News

Enhancements and new offerings for Sophos’ email security portfolio

Bys s August 12, 2025

Following multiple enhancements to Sophos Email – the only MDR-optimized email security solution – Sophos is introducing two new offerings to boost email security posture.

News

Seven Malicious Go Packages Found Deploying Malware on Linux and macOS Systems
Bys s March 5, 2025

Cybersecurity researchers are alerting of an ongoing malicious campaign targeting the Go ecosystem with typosquatted modules that are designed to deploy loader malware on Linux and Apple macOS systems. “The threat actor has published at least seven packages impersonating widely used Go libraries, including one (github[.]com/shallowmulti/hypert) that appears to target financial-sector developers

Read More Seven Malicious Go Packages Found Deploying Malware on Linux and macOS Systems
News

Sophos AI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job
Bys s August 7, 2025

Following on from our preview, here’s Ben Gelman and Sean Bergeron’s research on enhancing command line classification with benign anomalous data

Read More Sophos AI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job
News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
Bys s April 22, 2026

Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens. The supply chain worm has been detected by both Socket and StepSecurity, with the companies tracking the activity under the name CanisterSprawl owing to the use of…

Read More Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
News

INC ransomware opsec fail allowed data recovery for 12 US orgs
Bys s January 23, 2026

Bill Toulas reports: An operational security failure allowed researchers to recover data that the INC ransomware gang stole from a dozen U.S. organizations. A deep forensic examination of the artifacts left behind uncovered tooling that had not been used in the investigated attack, but exposed attacker infrastructure that stored data exfiltrated from multiple victims. The……

Read More INC ransomware opsec fail allowed data recovery for 12 US orgs
News

Before Their Telegram Channel Was Banned Again, ScatteredLAPSUS$Hunters Dropped Files Doxing Government Employees
Bys s October 18, 2025

On October 16 and 17, the ScatteredLAPSUS$Hunters Telegram channel repeatedly violated Telegram’s TOS by leaking personal information on people — and in this case, information on employees of the Department of Justice (DOJ/FBI), U.S. Attorneys Office (DOJ/USAO), the Department of Homeland Security (DHS), and the Federal Aviation Authority (FAA). DataBreaches did not report on it……

Read More Before Their Telegram Channel Was Banned Again, ScatteredLAPSUS$Hunters Dropped Files Doxing Government Employees
News

HHS Releases Updated Security Risk Assessment Tool
Bys s September 9, 2025

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) and the Assistant Secretary for Technology Policy (ASTP) are pleased to announce the release of version 3.6 of the Security Risk Assessment (SRA) Tool. To help you make the most of these updates, ASTP and OCR are hosting live webinars on September……

Read More HHS Releases Updated Security Risk Assessment Tool

Similar Posts