What happens when a cybersecurity company gets phished?
A Sophos employee was phished, but we countered the threat with an end-to-end defense process
Similar Posts
CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries
Bys sThe Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday warned of renewed activity from an organized criminal group it tracks as UAC-0173 that involves infecting computers with a remote access trojan named DCRat (aka DarkCrystal RAT). The Ukrainian cybersecurity authority said it observed the latest attack wave starting in mid-January 2025. The activity is…
Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open
Bys sCentral Maine Healthcare posted a notice on its Facebook page today: On June 1, 2025, technicians monitoring the information systems at Central Maine Healthcare identified unusual activity within the system’s computer software. In response, they immediately secured and shut off all information technology applications and hardware, including network servers and phone systems. Central Maine Medical…
Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page
Bys sClick Studios, the developer of enterprise-focused password management solution Passwordstate, said it has released security updates to address an authentication bypass vulnerability in its software. The issue, which is yet to be assigned a CVE identifier, has been addressed in Passwordstate 9.9 (Build 9972), released August 28, 2025. The Australian company said it fixed a…
Village of Golf Manor considering paying ransom amid cyberattack
Bys sGiacomo Luca reports: The village of Golf Manor will consider paying a $10,000 ransom to unlock computer systems affected by a recent cyberattack. The ransomware attack infiltrated and encrypted the village’s computer systems and has made them inaccessible to administrators, village leaders said during a Nov. 24 council meeting. The malicious cyber actors have demanded a……
British law firm fined after ransomware group publishes confidential client data
Bys sAlexander Martin reports: A British law firm has been fined £60,000 ($80,000) after cybercriminals accessed the company’s case management system and published sensitive information on the dark web, something the company only learned about after being contacted by the National Crime Agency. DPP Law, based in Bootle, was found to have breached the United Kingdom’s…
When it rains, it pours? Kido had a second incident to address
Bys sDataBreaches did not mention this publicly sooner because Kido was already under great pressure due to the breach involving children’s personal information and photos. But now that many people are feeling some relief that the hackers have supposedly deleted all the data and won’t be calling parents any more, DataBreaches can reveal that on Monday,……