From Security Operations to Security Leadership: Sophos CISO Advantage
Categories: Products & Services, Security Operations
Similar Posts
New macOS XCSSET Variant Targets Firefox with Clipper and Persistence Module
Bys sCybersecurity researchers have discovered an updated version of a known Apple macOS malware called XCSSET that has been observed in limited attacks. “This new variant of XCSSET brings key changes related to browser targeting, clipboard hijacking, and persistence mechanisms,” the Microsoft Threat Intelligence team said in a Thursday report. “It employs sophisticated encryption and obfuscation
CISO’s Expert Guide To AI Supply Chain Attacks
Bys sAI-enabled supply chain attacks jumped 156% last year. Discover why traditional defenses are failing and what CISOs must do now to protect their organizations. Download the full CISO’s expert guide to AI Supply chain attacks here. TL;DR AI-enabled supply chain attacks are exploding in scale and sophistication – Malicious package uploads to open-source repositories jumped…
Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government
Bys sThe Russia-aligned threat actor known as UAC-0184 has been observed targeting Ukrainian military and government entities by leveraging the Viber messaging platform to deliver malicious ZIP archives. “This organization has continued to conduct high-intensity intelligence gathering activities against Ukrainian military and government departments in 2025,” the 360 Threat Intelligence Center said in
Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks
Bys sA Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched remote-code-execution vulnerability in Trimble Cityworks to deliver Cobalt Strike and VShell. “UAT-6382 successfully exploited CVE-2025-0944, conducted reconnaissance, and rapidly deployed a variety of web shells and custom-made malware to maintain long-term access,” Cisco Talos researchers
Neon, the No. 2 social app on the Apple App Store, pays users to record their phone calls and sells data to AI firms
Bys sGreat investigative journalism by Zack Whittaker on TechCrunch. First, he reports: A new app offering to record your phone calls and pay you for the audio so it can sell the data to AI companies is, unbelievably, the No. 2 app in Apple’s U.S. App Store’s Social Networking section. The app, Neon Mobile, pitches itself as……
Minnesota National Guard deployed; St. Paul declares state of emergency in response to cyberattack
Bys sSamantha Fischer reports: Minnesota Governor Tim Walz issued an executive order to activate the National Guard Tuesday after the city of St. Paul became the target of a cyberattack. According to the governor’s office, the order took effect immediately. “We are committed to working alongside the City of Saint Paul to restore cybersecurity as quickly as possible,”…