Game of clones: Sophos and the MITRE ATT&CK Enterprise 2025 Evaluations
Winter is coming – so it must be time for Sophos X-Ops’ report on this year’s MITRE ATT&CK Enterprise Evaluations
Similar Posts
Legal Aid Agency chief admits difficulties understanding impact of cyberattack
Bys sJim Dunton reports: The chief executive of the Legal Aid Agency has told MPs that the organisation is still working out the extent of a cyberattack that was uncovered back in the spring. Jane Harbottle told members of parliament’s Public Accounts Committee that a team of analysts is still exploring how much of the compromised……
Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm
Bys sCybersecurity researchers have disclosed details of a supply chain attack targeting the Open VSX Registry in which unidentified threat actors compromised a legitimate developer’s resources to push malicious updates to downstream users. “On January 30, 2026, four established Open VSX extensions published by the oorzc author had malicious versions published to Open VSX that embed…
Backdoor found in two healthcare patient monitors, linked to IP in China
Bys sLawrence Abrams reports: The US Cybersecurity and Infrastructure Security Agency (CISA) is warning that Contec CMS8000 devices, a widely used healthcare patient monitoring device, include a backdoor that quietly sends patient data to a remote IP address and downloads and executes files on the device. Contec is a China-based company that specializes in healthcare technology, offering…
Hackers Exploit Critical WordPress Theme Flaw to Hijack Sites via Remote Plugin Install
Bys sThreat actors are actively exploiting a critical security flaw in “Alone – Charity Multipurpose Non-profit WordPress Theme” to take over susceptible sites. The vulnerability, tracked as CVE-2025-5394, carries a CVSS score of 9.8. Security researcher Thái An has been credited with discovering and reporting the bug. According to Wordfence, the shortcoming relates to an arbitrary…
A Brief Reminder About the Florida Information Protection Act
Bys sJoseph Lazzarotti of JacksonLewis writes: According to one survey, Florida is fourth on the list of states with the most reported data breaches. No doubt, data breaches continue to be a significant risk for all business, large and small, across the U.S., including the Sunshine State. Perhaps more troubling is that class action litigation is more…
Data Breach at Fowler Elementary School District: The Interlock Ransomware Group’s Attack
Bys sIt sounds like yet another K-12 school district has fallen prey to a cyberattack that it never successfully detected or thwarted quickly. SuspectFile reports: The Fowler Elementary School District, located in Phoenix, Arizona, has reportedly fallen victim to a cyberattack involving what may be a substantial volume of sensitive data. The incident was claimed by…