Build a prevention-first defense: The Sophos Cybersecurity Toolkit
Explore the Cybersecurity toolkit and start building your prevention-first strategy today.
Similar Posts
Experts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government Entities
Bys sIndian government entities have been targeted in two campaigns undertaken by a threat actor that operates in Pakistan using previously undocumented tradecraft. The campaigns have been codenamed Gopher Strike and Sheet Attack by Zscaler ThreatLabz, which identified them in September 2025. “While these campaigns share some similarities with the Pakistan-linked Advanced Persistent Threat (APT)
A faceless hacker stole my therapy notes – now my deepest secrets are online forever
Bys sIn September 2025, a Helsinki court ordered the release of Aleksanteri Tomminpoika Kivimäki (aka “Julius Kivimäki” aka “Zeekill”) pending the resolution of his appeal of an April 2024 conviction stemming from the theft of psychotherapy records of 33,000 individuals. Kivimäki was released because he might wind up having spent too much time in prison. But……
Rogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet Data
Bys sCybersecurity researchers have discovered a new malicious NuGet package that typosquats and impersonates the popular .NET tracing library and its author to sneak in a cryptocurrency wallet stealer. The malicious package, named “Tracer.Fody.NLog,” remained on the repository for nearly six years. It was published by a user named “csnemess” on February 26, 2020. It masquerades…
FreePBX Servers Targeted by Zero-Day Flaw, Emergency Patch Now Available
Bys sThe Sangoma FreePBX Security Team has issued an advisory warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with an administrator control panel (ACP) exposed to the public internet. FreePBX is an open-source private branch exchange (PBX) platform widely used by businesses, call centers, and service providers to manage voice communications. It’s built…
New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency
Bys sMisconfigured Docker API instances have become the target of a new malware campaign that transforms them into a cryptocurrency mining botnet. The attacks, designed to mine for Dero currency, is notable for its worm-like capabilities to propagate the malware to other exposed Docker instances and rope them into an ever-growing horde of mining bots. Kaspersky…
New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper
Bys sCybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that’s delivered by means of a digitally signed, notarized Swift application masquerading as a messaging app installer to bypass Apple’s Gatekeeper checks. “Unlike earlier MacSync Stealer variants that primarily rely on drag-to-terminal or ClickFix-style techniques, this sample adopts a more