Sophos Firewall v21.5: Entra ID SSO for Sophos Connect

Blog

Byadmblake May 1, 2025

How to make the most of the new features in Sophos Firewall v21.5.

Blog

Europol Sting Leaves Russian Cybercrime’s ‘NoName057(16)’ Group Fractured

National authorities have issued seven arrest warrants in total relating to the cybercrime collective known as NoName057(16), which recruits followers to carry out DDoS attacks on perceived enemies of Russia.

Read More Europol Sting Leaves Russian Cybercrime’s ‘NoName057(16)’ Group Fractured
Blog

Women Who ‘Hacked the Status Quo’ Aim to Inspire Cybersecurity Careers

A group of female cybersecurity pioneers will share what they’ve learned about navigating a field dominated by men, in order to help other women empower themselves and pursue successful cybersecurity careers.

Read More Women Who ‘Hacked the Status Quo’ Aim to Inspire Cybersecurity Careers
Blog

Multiple ChatGPT Security Bugs Allow Rampant Data Theft

Attackers can use them to inject arbitrary prompts, exfiltrate personal user information, bypass safety mechanisms, and take other malicious actions.

Read More Multiple ChatGPT Security Bugs Allow Rampant Data Theft
Blog

Apple Zero-Days Under ‘Sophisticated Attack,’ but Details Lacking

The technology giant said two zero-day vulnerabilities were used in attacks on iOS devices against “specific targeted individuals,” which suggests spyware or nation-state threat activity.

Read More Apple Zero-Days Under ‘Sophisticated Attack,’ but Details Lacking
Blog

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

Cybersecurity researchers have disclosed a critical flaw impacting Salesforce Agentforce, a platform for building artificial intelligence (AI) agents, that could allow attackers to potentially exfiltrate sensitive data from its customer relationship management (CRM) tool by means of an indirect prompt injection. The vulnerability has been codenamed ForcedLeak (CVSS score: 9.4) by Noma Security,

Read More Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection
Blog

Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

Cybersecurity researchers are calling attention to a spike in automated attacks targeting PHP servers, IoT devices, and cloud gateways by various botnets such as Mirai, Gafgyt, and Mozi. “These automated campaigns exploit known CVE vulnerabilities and cloud misconfigurations to gain control over exposed systems and expand botnet networks,” the Qualys Threat Research Unit (TRU) said…

Read More Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

Related