News

Introducing Sophos Advisory Services

Bys s October 1, 2025

See how your networks, systems, and employees stand up to simulated attacks before an adversary strikes.

News

Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution
Bys s March 6, 2025

Elastic has rolled out security updates to address a critical security flaw impacting the Kibana data visualization dashboard software for Elasticsearch that could result in arbitrary code execution. The vulnerability, tracked as CVE-2025-25012, carries a CVSS score of 9.9 out of a maximum of 10.0. It has been described as a case of prototype pollution….

Read More Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution
News

How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
Bys s March 28, 2025

Joseph Cox of 404 Media in collaboration with Court Watch writes: The FBI managed to track down and freeze millions of dollars of cryptocurrency Caesars Entertainment sent to a group of hackers that held the casino’s computer systems ransom, according to a 404 Media and Court Watch review of a recently unsealed court document. According…

Read More How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
News

RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control
Bys s April 30, 2025

Cybersecurity researchers have revealed that RansomHub’s online infrastructure has “inexplicably” gone offline as of April 1, 2025, prompting concerns among affiliates of the ransomware-as-a-service (RaaS) operation. Singaporean cybersecurity company Group-IB said that this may have caused affiliates to migrate to Qilin, given that “disclosures on its DLS [data leak site] have doubled since

Read More RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control
News

Innovation unlocked: Sophos Endpoint is now integrated with Taegis MDR and XDR
Bys s September 2, 2025

Customers gain immediate access to combined prevention, detection, and response capabilities in a single platform – while lowering costs and simplifying operations.

Read More Innovation unlocked: Sophos Endpoint is now integrated with Taegis MDR and XDR
News

Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown
Bys s October 2, 2025

Cybersecurity researchers have flagged a malicious package on the Python Package Index (PyPI) repository that claims to offer the ability to create a SOCKS5 proxy service, while also providing a stealthy backdoor-like functionality to drop additional payloads on Windows systems. The deceptive package, named soopsocks, attracted a total of 2,653 downloads before it was taken…

Read More Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown
News

Defending Against UNC3944: Cybercrime Hardening Guidance from the Frontlines
Bys s May 7, 2025

From Mandiant: UNC3944, which overlaps with public reporting on Scattered Spider, is a financially-motivated threat actor characterized by its persistent use of social engineering and brazen communications with victims. In early operations, UNC3944 largely targeted telecommunications-related organizations to support SIM swap operations. However, after shifting to ransomware and data theft extortion in early 2023, they…

Read More Defending Against UNC3944: Cybercrime Hardening Guidance from the Frontlines

Similar Posts