Sophos achieves its best-ever results in the MITRE ATT&CK Enterprise 2025 Evaluation
A major milestone: Sophos XDR delivers 100% detection coverage in the latest ATT&CK Evaluation.
Similar Posts
Average Brit hit by five data breaches since 2004
Bys sFor some perspective on the numbers affected by breaches over time, Emma Woollacott reports: Around seven British user accounts were breached every minute during the second quarter of 2025 – more than three million in total. While data breaches dropped globally by 58% from the previous quarter, the number rose from 70 million to 94…
2024 US Healthcare Data Breaches: 585 Incidents, 180 Million Compromised User Records
Bys sIn 2024 organizations informed the US government about 585 healthcare data breaches affecting a total of nearly 180 million user records. The post 2024 US Healthcare Data Breaches: 585 Incidents, 180 Million Compromised User Records appeared first on SecurityWeek.
Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders
Bys sMost organizations assume encrypted data is safe. But many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it so it can be decrypted later using quantum computers. This tactic—known as “harvest now, decrypt later”—means sensitive data…
Fix SOC Blind Spots: See Threats to Your Industry & Country in Real Time
Bys sModern security teams often feel like they’re driving through fog with failing headlights. Threats accelerate, alerts multiply, and SOCs struggle to understand which dangers matter right now for their business. Breaking out of reactive defense is no longer optional. It’s the difference between preventing incidents and cleaning up after them. Below is the path from…
New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA
Bys sBill Toulas reports: A new Microsoft 365 phishing-as-a-service platform called “FlowerStorm” is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. First documented by Trustwave in late November 2024, Rockstar2FA operated as a PhaaS platform facilitating large-scale adversary-in-the-middle (AiTM) attacks targeting Microsoft 365 credentials. The service offered advanced evasion mechanisms, a user-friendly…
BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration
Bys sThreat actors have been observed exploiting a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products to conduct a wide range of malicious actions, including deploying VShell and The vulnerability, tracked as CVE-2026-1731 (CVSS score: 9.9), allows attackers to execute operating system commands in the context of the