Sophos SecOps

Insights from Sophos’ frontline threat hunters and incident responders

Featured Articles

RSS

June 16, 2022

Confluence exploits used to drop ransomware on vulnerable servers

Automated attacks are now widely exploiting the Atlassian vulnerability

Security Operations SophosLabs Uncut Threat Research

June 15, 2022

Telerik UI exploitation leads to cryptominer, Cobalt Strike infections

Security Operations SophosLabs Uncut Threat Research

June 07, 2022

The Active Adversary Playbook 2022

Security Operations

June 07, 2022

Move fast, unbreak things: About the Sophos Active Adversary Playbook 2022

Security Operations SophosLabs Uncut Threat Research

April 12, 2022

Attackers linger on government agency computers before deploying Lockbit ransomware

Security Operations Threat Research

March 30, 2022

Second vulnerability in Spring Cloud casts shadow on popular Java framework

Security Operations

March 29, 2022

Reconstructing PowerShell scripts from multiple Windows event logs

Security Operations

March 22, 2022

As Russia’s ground advance stalls, Biden warns of an increase in cyberattacks

Security Operations

March 21, 2022

Russia-Ukraine war: related cyberattack developments

Security Operations

March 17, 2022

The Ransomware Threat Intelligence Center

Security Operations

March 15, 2022

Will Russia’s war on Ukraine result in less online crime?

Security Operations

March 04, 2022

Countermeasures and observability key to defending against attackers trying to buy security products

Security Operations

Subscribe to get the latest updates in your inbox.

You’re now subscribed!