Sophos Firewall v21.5 early access is now available

Blog

Byadmblake April 8, 2025

Say hello to great new features and enhancements in v21.5.

Blog

Sophos AI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job

Following on from our preview, here’s Ben Gelman and Sean Bergeron’s research on enhancing command line classification with benign anomalous data

Read More Sophos AI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job
Blog

WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables

Cybersecurity researchers are warning of a new stealthy credit card skimmer campaign that targets WordPress e-commerce checkout pages by inserting malicious JavaScript code into a database table associated with the content management system (CMS). “This credit card skimmer malware targeting WordPress websites silently injects malicious JavaScript into database entries to steal sensitive payment

Read More WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables
Blog

Bogus ‘BianLian’ Gang Sends Snail-Mail Extortion Letters

The letters mimic typical ransom notes and threaten to delete or leak compromised data if payments aren’t made, though none of the organizations that received them had active ransomware attacks.

Read More Bogus ‘BianLian’ Gang Sends Snail-Mail Extortion Letters
Blog

Hackers Exploit Signal’s Linked Devices Feature to Hijack Accounts via Malicious QR Codes

Multiple Russia-aligned threat actors have been observed targeting individuals of interest via the privacy-focused messaging app Signal to gain unauthorized access to their accounts. “The most novel and widely used technique underpinning Russian-aligned attempts to compromise Signal accounts is the abuse of the app’s legitimate ‘linked devices’ feature that enables Signal to be used on…

Read More Hackers Exploit Signal’s Linked Devices Feature to Hijack Accounts via Malicious QR Codes
Blog

Mitel MiCollab Unauthorized Access

What is the attack?Security flaws in Mitel MiCollab, CVE-2024–35286 and CVE-2024–41713, have been found, putting many organizations at risk. These vulnerabilities allow attackers bypass authentication and access files on affected servers, revealing sensitive information that could expose organizations to serious security risks. Mitel MiCollab is a popular solution that combines voice calling, video calling, chat,…

Read More Mitel MiCollab Unauthorized Access
Blog

Researcher Found Flaw to Discover Phone Numbers Linked to Any Google Account

Google has stepped in to address a security flaw that could have made it possible to brute-force an account’s recovery phone number, potentially exposing them to privacy and security risks. The issue, according to Singaporean security researcher “brutecat,” leverages an issue in the company’s account recovery feature. That said, exploiting the vulnerability hinges on several…

Read More Researcher Found Flaw to Discover Phone Numbers Linked to Any Google Account

Related