SharePoint ‘ToolShell’ vulnerabilities being exploited in the wild

Blog

Byadmblake July 21, 2025

Sophos X-Ops sees exploitation across multiple customer estates

Blog

Putting the dampener on tamperers

Taking a dive into Sophos Tamper Protection

Read More Putting the dampener on tamperers
Blog

Take Note: Cyber-Risks With AI Notetakers

Transcription applications are joining your online meetings. Here’s how to create policies for ensuring compliance and security of your information.

Read More Take Note: Cyber-Risks With AI Notetakers
Blog

‘MostereRAT’ Malware Blends In, Blocks Security Tools

A threat actor is using a sophisticated EDR-killing malware tool in a campaign to maintain long-term, persistent access on Windows systems.

Read More ‘MostereRAT’ Malware Blends In, Blocks Security Tools
Blog

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

The threat actors behind a malware family known as RomCom targeted a U.S.-based civil engineering company via a JavaScript loader dubbed SocGholish to deliver the Mythic Agent. “This is the first time that a RomCom payload has been observed being distributed by SocGholish,” Arctic Wolf Labs researcher Jacob Faires said in a Tuesday report. The…

Read More RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware
Blog

The State of Ransomware in Education 2025

441 IT and cybersecurity share their ransomware experiences, revealing the realities facing lower and higher education providers today.

Read More The State of Ransomware in Education 2025
Blog

APT ‘Bronze Butler’ Exploits Zero-Day to Root Japan Orgs

A critical security issue in a popular endpoint manager (CVE-2025-61932) allowed Chinese state-sponsored attackers to backdoor Japanese businesses.

Read More APT ‘Bronze Butler’ Exploits Zero-Day to Root Japan Orgs

Related