March 12, 2024 The 2024 Sophos Threat Report: Cybercrime on Main Street Ransomware remains the biggest existential cyber threat to small businesses, but others are growing. Threat Research
March 04, 2024 It’ll be back: Attackers still abusing Terminator tool and variants First released in May 2023, an EDR killer – and the vulnerable Zemana drivers it leverages – are still of interest to threat actors, along with variants and ported versions Threat Research
February 23, 2024 ConnectWise ScreenConnect attacks deliver malware Multiple attacks exploit vulnerabilities in an IT remote access tool to deliver a variety of different payloads into business environments Threat Research
March 12, 2024 59 CVEs primed for Microsoft’s March Patch Tuesday Just two critical-severity issues addressed, though Azure and OMI admins won’t want to delay patching this month Threat Research
February 21, 2024 LockBit: Lessons learned on winning the war on cybercrime Making sense of the ransomware-group takedown -- what it means for ransomware and law enforcement Threat Research
February 14, 2024 February’s Patch Tuesday treats customers to 72 patches Two issues under active exploit in the wild headline fixes across 13 product groups Threat Research
February 02, 2024 Cryptocurrency scams metastasize into new forms “DeFi mining” scams adopted by pig-butchering rings create more problems for those trying to defend against them Threat Research
January 25, 2024 Multiple vulnerabilities discovered in widely used security driver A false-alarm incident involving Panda Security software leads to three very real CVEs Threat Research
January 09, 2024 2024’s first Patch Tuesday steps lightly Four dozen fixes and a handful of advisories make for the quietest January since 2020 Threat Research
December 21, 2023 Akira, again: The ransomware that keeps on taking Seven months after our first investigation, a fuller portrait of the criminal gang and its tactics emerges Security OperationsThreat Research
December 20, 2023 CryptoGuard: An asymmetric approach to the ransomware battle In the second of our new technical thought leadership series, Sophos X-Ops takes a detailed look at anti-ransomware techniques Threat Research
December 19, 2023 “Inhospitality” malspam campaign targets hotel industry Social engineering drives password-stealing malware attack against the front desk Threat Research