Sophos MDR: New analyst response actions for Microsoft 365
Powerful new capabilities enable Sophos MDR analysts to respond to M365 attacks on your behalf.
Similar Posts
Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign
Bys sMicrosoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks. The certificates were “used in fake Teams setup files to deliver the Oyster backdoor and ultimately deploy Rhysida ransomware,” the Microsoft Threat Intelligence team said in…
A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist
Bys sAnother adversary picks up the email bombing / vishing Storm-1811 playbook, doing thorough reconnaissance to target specific employees with fake help desk call—this time, over the phone.
WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately
Bys sThe maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day vulnerability. Tracked as CVE-2025-8088 (CVSS score: 8.8), the issue has been described as a case of path traversal affecting the Windows version of the tool that could be exploited to obtain arbitrary code execution by crafting malicious…
Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks
Bys sCybersecurity researchers have discovered a malicious package in the Python Package Index (PyPI) repository that introduces malicious behavior through a dependency that allows it to establish persistence and achieve code execution. The package, named termncolor, realizes its nefarious functionality through a dependency package called colorinal by means of a multi-stage malware operation, Zscaler
Casual White House Starlink Use Is A Cybersecurity Nightmare, A Transparency Problem, And A Weird Marketing Stunt
Bys sfrom the but-her-emails dept at TechDirt: Wed, Mar 19th 2025 05:26am – Karl Bode It’s best to view Elon Musk’s DOGE as an attack. While right wing propaganda (and gullible media outlets and politicians) frame DOGE as a “cost saving” effort at “improving government efficiency,” that’s just flimsy-ass cover for its real purpose: the dismantling of corporate…
Reevaluating SSEs: A Technical Gap Analysis of Last-Mile Protection
Bys sSecurity Service Edge (SSE) platforms have become the go-to architecture for securing hybrid work and SaaS access. They promise centralized enforcement, simplified connectivity, and consistent policy control across users and devices. But there’s a problem: they stop short of where the most sensitive user activity actually happens—the browser. This isn’t a small omission. It’s a…