Year in Review 2025: The major headlines and moments from Sophos this year

Brian Krebs reports: Federal authorities have arrested and indicted a 20-year-old U.S. Army soldier on suspicion of being Kiberphant0m, a cybercriminal who has been selling and leaking sensitive customer call records stolen earlier this year from AT&T and Verizon. As first reported by KrebsOnSecurity last month, the accused is a communications specialist who was recently stationed in South Korea….

Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products, according to watchTowr. “Overnight we observed first in-the-wild exploitation of BeyondTrust across our global sensors,” Ryan Dewhurst, head of threat intelligence at watchTowr, said in a post on X. “Attackers are abusing

Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous delivery (CI/CD) workflow. The incident involved the tj-actions/changed-files GitHub Action, which is used in over 23,000 repositories. It’s used to track and retrieve all

A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that their malicious software stayed undetected from security software. To that effect, the U.S. Department of Justice (DoJ) said it seized four domains and their associated server facilitated the crypting service on…

Adam Vidler reports: A former student has been charged over a series of cyber attacks on a Sydney university that affected hundreds of staff and students. Since 2021, Western Sydney University had suffered a series of cyber hacks involving unauthorised access, data exfiltration, system compromise and misuse of university infrastructure – including threatening the sale of student…

Medusa has struck another medical entity. This time, it is Pulse Urgent Care Center. According to its website, Pulse Urgent Care Center offers a range of services that includes urgent care, clinical medicine, women’s health, workers’ compensation, and employer services. Its headquarters is in Redding, California. It also has a location in Red Buff, California….