like an insurmountable problem that will plague us forever, but recent data suggests we may be finally...
Ransomware often feels like an insurmountable problem that will plague us forever, but recent data suggests we may be finally...
We are investigating a ransomware campaign that abuses legitimate Sophos executables and DLLs by modifying their original content, overwriting the...
In the 1960s and ’70s, the US firearms market saw an influx of cheaply-made, imported handguns. Legislators targeted the proliferation...
Several months of relative calm are over for Windows administrators, as Microsoft on Tuesday released 147 patches affecting ten product...
In December 2023, Sophos X-Ops received a report of a false positive detection on an executable signed by a valid...
The first Sophos Active Adversary Report of 2024 presents what the Sophos X-Ops Incident Response (IR) team has learned about...
Remote Desktop Protocol (RDP) was developed by Microsoft to allow users, administrators, and others to connect to remote computers over...
On Tuesday Microsoft released 59 CVEs, including 41 for Windows. A remarkable 20 other product groups or tools are also...
Cybercrime affects people from all walks of life, but it hits small businesses the hardest. While cyberattacks on large companies...
BYOVD (Bring Your Own Vulnerable Driver) is a class of attack in which threat actors drop known vulnerable drivers on...
Sophos X-Ops is tracking a developing wave of vulnerability exploitation targeting unpatched ConnectWise ScreenConnect installations. This page provides advice and...
Late on February 19, 2024, the main website of LockBit, the most prolific ransomware group in recent memory, was seized...
After a light start to the year, February delivered 72 patches and 21 advisories to Microsoft customers. The CVEs addressed...
In the spring of 2023, a recent retiree was drawn into what would become a horrifically expensive “relationship.” Lured through...
In July 2023, our proactive behavior rules triggered on an attempt to load a driver named pskmad_64.sys (Panda Memory Access...