Avos Locker remotely accesses boxes, even running in Safe Mode

January 11, 2022

First Patch Tuesday of 2022 repairs 102 bugs

Critical bugs fixed in Exchange, Office, and graphics subsystems--plus a few unexpected products

SophosLabs UncutThreat Research

December 21, 2021

Attackers test “CAB-less 40444” exploit in a dry run

An updated exploit takes a circuitous route to trigger a Word document into delivering an infection without using macros

SophosLabs UncutThreat Research

December 14, 2021

Microsoft wraps up 2021 with 64 patched vulnerabilities—including Windows 7 fixes

SophosLabs UncutThreat Research

December 12, 2021

Log4Shell Hell: anatomy of an exploit outbreak

A vulnerability in a widely-used Java logging component is exposing untold numbers of organizations to potential remote code attacks and information exposure.

SophosLabs UncutThreat Research

December 02, 2021

Two flavors of Tor2Mine miner dig deep into networks with PowerShell, VBScript

Using remote scripts and code, one variant can even execute filelessly until it gains administrative credentials.

Threat Research

November 23, 2021

Android APT spyware, targeting Middle East victims, enhances evasiveness

The phone spyware has new features that confer resistance to takedowns or manual removal

SophosLabs UncutThreat Research

November 18, 2021

New ransomware actor uses password-protected archives to bypass encryption protection

Calling themselves "Memento team", actors use Python-based ransomware that they reconfigured after setbacks.

SophosLabs UncutThreat Research

November 11, 2021

BazarLoader ‘call me back’ attack abuses Windows 10 Apps mechanism

The unusual technique invokes the Windows App Installer to deliver malware

SophosLabs UncutThreat Research

November 09, 2021

November, 2021 Patch Tuesday falls back to just 57 bug fixes

Critical fixes on tap for Office, Windows, and some enterprise applications - including a possible avenue to escape a virtual machine

SophosLabs UncutThreat Research