Older hardware and outdated operating systems contribute to attacks Contact us today for more information about SOPHOS cyber security solutions
Continue Reading-
July Patch Tuesday is Rich in Azure, Windows Issues
Windows-facing issues make up the bulk of the 85 CVEs addressed, with one vulnerability under active exploit in the wild Contact us today for more information about SOPHOS cyber security […]
Continue Reading -
Confluence exploits used to drop ransomware on vulnerable servers
Automated attacks are now widely exploiting the Atlassian vulnerability Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Sophos uncovers how APT groups carried out highly targeted attack
Two groups with common task targeted network security devices in two-stage attacks, dropping remote access tools. Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Telerik UI exploitation leads to cryptominer, Cobalt Strike infections
Attacker targets bugs in a popular web application graphical interface development tool Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Lighter Patch Tuesday for June remains rich in LDAP vulns
The second-lightest set of updates so far in 2022 goes heavy on RCEs, brings along four Intel patches for company Contact us today for more information about SOPHOS cyber security […]
Continue Reading -
Move fast, unbreak things: About the Sophos Active Adversary Playbook 2022
Our latest report shows that the most pleasant way to learn from Rapid Response mayhem is to read about how it worked out for someone else Contact us today for […]
Continue Reading -
Chain of Fools and Curveball. Microsoft update CVE-2020-0601 Q&A
This past Tuesday, Microsoft released its normal, monthly updates to Windows and other Microsoft products. Among the fixes included in this month’s release was one that resolves a security vulnerability […]
Continue Reading -
MyKings botnet spreads headaches, cryptominers, and Forshare malware
There’s a pretty good chance everyone who reads this story will have had some degree of interaction with a botnet we call MyKings (and others call DarkCloud or Smominru), whether […]
Continue Reading -
A Lighter-than-normal Patch Tuesday for December, 2019
In this month’s security updates, Microsoft is fixing 36 vulnerabilities: 7 of them are considered critical, 27 important, and 1 moderate. One of them is not categorized but, based on […]
Continue Reading -
Baldr vs The World: A SophosLabs report
(This blog post is a condensed summary of the report Baldr vs The World. – ed.) The videos touting cheat utilities for games like Apex Legends and Counter Strike: Go […]
Continue Reading -
A new Equation Editor exploit goes commercial, as maldoc attacks using it spike
There is a distinct point of maturation in the life cycle of an Office exploit: the point where it becomes generally available for the crimeware groups. Before that point the […]
Continue Reading -
‘Oto Gonderici’ Excel formula injections target Turkish victims
SophosLabs has been tracking the activities of a threat actor implicated in a large number of malicious spam attacks targeting large organizations based in Turkey since last fall. The attacks […]
Continue Reading -
16 critical vulnerabilities, some being exploited, fixed in July, 2019 Windows updates
Microsoft released their monthly security updates for July today. This month’s fixes address 77 vulnerabilities that affect Windows and a range of software that runs on Windows, mainly Internet Explorer, […]
Continue Reading -
CVE-2019-0888: Use-After-Free in Windows ActiveX Data Objects (ADO)
The SophosLabs Offensive Security Research team discovered a security vulnerability in the ActiveX Data Objects (ADO) component of Windows. Microsoft resolved the issue in the June 2019 edition of Patch […]
Continue Reading
You must be logged in to post a comment.