A return to pre-April CVE volumes, mostly for Windows, though two vulns – or is it three? — are already under exploit Contact us today for more information about SOPHOS […]
Continue Reading-
Extracting data from encrypted virtual disks: six methods
For incident responders, a variety of techniques for information retrieval from locked-up VMs Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Defenders assemble: Time to get in the game
Recent research finds signs of progress in the public-private alliance against ransomware Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Malware campaign attempts abuse of defender binaries
Command-and-control wares try to sneak onto systems disguised as various vendors; payloads vary, but Sophos customers are protected Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
‘Junk gun’ ransomware: Peashooters can still pack a punch
A Sophos X-Ops investigation finds that a wave of crude, cheap ransomware could spell trouble for small businesses and individuals – but also provide insights into threat actor career development […]
Continue Reading -
A tumultuous, titanic Patch Tuesday as Microsoft makes some changes
The largest CVE count in recent history rolls out Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Smoke and (screen) mirrors: A strange signed backdoor
Sophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirely Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024
The latter half of 2023 found numerous fronts on which attackers failed to press ahead. Are defenders failing to take advantage? Contact us today for more information about SOPHOS cyber […]
Continue Reading -
Remote Desktop Protocol: The Series
What is RDP, why is it a very nearly ubiquitous finding in incident response, and how can investigators run it to ground it when it goes wrong? An Active Adversary […]
Continue Reading -
59 CVEs primed for Microsoft’s March Patch Tuesday
Just two critical-severity issues addressed, though Azure and OMI admins won’t want to delay patching this month Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
The 2024 Sophos Threat Report: Cybercrime on Main Street
Ransomware remains the biggest existential cyber threat to small businesses, but others are growing. Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
It’ll be back: Attackers still abusing Terminator tool and variants
First released in May 2023, an EDR killer – and the vulnerable Zemana drivers it leverages – are still of interest to threat actors, along with variants and ported versions […]
Continue Reading -
ConnectWise ScreenConnect attacks deliver malware
Multiple attacks exploit vulnerabilities in an IT remote access tool to deliver a variety of different payloads into business environments Contact us today for more information about SOPHOS cyber security […]
Continue Reading -
LockBit: Lessons learned on winning the war on cybercrime
Making sense of the ransomware-group takedown — what it means for ransomware and law enforcement Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
February’s Patch Tuesday treats customers to 72 patches
Two issues under active exploit in the wild headline fixes across 13 product groups Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Cryptocurrency scams metastasize into new forms
“DeFi mining” scams adopted by pig-butchering rings create more problems for those trying to defend against them. Contact us today for more information about SOPHOS cyber security solutions
Continue Reading
You must be logged in to post a comment.