Sophos Archives - Help Net Security

Sophos

Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698)

December 13, 2022

It’s December 2022 Patch Tuesday, and Microsoft has delivered fixes for 50+ vulnerabilities, including a Windows SmartScreen bypass flaw (CVE-2022-44698) exploited by …

Cybercriminals are scamming each other, tipping off law enforcement

December 8, 2022

Cybercriminals are scamming each other out of millions of dollars and use arbitration to settle disputes about the scams, according to Sophos. For this report, Sophos experts …

Sophos introduces new threat detection and response capabilities within its MDR offering

December 1, 2022

Sophos has released Sophos Managed Detection and Response (MDR) with new threat detection and response capabilities. Sophos is the endpoint security provider to integrate …

Sophos expands its MDR offering to include compatibility with third-party cybersecurity products

October 20, 2022

Sophos has launched new third-party security technology compatibilities with Sophos Managed Detection and Response (MDR) to better detect and remediate attacks across diverse …

Apache Commons Text flaw is not a repeat of Log4Shell (CVE-2022-42889)

October 19, 2022

A freshly fixed vulnerability (CVE-2022-42889) in the Apache Commons Text library has been getting attention from security researchers these last few days, worrying it could …

RCE in Sophos Firewall is being exploited in the wild (CVE-2022-3236)

September 26, 2022

Sophos has patched an actively exploited remote code execution vulnerability (CVE-2022-3236) in its Firewall solutions, and has pushed the fix to customers who have automatic …

Exploiting stolen session cookies to bypass multi-factor authentication (MFA)

August 19, 2022

Active adversaries are increasingly exploiting stolen session cookies to bypass multi-factor authentication (MFA) and gain access to corporate resources, according to Sophos. …

Photos: Black Hat USA 2022

August 11, 2022

Here’s a photo gallery that provides a look inside Black Hat USA 2022. For our complete coverage of the conference, live from Las Vegas, check out our microsite. Bayside …

Black Hat USA 2022 video walkthrough

August 11, 2022

In this Help Net Security video, we take you inside Black Hat USA 2022 at the Mandalay Bay Convention Center in Las Vegas. The video features the following vendors: Abnormal …

Sophos announces eight presentations at Black Hat USA 2022, BSides Las Vegas and DEF CON 30

August 9, 2022

Sophos announced that SophosAI and Sophos Managed Detection and Response (MDR) will lead eight presentations at Black Hat USA 2022, BSides Las Vegas and DEF CON 30, taking …

Three ransomware gangs consecutively attacked the same network

August 9, 2022

Hive, LockBit and BlackCat, three prominent ransomware gangs, consecutively attacked the same network, according to Sophos. The first two attacks took place within two hours, …

Automotive hose manufacturer hit by ransomware, shuts down production control system

June 23, 2022

A US subsidiary of Nichirin Co., a Japan-based company manufacturing and selling automotive hoses and hose parts, has been hit with ransomware, which resulted in the shut down …

Sophos

Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698)

Cybercriminals are scamming each other, tipping off law enforcement

Sophos introduces new threat detection and response capabilities within its MDR offering

Sophos expands its MDR offering to include compatibility with third-party cybersecurity products

Apache Commons Text flaw is not a repeat of Log4Shell (CVE-2022-42889)

RCE in Sophos Firewall is being exploited in the wild (CVE-2022-3236)

Exploiting stolen session cookies to bypass multi-factor authentication (MFA)

Photos: Black Hat USA 2022

Black Hat USA 2022 video walkthrough

Sophos announces eight presentations at Black Hat USA 2022, BSides Las Vegas and DEF CON 30

Three ransomware gangs consecutively attacked the same network

Automotive hose manufacturer hit by ransomware, shuts down production control system

Don't miss

While governments pass privacy laws, companies struggle to change

Trends that impact on organizations’ 2023 security priorities

What a perfect day in data privacy looks like

Patch your Jira Service Management Server and Data Center and check for compromise! (CVE-2023-22501)

We can’t rely on goodwill to protect our critical infrastructure