Sophos Archives - Help Net Security

Sophos

70% of organizations experienced a public cloud security incident in the last year

July 9, 2020

70% of organizations experienced a public cloud security incident in the last year – including ransomware and other malware (50%), exposed data (29%), compromised accounts …

Fake “DNS Update” emails targeting site owners and admins

June 30, 2020

Attackers are trying to trick web administrators into sharing their admin account login credentials by urging them to activate DNSSEC for their domain. Scam emails lead to …

Paying the ransom = paying double

May 14, 2020

Paying cybercriminals to restore data encrypted during a ransomware attack is not an easy and inexpensive path to recovery, a Sophos survey reveals. In fact, the total cost of …

Attackers exploiting a zero-day in Sophos firewalls, have yours been hit?

April 27, 2020

Sophos has released an emergency hotfix for an actively exploited zero-day SQL injection vulnerability in its XG Firewalls, and has rolled it out to all units with the …

No, Corona Antivirus can’t fight COVID-19

March 26, 2020

COVID-19-themed scams are exploding both online and offline. Hijacked Twitter accounts peddling fake cures, scammy sites offering emergency supplies, misinformation campaigns, …

Microsoft releases patch for leaked SMBv3 RCE flaw

March 12, 2020

After the inadvertent leaking of details about a wormable Windows SMBv3 RCE flaw (CVE-2020-0796) on Tuesday, Microsoft has rushed to release a patch (i.e., security updates). …

Coronavirus-themed scams and attacks intensify

March 9, 2020

Scammers and other criminals are always quick to take advantage of crises, and this latest – centered around the spread of the deadly Covid-19 coronavirus around the …

Google fixes another Chrome zero-day exploited in the wild

February 26, 2020

For the third time in a year, Google has fixed a Chrome zero-day (CVE-2020-6418) that is being actively exploited by attackers in the wild. About CVE-2020-6418 No details have …

What is flowing through your enterprise network?

February 20, 2020

Since Edward Snowden’s revelations of sweeping internet surveillance by the NSA, the push to encrypt the web has been unrelenting. Bolstered by Google’s various initiatives …

Ransomware uses vulnerable, signed driver to disable endpoint security

February 10, 2020

Ransomware-wielding attackers have devised a novel tactic for disabling security protections that might get in their way: they are using a deprecated, vulnerable but signed …

Phishers impersonate WHO, exploit coronavirus-related anxiety

February 7, 2020

Media outlets are reporting daily on the coronavirus outbreak in Wuhan and the emergency repatriation of foreign citizens that found themselves in the thick of it. As cases of …

Attack tools and techniques used by major ransomware families

November 15, 2019

Ransomware tries to slip unnoticed past security controls by abusing trusted and legitimate processes, and then harnesses internal systems to encrypt the maximum number of …