Logjam: Log4j exploit attempts continue in globally distributed scans, attacks
"This rapid iteration of fixes has left software developers and organisations worldwide scrambling to assess and mitigate their exposure with nearly daily-changing guidance."
Sophos reveals malicious tactics of AvosLocker ransomware
“The techniques used by AvosLocker are simple, but very clever. They ensure that the ransomware has the best chance of running in Safe Mode and allow the attackers to retain remote access to the machines throughout the attack."
Critical Microsoft Office patch exploited by new malware
Sophos has released details of a novel exploit that bypasses a patch for a critical vulnerability affecting the Microsoft Office file format.
New threat intelligence from Sophos following the Apache Log4Shell vulnerability
Sophos has provided new threat intelligence following the reporting of the Apache Log4Shell vulnerability.
Sophos discovers new Python ransomware called Memento
Cybercriminals are continuously scanning the internet for vulnerable online entry points, and they don't wait in line when they find one.
Sophos uncovers new variants of Tor2Mine cryptominer
Sophos has released new findings on the Tor2Mine cryptominer that show how the miner evades detection, spreads automatically through a target network, and is increasingly harder to remove from an infected system.
Sophos enhances Cloud Optix to simplify detection and response of AWS security incidents
"Sorting through and making sense of potentially thousands of user activity events to identify suspicious activity used to be near impossible."
New variants of Android spyware linked to advanced persistent threat
"The attackers use social engineering to lure victims into granting the permissions needed to see into every corner of their digital life."
New malware that abuses Windows 10 App Installer uncovered
Sophos researchers have uncovered a new attack operation by the malware family known as BazarBackdoor, which abuses the Windows 10 App Installer to spread malware.
Ransomware black hole pulls in other cyberthreats to create one massive delivery system
The gravitational force of ransomware's black hole is pulling in other cyberthreats to form one massive, interconnected ransomware delivery system with significant implications for IT security.
Cybersecurity experts weigh in on BlackMatter ransomware shut down
Given the lucrative activity of RaaS we are likely to see them reappear in the near future. The battle against ransomware is far from over.
Crypto romance scam targeting iPhone users raking in millions
"Attackers are making millions of dollars with this scam," according to Sophos.
New sniper-like Python ransomware uncovered
This is one of the fastest ransomware attacks Sophos has ever investigated and it appeared to precision-target the ESXi platform.
Ingram Micro Australia adds Sophos cybersecurity solutions to portfolio
"The combination of Sophos’ solutions and our aggregated security services and solutions – spanning consulting to delivery – will meet the needs and opportunities in the market.”
Manufacturing sector hit hard by ransomware, but many refuse to pay out
The report reveals companies in this sector were the least likely (at 19%) to submit to a ransom demand to have encrypted files restored and the most likely (at 68%) to be able to restore data from backups.
Sophos extends MSP Connect program to respond to growing demand
“We're seeing unprecedented demand for integrated security solutions and services that better protect customers and enable partners to expand their business."
Webinar: Sophos explains how to break a hacker's heart and ruin their day
Hackers' actions can bring down businesses, infrastructure, and even entire countries. But what if they could no longer do any of these things?
Microsoft Azure alert for authentication bypass vulnerability in Linux products
A patch is currently available for this vulnerability, however many sysadmins are potentially unaware they have the OMI product installed and are at risk.
Financial services organisations spend over $2.62 million on ransomware recovery
Mid-sized financial services organisations in Asia Pacific and Japan spent more than US$2.62 million on average recovering from ransomware attacks.
Rise in cyberattacks, ransomware during COVID-19 boosts IT security skills
Increased security challenges during the pandemic offered IT teams a unique opportunity to build their cybersecurity expertise.
The importance of patching - ransomware attackers gain access in under a minute
According to Sophos threat researchers, Conti ransomware is currently incredibly active due to the dissolution of DarkSide, REvil and Avaddon.
The growing cybersecurity menace that is Droppers-as-a-Service
Droppers for hire are delivering bundles of malicious content to targets looking for cracked versions of popular business and consumer applications.
Ingram Micro onboards Sophos to Cybersecurity Solution Unit
Ingram Micro sees strong potential in Sophos products such as Extended Data Detection and Response (XDR).
Research uncovers connection between BlackMatter and DarkSide ransomware-as-a-service
Speaking about the two ransomware types, Sophos says it's not a simple case of rebranding.