Advancing Cybersecurity for Microsoft Environments
From certified MDR services to open threat intelligence frameworks, Sophos is delivering the clarity, context, and confidence organizations need to stay ahead of evolving threats.
Similar Posts
Treasury cancels $21 million in Booz Allen contracts, blaming a breach that happened years ago
Bys sCNN reports: The Treasury Department cut ties with Booz Allen Hamilton on Monday and announced that it was canceling $21 million in federal contracts with the consulting giant because one of its ex-employees previously leaked President Donald Trump’s tax returns to the press. A statement from Treasury Secretary Scott Bessent referenced Charles Littlejohn, a onetime……
PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
Bys sCybersecurity researchers have discovered a set of four security flaws in OpenSynergy’s BlueSDK Bluetooth stack that, if successfully exploited, could allow remote code execution on millions of transport vehicles from different vendors. The vulnerabilities, dubbed PerfektBlue, can be fashioned together as an exploit chain to run arbitrary code on cars from at least three major…
Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations
Bys sGoogle on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for command-and-control (C2). The tech giant, which discovered the activity in late October 2024, said the malware was hosted on a compromised government website and was used to target multiple other government entities….
Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster
Bys sBill Toulas reports: The Dutch Police (Politie) dismantled the ZServers/XHost bulletproof hosting operation after taking offline 127 servers used by the illegal platform. Earlier this week, the authorities in the United States, Australia, and the United Kingdom, announced sanctions against the same bulletproof hosting provider for its involvement in cybercrime operations. Specifically, the operators of Zservers were accused of…
Google Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security Products
Bys sGoogle has revealed that it observed 75 zero-day vulnerabilities exploited in the wild in 2024, down from 98 in 2023. Of the 75 zero-days, 44% of them targeted enterprise products. As many as 20 flaws were identified in security software and appliances. “Zero-day exploitation of browsers and mobile devices fell drastically, decreasing by about a…
U.S. Arrests Key Facilitator in North Korean IT Worker Scheme, Seizes $7.74 Million
Bys sThe U.S. Department of Justice (DoJ) on Monday announced sweeping actions targeting the North Korean information technology (IT) worker scheme, leading to the arrest of one individual and the seizure of 29 financial accounts, 21 fraudulent websites, and nearly 200 computers. The coordinated action saw searches of 21 known or suspected “laptop farms” across 14…