Sophos Firewall v21.5 is now available
New innovations and top-requested features
Similar Posts
Beware: Fake CAPTCHA Campaign Spreads Lumma Stealer in Multi-Industry Attacks
Bys sCybersecurity researchers are calling attention to a new malware campaign that leverages fake CAPTCHA verification checks to deliver the infamous Lumma information stealer. “The campaign is global, with Netskope Threat Labs tracking victims targeted in Argentina, Colombia, the United States, the Philippines, and other countries around the world,” Leandro Fróes, senior threat research engineer at
Why top SOC teams are shifting to Network Detection and Response
Bys sSecurity Operations Center (SOC) teams are facing a fundamentally new challenge — traditional cybersecurity tools are failing to detect advanced adversaries who have become experts at evading endpoint-based defenses and signature-based detection systems. The reality of these “invisible intruders” is driving a significant need for a multi-layered approach to detecting threats,
⚡ Weekly Recap: Chrome 0-Day, IngressNightmare, Solar Bugs, DNS Tactics, and More
Bys sEvery week, someone somewhere slips up—and threat actors slip in. A misconfigured setting, an overlooked vulnerability, or a too-convenient cloud tool becomes the perfect entry point. But what happens when the hunters become the hunted? Or when old malware resurfaces with new tricks? Step behind the curtain with us this week as we explore breaches…
Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach
Bys sEnterprise data backup platform Commvault has revealed that an unknown nation-state threat actor breached its Microsoft Azure environment by exploiting CVE-2025-3928 but emphasized there is no evidence of unauthorized data access. “This activity has affected a small number of customers we have in common with Microsoft, and we are working with those customers to provide…
Zaporizhzhia Cyber Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
Bys sThe following is a machine translation from a report in Ukrainian by the country’s national police cyber department: A 35-year-old man hacked more than 5,000 customer accounts of a world-famous hosting company to generate cryptocurrency on the organization’s servers. The defendant faces up to 15 years in prison. Police officers determined that a 35-year-old native…
Department of Justice says Berkeley Research Group data breach may have exposed information on diocesan sex abuse survivors
Bys sDaniel Payne reports: The U.S. Department of Justice says a recent data breach of a California consulting firm exposed data of Catholic clergy abuse survivors in nearly a dozen bankruptcy lawsuits. In a May 6 letter addressed to attorneys at law firm Proskauer Rose LLP, the Justice Department’s Nan Eitel, the associate general counsel for Chapter…