The State of Ransomware in Healthcare 2025

Law enforcement has been busy. As reported yesterday, Cracked and Nulled forums were seized along with services associated with them financially. Two suspects were arrested in Spain. Today, DOJ issued two press releases. The first was about yesterday’s seizures: Cracked and Nulled Marketplaces Disrupted in International Cyber Operation The Justice Department today announced its participation…

This week has been crazy in the world of hacking and online security. From Thailand to London to the US, we’ve seen arrests, spies at work, and big power moves online. Hackers are getting caught. Spies are getting better at their jobs. Even simple things like browser add-ons and smart home gadgets are being used…

Cybersecurity attacks are rising sharply in 2025, and Microsoft has been one among many prominent targets. Research shows that 70 percent of M365 tenants have experienced account takeovers1 and 81 percent have encountered email compromise2. To mitigate this ongoing risk, Rubrik and Sophos have formed a strategic partnership to help lean IT teams strengthen their…

A China-aligned advanced persistent threat (APT) group called TheWizards has been linked to a lateral movement tool called Spellbinder that can facilitate adversary-in-the-middle (AitM) attacks. “Spellbinder enables adversary-in-the-middle (AitM) attacks, through IPv6 stateless address autoconfiguration (SLAAC) spoofing, to move laterally in the compromised network, intercepting packets and

A malicious network of YouTube accounts has been observed publishing and promoting videos that lead to malware downloads, essentially abusing the popularity and trust associated with the video hosting platform for propagating malicious payloads. Active since 2021, the network has published more than 3,000 malicious videos to date, with the volume of such videos tripling…

How to make the most of the new features in Sophos Firewall v21.5.