News

Human-in-the-loop security will define 2026: Predictions from Sophos experts

Bys s January 14, 2026

Categories: Sophos Insights

Tags: Sophos, Year in Review

News

Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
Bys s August 21, 2025

Threat actors have been observed leveraging the deceptive social engineering tactic known as ClickFix to deploy a versatile backdoor codenamed CORNFLAKE.V3. Google-owned Mandiant described the activity, which it tracks as UNC5518, as part of an access-as-a-service scheme that employs fake CAPTCHA pages as lures to trick users into providing initial access to their systems, which…

Read More Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
News

TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure
Bys s February 9, 2026

Cybersecurity researchers have called attention to a “massive campaign” that has systematically targeted cloud native environments to set up malicious infrastructure for follow-on exploitation. The activity, observed around December 25, 2025, and described as “worm-driven,” leveraged exposed Docker APIs, Kubernetes clusters, Ray dashboards, and Redis servers, along with the recently disclosed

Read More TeamPCP Worm Exploits Cloud Infrastructure to Build Criminal Infrastructure
News

Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems
Bys s December 3, 2025

Cybersecurity researchers have discovered a malicious Rust package that’s capable of targeting Windows, macOS, and Linux systems, and features malicious functionality to stealthily execute on developer machines by masquerading as an Ethereum Virtual Machine (EVM) unit helper tool. The Rust crate, named “evm-units,” was uploaded to crates.io in mid-April 2025 by a user named “ablerust,”

Read More Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems
News

RANsacked: Over 100 Security Flaws Found in LTE and 5G Network Implementations
Bys s January 24, 2025

A group of academics has disclosed details of over 100 security vulnerabilities impacting LTE and 5G implementations that could be exploited by an attacker to disrupt access to service and even gain a foothold into the cellular core network. The 119 vulnerabilities, assigned 97 unique CVE identifiers, span seven LTE implementations – Open5GS, Magma, OpenAirInterface,…

Read More RANsacked: Over 100 Security Flaws Found in LTE and 5G Network Implementations
News

Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says
Bys s November 4, 2025

Tom Schuba reports: Rogue employees of a Chicago company that specializes in negotiating ransoms to mitigate cyber attacks were carrying out their own piracy in a plot to extort millions of dollars from a series of companies, prosecutors say. Kevin Tyler Martin, a ransomware threat negotiator for River North-based DigitalMint at the time of the……

Read More Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says
News

OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers
Bys s April 4, 2025

A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from DomainTools, which detected the activity after it discovered a phony website named cybersecureprotect[.]com hosted on Proton66 that masqueraded as an antivirus service. The threat intelligence firm said it

Read More OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers

Similar Posts