What happens when a cybersecurity company gets phished?
A Sophos employee was phished, but we countered the threat with an end-to-end defense process
Similar Posts
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Bys sCrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels associated with GlassWorm, a persistent software chain campaign targeting software developers through malicious packages and extensions. “Since at least early 2025, GlassWorm operators have systematically targeted software developers, a
NSW gov contractor uploaded Excel spreadsheet of flood victims’ data to ChatGPT
Bys sRy Crozier brings us today’s installment of the “No Need to Hack When It’s Leaking” Files The victims of the breach are applicants to the Northern Rivers Resilient Homes Program, under which the government is offering to either buy back flood-prone homes, contribute to the cost of rebuilding, or to improve resilience such as by elevating……
Equifax Class Action Settlement 2024 Payment Started, Claimants Getting Paid Via Checks
Bys sUrvashi reports: In 2017, Equifax, one of the largest credit reporting agencies in the United States, announced a significant data breach that exposed the personal and financial information of about 147 million individuals. This highly sensitive data included Social Security numbers, birth dates, addresses, and, for some victims, credit card information. News of the breach…
System Status: “Things Happen”
Bys sLike a broken clock, President Trump’s despicable response to murder, that “Things happen,” is occasionally accurate. Waking up early to start working on Monday, yours truly managed to slip and fall down the stairs in her home. Did you know that the adult human has five lumbar vertebrae? I fractured four of them. Needless to……
CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat
Bys sCTM360 has identified a rapidly expanding WhatsApp account-hacking campaign targeting users worldwide via a network of deceptive authentication portals and impersonation pages. The campaign, internally dubbed HackOnChat, abuses WhatsApp’s familiar web interface, using social engineering tactics to trick users into compromising their accounts. Investigators identified thousands of malicious URLs
AI-Powered SaaS Security: Keeping Pace with an Expanding Attack Surface
Bys sOrganizations now use an average of 112 SaaS applications—a number that keeps growing. In a 2024 study, 49% of 644 respondents who frequently used Microsoft 365 believed that they had less than 10 apps connected to the platform, despite the fact that aggregated data indicated over 1,000+ Microsoft 365 SaaS-to-SaaS connections on average per deployment….