Innovation unlocked: Sophos Endpoint is now integrated with Taegis MDR and XDR
Customers gain immediate access to combined prevention, detection, and response capabilities in a single platform – while lowering costs and simplifying operations.
Similar Posts
UNC2891 Breaches ATM Network via 4G Raspberry Pi, Tries CAKETAP Rootkit for Fraud
Bys sThe financially motivated threat actor known as UNC2891 has been observed targeting Automatic Teller Machine (ATM) infrastructure using a 4G-equipped Raspberry Pi as part of a covert attack. The cyber-physical attack involved the adversary leveraging their physical access to install the Raspberry Pi device and have it connected directly to the same network switch as…
Hackers Turn Velociraptor DFIR Tool Into Weapon in LockBit Ransomware Attacks
Bys sThreat actors are abusing Velociraptor, an open-source digital forensics and incident response (DFIR) tool, in connection with ransomware attacks likely orchestrated by Storm-2603 (aka CL-CRI-1040 or Gold Salem), which is known for deploying the Warlock and LockBit ransomware. The threat actor’s use of the security utility was documented by Sophos last month. It’s assessed that…
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain conditions. The vulnerability, tracked as CVE-2024-56337, has been described as an incomplete mitigation for CVE-2024-50379 (CVSS score: 9.8), another critical security flaw in the same…
Third Parties and Machine Credentials: The Silent Drivers Behind 2025’s Worst Breaches
Bys sIt wasn’t ransomware headlines or zero-day exploits that stood out most in this year’s Verizon 2025 Data Breach Investigations Report (DBIR) — it was what fueled them. Quietly, yet consistently, two underlying factors played a role in some of the worst breaches: third-party exposure and machine credential abuse. According to the 2025 DBIR, third-party involvement…
Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers
Bys sA new malware attributed to the Russia-linked hacking group known as COLDRIVER has undergone numerous developmental iterations since May 2025, suggesting an increased “operations tempo” from the threat actor. The findings come from Google Threat Intelligence Group (GTIG), which said the state-sponsored hacking crew has rapidly refined and retooled its malware arsenal merely five days…
Almost two years later, Alpha Omega Winery notifies those affected by a data breach.
Bys sSome wines benefit from aging. Breach notification letters do not. On or about December 28, 2023, Alpha Omega Winery in California experienced what they report as a ransomware incident. According to their notification, the types of personal information may have included, and potentially were not limited to: name, date of birth, Social Security number, driver’s……