Sophos Firewall v21.5 early access is now available
Say hello to great new features and enhancements in v21.5.
Similar Posts
FBCS updates the number affected in its 2024 breach to 4,253,394
Bys s
Lawrence Abrams reports: Debt collection agency Financial Business and Consumer Solutions (FBCS) has again increased the number of people impacted by a February [2024] data breach, now saying it affects 4.2 million people in the US. … The exposed data varies per individual but can include the following information: Full name Social Security Number (SSN)…
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
Bys s
Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to direct unsuspecting users to spoofed Microsoft login pages. “Attackers weaponize Gamma, a relatively new AI-based presentation tool, to deliver a link to a fraudulent Microsoft SharePoint login portal,” Abnormal Security researchers Hinman Baron and Piotr Wojtyla said in
How Breaches Start: Breaking Down 5 Real Vulns
Bys s
Not every security vulnerability is high risk on its own – but in the hands of an advanced attacker, even small weaknesses can escalate into major breaches. These five real vulnerabilities, uncovered by Intruder’s bug-hunting team, reveal how attackers turn overlooked flaws into serious security incidents. 1. Stealing AWS Credentials with a Redirect Server-Side Request…
India’s Digital Data Protection Framework: Safety, Trust and Resilience
Samaya Dharmaraj reports: In an era where digital transformation shapes every aspect of governance, business, and daily life, safeguarding citizens’ personal data has become a top priority for India. Recognising the critical need for a secure andaccountable digital ecosystem, the government has taken significant steps to establish a robust framework for data protection and cyber resilience. At…
New “DoubleClickjacking” Exploit Bypasses Clickjacking Protections on Major Websites
Threat hunters have disclosed a new “widespread timing-based vulnerability class” that leverages a double-click sequence to facilitate clickjacking attacks and account takeovers in almost all major websites. The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo. “Instead of relying on a single click, it takes advantage of a double-click sequence,” Yibelo said.
Ukrainian National Extradited from Spain to Face Conspiracy to Use Ransomware Charge
Bys s
A press release from the Department of Justice Defendant Allegedly Took Part in Global Ransomware Scheme Using “Nefilim” Ransomware Strain Thursday, May 1, 2025 Earlier today, in federal court in Brooklyn, a superseding indictment was unsealed charging Artem Stryzhak with conspiracy to commit fraud and related activity, including extortion, in connection with computers, for his…