Human-in-the-loop security will define 2026: Predictions from Sophos experts
Categories: Sophos Insights Tags: Sophos, Year in Review
-
-
Year in Review 2025: The major headlines and moments from Sophos this year
Categories: Sophos Insights Tags: Year in Review, security news
-
The State of Ransomware in Enterprise 2025
Categories: Products & Services Tags: Ransomware, Enterprise, Solutions, The State of Ransomware
-
Laughter in the dark: Tales of absurdity from the cyber frontline and what they taught us
From a quintuple-encryption ransomware attack to zany dark web schemes and AI fails, Sophos X-Ops looks back at some of our favorite weirdest incidents from the last few years – and the serious lessons behind them Categories: Threat Research Tags: Ransomware, Hive, Lockbit, BlackCat, LLM, AI, Money Laundering
-
Researchers Null-Route Over 550 Kimwolf and Aisuru Botnet Command Servers
The Black Lotus Labs team at Lumen Technologies said it null-routed traffic to more than 550 command-and-control (C2) nodes associated with the AISURU/Kimwolf botnet since early October 2025. AISURU and its Android counterpart, Kimwolf, have emerged as some of the biggest botnets in recent times, capable of directing enslaved devices to participate in distributed denial-of-service…
-
AI Agents Are Becoming Privilege Escalation Paths
AI agents have quickly moved from experimental tools to core components of daily workflows across security, engineering, IT, and operations. What began as individual productivity aids, like personal code assistants, chatbots, and copilots, has evolved into shared, organization-wide agents embedded in critical processes. These agents can orchestrate workflows across multiple systems, for example:
-
Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware
Security experts have disclosed details of an active malware campaign that’s exploiting a DLL side-loading vulnerability in a legitimate binary associated with the open-source c-ares library to bypass security controls and deliver a wide range of commodity trojans and stealers. “Attackers achieve evasion by pairing a malicious libcares-2.dll with any signed version of the legitimate…
-
Victorian Department of Education says hackers stole students’ data
Sergiu Gatlan reports: The Department of Education in Victoria, Australia, notified parents that attackers accessed a database containing the personal information and email addresses of current and former students, prompting password resets. The department disclosed the breach in letters sent to parents, stating that an unauthorized third party accessed students’ names, school names, year levels,……
-
Eurail passengers taken for a ride as data breach spills passports, bank details
Connor Jones reports: Eurail has confirmed customer information was stolen in a data breach, according to notification emails sent out this week. The European travel company, also known as Interrail to EU residents, initially posted the news on January 10, but affected customers, the number of whom was not disclosed, began receiving emails on January 13. […]……
-
Data protection agency tells Coupang to stop publishing unconfirmed information about data breach
Hyeon Ye-Seul reports: Korea’s data protection watchdog on Wednesday told e-commerce giant Coupang to stop publishing its own findings about a data breach that compromised the personal information of millions of users, warning that unverified statements could mislead users and undermine an ongoing official investigation. The Personal Information Protection Commission (PIPC) said Coupang had disclosed……