Build a prevention-first defense: The Sophos Cybersecurity Toolkit

Blog

Byadmblake October 30, 2025

Explore the Cybersecurity toolkit and start building your prevention-first strategy today.

Blog

New TgToxic Banking Trojan Variant Evolves with Anti-Analysis Upgrades

Cybersecurity researchers have discovered an updated version of an Android malware called TgToxic (aka ToxicPanda), indicating that the threat actors behind it are continuously making changes in response to public reporting. “The modifications seen in the TgToxic payloads reflect the actors’ ongoing surveillance of open source intelligence and demonstrate their commitment to enhancing the

Read More New TgToxic Banking Trojan Variant Evolves with Anti-Analysis Upgrades
Blog

We need secure products as much as we need security products

Buyers need to demand better.

Read More We need secure products as much as we need security products
Blog

npm Supply Chain Attack

What is the Attack? On September 8, 2025, attackers phished the npm maintainer “qix” and stole their two-factor authentication (2FA) credentials. With that access, they published malicious versions of some very popular npm packages (including debug, chalk, and ansi-styles). The impact is considered high risk for applications that serve frontend JavaScript, especially those handling payments,…

Read More npm Supply Chain Attack
Blog

Patch Released for Critical vm2 Sandbox Escape Vulnerability

UPDATE April 19 2023: Updated to include another sandbox vulnerability in vm2 (CVE-2023-30547).Earlier this week, an update was released for a critical sandbox escape vulnerabilities in vm2 (CVE-2023-29017 and CVE-2023-29199) , which ultimately allows for remote code execution by an attacker. vm2 is a widely used module within the Node.js library that provides a sandbox…

Read More Patch Released for Critical vm2 Sandbox Escape Vulnerability
Blog

Google Ordered to Pay $314M for Misusing Android Users’ Cellular Data Without Permission

Google has been ordered by a court in the U.S. state of California to pay $314 million over charges that it misused Android device users’ cellular data when they were idle to passively send information to the company. The verdict marks an end to a legal class-action complaint that was originally filed in August 2019….

Read More Google Ordered to Pay $314M for Misusing Android Users’ Cellular Data Without Permission
Blog

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

The North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ThemeForestRAT, and RemotePE. The attack, observed by NCC Group’s Fox-IT in 2024, targeted an organization in the decentralized finance (DeFi) sector, ultimately leading to the compromise of…

Read More Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

Related