Year in Review 2025: The major headlines and moments from Sophos this year

Docket Number 25-0883 in District Court for the District of Columbia. Lawsuit filed against Defense Secretary Pete Hegseth, DNI Tulsi Gabbard, CIA Director John Ratcliffe, Treasury Secretary Scott Bessent, Secretary of State and acting Archivist Marco Rubio, and the U.S. National Archives and Records Administration concerning news reports that journalist Jeffery Goldberg had been added…

The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a known malware dubbed SNOWLIGHT and a new open-source tool called VShell to infect Linux systems. “Threat actors are increasingly using open source tools in their arsenals for cost-effectiveness and obfuscation to save money and, in…

Cybersecurity researchers have disclosed details of a high-severity flaw impacting the popular async-tar Rust library and its forks, including tokio-tar, that could result in remote code execution under certain conditions. The vulnerability, tracked as CVE-2025-62518 (CVSS score: 8.1), has been codenamed TARmageddon by Edera, which discovered the issue in late August 2025. It impacts several

Gabriel Dillard reports: Two men were indicted by a federal grand jury Thursday with six counts of wire fraud stemming from a $1.6 million phishing scheme against the County of Fresno. Jafaar September Nyangoro, 52, of Franklin, Tennessee, and Peter Bah Acha, 45 of Berlin, Germany, are accused of secretly gaining control of an email…

Penetration testing helps organizations ensure IT systems are secure, but it should never be treated in a one-size-fits-all approach. Traditional approaches can be rigid and cost your organization time and money – while producing inferior results.  The benefits of pen testing are clear. By empowering “white hat” hackers to attempt to breach your system using…

Sophos X-Ops uncovers a recent campaign from an Android RAT first seen in 2019 – now infecting users in Taiwan