Strengthening cyber resilience: Introducing Internal Attack Surface Management (IASM) for Sophos Managed Risk

Blog

Byadmblake July 7, 2025

Enhanced vulnerability management delivered as a managed service.

Blog

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Cybersecurity researchers have discovered a malicious npm package that masquerades as an OpenClaw installer to deploy a remote access trojan (RAT) and steal sensitive data from compromised hosts. The package, named “@openclaw-ai/openclawai,” was uploaded to the registry by a user named “openclaw-ai” on March 3, 2026. It has been downloaded 178 times to date. The…

Read More Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
Blog

Microsoft Mitigates Record 5.72 Tbps DDoS Attack Driven by AISURU Botnet

Microsoft on Monday disclosed that it automatically detected and neutralized a distributed denial-of-service (DDoS) attack targeting a single endpoint in Australia that measured 5.72 terabits per second (Tbps) and nearly 3.64 billion packets per second (pps). The tech giant said it was the largest DDoS attack ever observed in the cloud, and that it originated…

Read More Microsoft Mitigates Record 5.72 Tbps DDoS Attack Driven by AISURU Botnet
Blog

The Fight Against Ransomware Heats Up on the Factory Floor

Ransomware gangs continue to set their sights on the manufacturing industry, but companies are taking steps to protect themselves, starting with implementing timely patch management protocols.

Read More The Fight Against Ransomware Heats Up on the Factory Floor
Blog

Prepping for ‘Q-Day’: Why Quantum Risk Management Should Start Now

Quantum computers are coming and may impact systems in unexpected ways, and it will “take years to be fully quantum-safe, if ever,” cryptography expert warns.

Read More Prepping for ‘Q-Day’: Why Quantum Risk Management Should Start Now
Blog

Advancing Cybersecurity for Microsoft Environments

From certified MDR services to open threat intelligence frameworks, Sophos is delivering the clarity, context, and confidence organizations need to stay ahead of evolving threats.

Read More Advancing Cybersecurity for Microsoft Environments
Blog

Earth Lamia APT Attack

The hacking group known as Earth Lamia has been targeting various sectors including finance, government, IT, logistics, retail, and education, shifting focus depending on the time period. The group is highly active and primarily exploits known vulnerabilities in public-facing systems and web applications.

Read More Earth Lamia APT Attack

Related