Sophos MDR: New analyst response actions for Microsoft 365
Powerful new capabilities enable Sophos MDR analysts to respond to M365 attacks on your behalf.
Similar Posts
CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2026-2441 (CVSS score: 8.8) – A use-after-free vulnerability in Google Chrome that could allow a remote attacker to…
NL: Nuenen accidentally leaks addresses of 1,000 asylum center opponents
Bys sThe NL Times reports: The municipality of Nuenen in Noord-Brabant inadvertently shared the addresses of more than 1,000 residents who had filed objections to the establishment of a temporary asylum seekers center, the local government reported. According to Omroep Brabant, the addresses were sent to multiple recipients in preparation for a hearing by the objections committee…….
Dragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT
Bys sThe threat actor known as Dragon Breath has been observed making use of a multi-stage loader codenamed RONINGLOADER to deliver a modified variant of a remote access trojan called Gh0st RAT. The campaign, which is primarily aimed at Chinese-speaking users, employs trojanized NSIS installers masquerading as legitimate like Google Chrome and Microsoft Teams, according to…
Prioritizing patching: A deep dive into frameworks and tools – Part 1: CVSS
In the first of a two-part series exploring tools and frameworks which can help organizations with remediation prioritization, Sophos X-Ops takes a look at the Common Vulnerability Scoring System (CVSS)
Cyberattacks on Long Island Schools Highlight Growing Threat
Bys sI’d called it an “ongoing threat,” but …. Maggie MacAlpine reports: In a concerning development, over 20 school districts across Long Island have fallen victim to cyberattacks, compromising the personal data of more than 10,000 students. According to state education records, 28 incidents were reported in 2024 alone, affecting districts such as Great Neck, Smithtown,…
Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories
Bys sA security weakness has been disclosed in the artificial intelligence (AI)-powered code editor Cursor that could trigger code execution when a maliciously crafted repository is opened using the program. The issue stems from the fact that an out-of-the-box security setting is disabled by default, opening the door for attackers to run arbitrary code on users’…