News

Beyond the kill chain: What cybercriminals do with their money (Part 5)

Bys s May 15, 2025

In the last of our five-part series, Sophos X-Ops explores the implications and opportunities arising from threat actors’ involvement in real-world industries and crimes

News

131 Chrome Extensions Caught Hijacking WhatsApp Web for Massive Spam Campaign
Bys s October 20, 2025

Cybersecurity researchers have uncovered a coordinated campaign that leveraged 131 rebranded clones of a WhatsApp Web automation extension for Google Chrome to spam Brazilian users at scale. The 131 spamware extensions share the same codebase, design patterns, and infrastructure, according to supply chain security company Socket. The browser add-ons collectively have about 20,905 active users….

Read More 131 Chrome Extensions Caught Hijacking WhatsApp Web for Massive Spam Campaign
News

Beyond “Better Together”: Maximize your Microsoft 365 security with Sophos MDR
Bys s July 23, 2025

Sophos MDR and Microsoft 365 aren’t just “better” together, they’re “best” together.

Read More Beyond “Better Together”: Maximize your Microsoft 365 security with Sophos MDR
News

Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation
Bys s April 3, 2025

In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material (CSAM). “A total of 1.8 million users worldwide logged on to the platform between April 2022 and March 2025,” Europol said in a statement. “On March 11, 2025, the server, which contained around…

Read More Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation
News

9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
Bys s March 18, 2026

Cybersecurity researchers have warned about the risks posed by low-cost IP KVM (Keyboard, Video, Mouse over Internet Protocol) devices, which can grant attackers extensive control over compromised hosts. The nine vulnerabilities, discovered by Eclypsium, span four different products from GL-iNet Comet RM-1, Angeet/Yeeso ES3 KVM, Sipeed NanoKVM, and JetKVM. The most severe of them allow

Read More 9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors
News

Sophos Partners with Capsule on New Cyber Insurance Program
Bys s May 20, 2025

The partnership rewards real-world, observable security controls, while removing the traditional barriers to insurance coverage.

Read More Sophos Partners with Capsule on New Cyber Insurance Program
News

Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing
Bys s August 25, 2025

The advanced persistent threat (APT) actor known as Transparent Tribe has been observed targeting both Windows and BOSS (Bharat Operating System Solutions) Linux systems with malicious Desktop shortcut files in attacks targeting Indian Government entities. “Initial access is achieved through spear-phishing emails,” CYFIRMA said. “Linux BOSS environments are targeted via weaponized .desktop

Read More Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing

Similar Posts