Beyond “Better Together”: Maximize your Microsoft 365 security with Sophos MDR

Blog

Byadmblake July 23, 2025

Sophos MDR and Microsoft 365 aren’t just “better” together, they’re “best” together.

Blog

Adobe ColdFusion Access Control Bypass

What is the vulnerability?The Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by Improper Access Control vulnerabilities that could result in a security bypass. Exploitation of these vulnerabilities could give attacker access to the ColdFusion Administrator endpoints for further attack.What is the Vendor Solution?Adobe released patches for the security bypass flaws…

Read More Adobe ColdFusion Access Control Bypass
Blog

From Chef to CISO: An Empathy-First Approach to Cybersecurity Leadership

Myke Lyons, CISO at data-processing SaaS company Cribl, shares how he cooked up an unconventional journey from culinary school to cybersecurity leadership.

Read More From Chef to CISO: An Empathy-First Approach to Cybersecurity Leadership
Blog

Cybersecurity Predictions 2026: An AI Arms Race and Malware Autonomy

The year ahead will see an intensified AI-driven cybersecurity arms race, with attackers leveraging autonomous malware and advanced AI technologies to outpace defenders, while security teams adopt increasingly sophisticated AI tools to combat evolving threats amidst growing vendor consolidation and platformization in the industry.

Read More Cybersecurity Predictions 2026: An AI Arms Race and Malware Autonomy
Blog

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

A “coordinated developer-targeting campaign” is using malicious repositories disguised as legitimate Next.js projects and technical assessments to trick victims into executing them and establish persistent access to compromised machines. “The activity aligns with a broader cluster of threats that use job-themed lures to blend into routine developer workflows and increase the likelihood of code

Read More Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware
Blog

350M Cars, 1B Devices Exposed to 1-Click Bluetooth RCE

Mercedes, Skoda, and Volkswagen vehicles, as well as untold industrial, medical, mobile, and consumer devices, may be exposed to a vulnerable Bluetooth implementation called “PerfektBlue.”

Read More 350M Cars, 1B Devices Exposed to 1-Click Bluetooth RCE
Blog

TamperedChef serves bad ads, with infostealers as the main course

Sophos X-Ops explores a malvertising campaign that leverages Google Ads to distribute an infostealer Categories: Threat Research Tags: TamperedChef, EvilAI, infostealer, Sophos X-Ops

Read More TamperedChef serves bad ads, with infostealers as the main course

Related