News

Sophos AI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job

Bys s August 7, 2025

Following on from our preview, here’s Ben Gelman and Sean Bergeron’s research on enhancing command line classification with benign anomalous data

News

How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
Bys s July 9, 2025

Run by the team at workflow orchestration and AI platform Tines, the Tines library features over 1,000 pre-built workflows shared by security practitioners from across the community – all free to import and deploy through the platform’s Community Edition. A recent standout is a workflow that handles malware alerts with CrowdStrike, Oomnitza, GitHub, and PagerDuty….

Read More How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
News

Top 10 Best Practices for Effective Data Protection
Bys s May 16, 2025

Data is the lifeblood of productivity, and protecting sensitive data is more critical than ever. With cyber threats evolving rapidly and data privacy regulations tightening, organizations must stay vigilant and proactive to safeguard their most valuable assets. But how do you build an effective data protection framework? In this article, we’ll explore data protection best…

Read More Top 10 Best Practices for Effective Data Protection
News

New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials
Bys s July 23, 2025

The Windows banking trojan known as Coyote has become the first known malware strain to exploit the Windows accessibility framework called UI Automation (UIA) to harvest sensitive information. “The new Coyote variant is targeting Brazilian users, and uses UIA to extract credentials linked to 75 banking institutes’ web addresses and cryptocurrency exchanges,” Akamai security researcher…

Read More New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials
News

Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks
By December 30, 2024

Palo Alto Networks has patched CVE-2024-3393, a vulnerability that has been exploited for DoS attacks against the company’s firewalls. The post Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks appeared first on SecurityWeek.

Read More Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks
News

New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots
Bys s May 12, 2026

Cybersecurity researchers have flagged a new version of the TrickMo Android banking trojan that uses The Open Network (TON) for command-and-control (C2). The new variant, observed by ThreatFabric between January and February 2026, has been observed actively targeting banking and cryptocurrency wallet users in France, Italy, and Austria. “TrickMo relies on a runtime-loaded APK (dex.module),

Read More New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots
News

Unpatched Edimax Camera Flaw Exploited for Mirai Botnet Attacks Since Last Year
Bys s March 17, 2025

An unpatched security flaw impacting the Edimax IC-7100 network camera is being exploited by threat actors to deliver Mirat botnet malware variants since at least May 2024. The vulnerability in question is CVE-2025-1316 (CVSS v4 score: 9.3), a critical operating system command injection flaw that an attacker could exploit to achieve remote code execution on…

Read More Unpatched Edimax Camera Flaw Exploited for Mirai Botnet Attacks Since Last Year

Similar Posts