Sophos named a Leader in the IDC MarketScape™: Worldwide Extended Detection and Response (XDR) Software 2025

Patterson-Schwartz & Associates, Inc. (“PSA”) is a real estate firm headquartered in Delaware. In May 2025, they experienced a data breach when two employee email accounts were compromised in phishing attacks on May 14 and May 29. Although PSA responded quickly to secure the compromised accounts and initiate incident response, sending notification letters to those……

Stewart Lewis reports: Operations at the Kelowna, B.C., airport (YLW) were disrupted Tuesday evening after its passenger information screens and public address systems were overtaken in a terrorist cyberattack. The incident began about 5:15 p.m., when pro-Hamas messaging could be seen and heard throughout the airport. A message took over flight information screens announcing the system was……

A rapidly evolving Android spyware campaign called ClayRat has targeted users in Russia using a mix of Telegram channels and lookalike phishing websites by impersonating popular apps like WhatsApp, Google Photos, TikTok, and YouTube as lures to install them. “Once active, the spyware can exfiltrate SMS messages, call logs, notifications, and device information; taking photos…

On October 22-24, SophosAI will present research on ‘LLM salting’ (a novel countermeasure against jailbreaks) and command line classification at CAMLIS 2025

An extremely Windows-heavy month, with a surprise cameo by… Sophos?!

A new Android malware-as-a-service (MaaS) platform named SuperCard X can facilitate near-field communication (NFC) relay attacks, enabling cybercriminals to conduct fraudulent cashouts. The active campaign is targeting customers of banking institutions and card issuers in Italy with an aim to compromise payment card data, fraud prevention firm Cleafy said in an analysis. There is evidence…