Strengthening cyber resilience: Introducing Internal Attack Surface Management (IASM) for Sophos Managed Risk
Enhanced vulnerability management delivered as a managed service.
Similar Posts
Hackers breach Norwegian dam, open valve at full capacity
Bys sCatalin Cimpanu reports: Unidentified hackers have breached the systems of a Norwegian dam and opened its water valve at full capacity in an incident this April. The incident took place at the Lake Risevatnet dam near the city of Svelgen in Southwest Norway. The valve ran at full capacity for four hours before the unauthorized change was…
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation
Bys sCybersecurity researchers have disclosed three security flaws in Planet Technology’s WGS-804HPT industrial switches that could be chained to achieve pre-authentication remote code execution on susceptible devices. “These switches are widely used in building and home automation systems for a variety of networking applications,” Claroty’s Tomer Goldschmidt said in a Thursday report. “An attacker
F5 network compromised
Bys sOn October 15, 2025, F5 reported that a nation-state threat actor had gained long-term access to some F5 systems and exfiltrated data, including source code and information about undisclosed product vulnerabilities. This information may enable threat actors to compromise F5 devices by developing exploits for these vulnerabilities. The UK National Cyber Security Centre also notes…
Eclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz Discovery
Bys sEclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of tokens that were leaked within Visual Studio Code (VS Code) extensions published in the marketplace. The action comes following a report from cloud security company Wiz earlier this month, which found several extensions from both…
Cyberattack pushes German napkin company into insolvency
Bys sIt is not often that a ransomware attack or cyberattack is wholly responsible for a business failing. With each such claim that is investigated, we sometimes find that an entity was already in financial distress and the attack may just have been one stress too many. Maike Krebber reports: A cyberattack has potentially serious consequences…
SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits
Bys sCybersecurity researchers have disclosed details of a new botnet operation called SSHStalker that relies on the Internet Relay Chat (IRC) communication protocol for command-and-control (C2) purposes. “The toolset blends stealth helpers with legacy-era Linux exploitation: Alongside log cleaners (utmp/wtmp/lastlog tampering) and rootkit-class artifacts, the actor keeps a large back-catalog of