Defend what matters: Introducing Sophos Endpoint for Legacy Platforms

Blog

Byadmblake August 28, 2025

Comprehensive endpoint security for critical systems

Blog

npm Supply Chain Cryptocurrency Malware

What is the Attack? Researchers have identified a large-scale software supply chain campaign targeting the npm ecosystem, leveraging malicious JavaScript packages to distribute a multi-stage cryptocurrency-focused malware framework. The campaign affected numerous npm packages that collectively accumulated more than 2.7 million downloads, significantly increasing the potential victim pool among developers, software organizations, and CI/CD environments….

Read More npm Supply Chain Cryptocurrency Malware
Blog

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control (C2) framework called Havoc. “The threat actor hides each malware stage behind a SharePoint site and uses a modified version of Havoc Demon in conjunction with the Microsoft Graph API to obscure C2 communications within…

Read More Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites
Blog

WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors

Cybersecurity researchers are warning about a large-scale phishing campaign targeting WooCommerce users with a fake security alert urging them to download a “critical patch” but deploy a backdoor instead. WordPress security company Patchstack described the activity as sophisticated and a variant of another campaign observed in December 2023 that employed a fake CVE ploy to…

Read More WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors
Blog

Introducing Sophos Workspace Protection

An integrated bundle of security solutions that protect apps, data, workers, and guests easily and affordably – wherever they are. Categories: Products & Services Tags: Workspace

Read More Introducing Sophos Workspace Protection
Blog

How Cyber Insurance MGAs Shape Policies for Evolving Cyber Risks

Managing general agents help insurers navigate sectors where they lack expertise. A cybersecurity policy written by an MGA is more likely to reflect an understanding of the risks CISOs deal with.

Read More How Cyber Insurance MGAs Shape Policies for Evolving Cyber Risks
Blog

From HealthKick to GOVERSHELL: The Evolution of UTA0388’s Espionage Malware

A China-aligned threat actor codenamed UTA0388 has been attributed to a series of spear-phishing campaigns targeting North America, Asia, and Europe that are designed to deliver a Go-based implant known as GOVERSHELL. “The initially observed campaigns were tailored to the targets, and the messages purported to be sent by senior researchers and analysts from legitimate-sounding,…

Read More From HealthKick to GOVERSHELL: The Evolution of UTA0388’s Espionage Malware

Related