Standing on the Windows system, awaiting transformation
This past week, Sophos engaged in the Windows Endpoint Security Ecosystem Summit hosted by Microsoft. In light of the recent...
threat—research
September Patch Tuesday covers 79 Vulnerabilities
Microsoft has just rolled out 79 updates across eleven product lines. Among these, seven critical issues related to Azure, SharePoint,...
Update on 79 Common Vulnerability Exposures in September
On Tuesday, the tech giant Microsoft unveiled a total of 79 security updates across eleven product ranges. Among these, seven...
The Return of Crimson Palace: Novel Instruments, Approaches, and Objectives
Following a short hiatus in operations, Sophos X-Ops is actively monitoring and countering what we confidently identify as a cyberespionage...
Atomic macOS Grasper initiates theft of crucial information on macOS
In the past, there was a general inclination to assume that macOS was more resilient to malware compared to Windows,...
Windows computers affected by updated attack tool
During the years 2022 and 2023, a research article was released by Sophos X-Ops regarding a set of tools designed...
Qilin ransomware captured snatching credentials saved in Google Chrome
While investigating a recent Qilin ransomware breach, the security analysts from Sophos X-Ops team detected malicious activities that resulted in...
Updates for content and architecture of products: Sophos Endpoint
Expanding on our recent piece regarding the kernel drivers in Sophos Intercept X, in which we explored their testing methods...
Major Release on August Tuesday
August 2024 witnessed an extensive release for Patch Tuesday by Microsoft. Unlike the previous month with a flood of 138...
Ransomware attackers introduce new EDR killer to their arsenal
Sophos analysts recently encountered a new EDR-killing utility being deployed by a criminal group who were trying to attack an...
Stay Calm, get knowledgeable
The Sophos X-Ops Incident Response unit has been investigating the strategies of a ransomware faction known as Mad Liberator. This...
The online protection kids aren’t all right
During the fourth year of our research survey on “The Future of Cybersecurity in Asia Pacific and Japan,” Sophos partnered...
Top security measures for ESXi environments
Businesses globally utilize the VMware ESXi hypervisor for virtualization. ESXi is labeled as a type-1 (or "bare metal") hypervisor, residing...
Raising the stakes: The coercion strategies of ransomware syndicates
In the year 2021, Sophos X-Ops released an article detailing the top ten methods ransomware operators employ to intensify pressure...
Driving tutorials: The nucleus operators in Sophos Intercept X Advanced
Functioning in ‘kernel-space’ – the most authoritative layer of an operating system, with direct entrance to memory, hardware, resource management,...
