Sophos Annual Threat Report appendix: Most frequently encountered malware and abused software
These are the tools of the trade Sophos detected in use by cybercriminals over 2024
Similar Posts
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score
Bys sMicrosoft has released patches to address two Critical-rated security flaws impacting Azure AI Face Service and Microsoft Account that could allow a malicious actor to escalate their privileges under certain conditions. The flaws are listed below – CVE-2025-21396 (CVSS score: 7.5) – Microsoft Account Elevation of Privilege Vulnerability CVE-2025-21415 (CVSS score: 9.9) – Azure AI…
Clop ransomware is now extorting 66 Cleo data-theft victims
Bill Toulas reports: The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands. The cybercriminals announced that they are contacting those companies directly to provide links to a secure chat channel for conducting ransom payment negotiations….
Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files
Bys sA now patched security vulnerability in Zimbra Collaboration was exploited as a zero-day earlier this year in cyber attacks targeting the Brazilian military. Tracked as CVE-2025-27915 (CVSS score: 5.4), the vulnerability is a stored cross-site scripting (XSS) vulnerability in the Classic Web Client that arises as a result of insufficient sanitization of HTML content in…
UK: Two NHS trusts hit by cyberattack that exploited Ivanti flaw
Bys sIt’s been an all-too-common headline over the past decade. Now, two more National Health Service trusts in the U.K. have been impacted by cyberattacks, although there is no indication yet that patient data was accessed or patient services were affected. Emma Woollacott reports: Two NHS trusts have suffered cyber attacks which exposed staff data, prompting…
U.S. Arrests Key Facilitator in North Korean IT Worker Scheme, Seizes $7.74 Million
Bys sThe U.S. Department of Justice (DoJ) on Monday announced sweeping actions targeting the North Korean information technology (IT) worker scheme, leading to the arrest of one individual and the seizure of 29 financial accounts, 21 fraudulent websites, and nearly 200 computers. The coordinated action saw searches of 21 known or suspected “laptop farms” across 14…
Hackers Use Facebook Ads to Spread JSCEAL Malware via Fake Cryptocurrency Trading Apps
Bys sCybersecurity researchers are calling attention to an ongoing campaign that distributes fake cryptocurrency trading apps to deploy a compiled V8 JavaScript (JSC) malware called JSCEAL that can capture data such as credentials and wallets. The activity leverages thousands of malicious advertisements posted on Facebook in an attempt to redirect unsuspecting victims to counterfeit sites that