159-CVE January Patch Tuesday smashes single-month record
Credit to Author: Angela Gunn| Date: Wed, 15 Jan 2025 03:09:41 +0000
Brace yourselves… and consider reading your email in plaintext for now
Read morethreat research
Sophos MDR bloque et suit les activités du probable acteur étatique iranien “MuddyWater”
Credit to Author: gallagherseanm| Date: Mon, 25 Nov 2024 20:41:20 +0000
Sophos MDR a observé une nouvelle campagne qui utilise le phishing ciblé pour inciter les victimes potentielles à télécharger un outil RMM (Remote Machine Management) légitime afin de récupérer des identifiants.
Read moreDes QR Codes à la compromission : la menace croissante du “quishing”
Credit to Author: Andrew Brandt| Date: Wed, 20 Nov 2024 13:42:40 +0000
Les attaquants exploitent les QR Codes dans les pièces jointes PDF des emails pour attaquer par spearphishing les identifiants des entreprises à partir d’appareils mobiles.
Read morePrioritizing patching: A deep dive into frameworks and tools – Part 2: Alternative frameworks
Credit to Author: Matt Wixey| Date: Mon, 30 Dec 2024 15:05:30 +0000
In the second of a two-part series on tools and frameworks designed to help with remediation prioritization, we explore some alternatives to CVSS
Read morePrioritizing patching: A deep dive into frameworks and tools – Part 1: CVSS
Credit to Author: Matt Wixey| Date: Fri, 27 Dec 2024 17:33:53 +0000
In the first of a two-part series exploring tools and frameworks which can help organizations with remediation prioritization, Sophos X-Ops takes a look at the Common Vulnerability Scoring System (CVSS)
Read morePhishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Credit to Author: gallagherseanm| Date: Thu, 19 Dec 2024 15:11:48 +0000
A sudden disruption of a major phishing-as-a-service provider leads to the rise of another…that looks very familiar
Read moreThe Bite from Inside: The Sophos Active Adversary Report
Credit to Author: Angela Gunn| Date: Thu, 12 Dec 2024 14:00:56 +0000
A sea change in available data fuels fresh insights from the first half of 2024
Read moreKeeping it real: Sophos and the 2024 MITRE ATT&CK Evaluations: Enterprise
Credit to Author: Michael Wood| Date: Wed, 11 Dec 2024 15:35:22 +0000
Sophos X-Ops looks at the realism of this year’s MITRE ATT&CK Evaluations
Read moreDecember Patch Tuesday arrives bearing 71 gifts
Credit to Author: Angela Gunn| Date: Wed, 11 Dec 2024 08:00:38 +0000
Seventeen Critical-severity CVEs ready to deck your halls; also, new blog guidance for Windows Server admins
Read moreSophos MDR blocks and tracks activity from probable Iranian state actor “MuddyWater”
Credit to Author: gallagherseanm| Date: Wed, 20 Nov 2024 17:12:12 +0000
Sophos MDR has observed a new campaign that uses targeted phishing to entice the target to download a legitimate remote machine management tool to dump credentials. We believe with moderate confidence that this activity, which we track as STAC 1171, is related to an Iranian threat actor commonly referred to as MuddyWater or TA450. Earlier […]
Read more