Displaying items by tag: Sophos

Security vendor Sophos has warned that the BlackCat ransomware gang is using the Brute Ratel penetration testing tool in its attacks.

Cybersecurity firm Sophos has acquired SOC.OS a cloud-based security alert investigation and triage automation solution.

There is a lack of boardroom awareness of cybersecurity, and a broad assumption from executives that their company will never get attacked, despite rising ransomware incidences, impact, and cost, according to the findings of the third edition of Sophos’ survey report, The Future of Cybersecurity in Asia Pacific and Japan in collaboration with Tech Research Asia.

A serious vulnerability in the Linux kernel has been announced, with the researcher who discovered and reported it saying it "allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes".

Security vendor Sophos has appointed Chad Cleevely to the role of APJ channel sales director.

Veeam cloud and service provider Probax has appointed Tony Stratton to the role of APAC sales director.

GUEST RESEARCH: SophosLabs today published a new in-depth article on the SolarMarker malware installer.

Cybersecurity firm Sophos unveils its zero trust network access offering that fully integrates with Sophos Intercept X to provide advanced endpoint protection with a single agent.

Cybersecurity vendor Sophos has appointed Charles de Jesus to the role of ANZ channel director.

Returning to the office is something many more people have done since lockdowns ended, but which devices are unpatched and unprotected from not being used for months? Cyber security has never been more important, with Aaron Bugal, Global Solutions Engineer at Sophos, telling us all we need to know.

Returning to the office is something many more people have done since lockdowns ended, but which devices are unpatched and unprotected from not being used for months? Cyber security has never been more important, with Aaron Bugal, Global Solutions Engineer at Sophos, telling us all we need to know.

Security vendor Sophos says the attackers behind the AvosLocker ransomware are using the combination of Windows Safe Mode and the AnyDesk remote administration tool to bypass security controls and plant their malware.

GUEST INTERVIEW: Sophos has released its 2022 Threat Report, and Sophos ANZ MD joined iTWireTV not only to tell us its findings, but to recap 2021, talk ransomware, ethical zero-day research and more!

GUEST INTERVIEW: Sophos has released its 2022 Threat Report, and Sophos A/NZ MD joined iTWireTV not only to tell us its findings, but to recap 2021, talk ransomware, ethical zero-day research and more!

Attackers have tested an exploit for a critical Office vulnerability already fixed by Microsoft, by using a different format than that which was originally used in the exploit. The new exploit disappeared after a short interval.

COMPANY NEWS: Sophos, a global leader in next-generation cybersecurity, today released details of a novel exploit that bypasses a patch for a critical vulnerability (CVE-2021-40444) affecting the Microsoft Office file format. The findings are reported in a new SophosLabs Uncut article, “Attackers test ‘CAB-less 40444’ exploit in a dry run,” that shows how the attackers took a publicly available proof-of-concept Office exploit and weaponised it to deliver Formbook malware. The attackers then distributed it through spam emails for approximately 36 hours before it disappeared, according to Sophos researchers.

COMPANY NEWS: Since the first vulnerability in the Apache Foundation’s Log4j logging tool was revealed on 10 December, three sets of fixes to the Java library have been released as additional vulnerabilities were uncovered. This rapid iteration of fixes has left software developers and organisations worldwide scrambling to assess and mitigate their exposure with nearly daily-changing guidance. In the meantime, we’ve seen attempts to detect or exploit the vulnerability continue non-stop.

Cybersecurity firm Sophos has released new findings on the Tor2Mine cryptominer in new research Two flavours of Tor2Mine miner dig deep into networks with PowerShell, VBScript, that show how the miner evades detection, spreads automatically through a target network, and is increasingly harder to remove from an infected system.

GUEST OPINION: If you asked anyone working in the digital space today—marketers, customer service reps, IT managers or even ransomware adversaries—what the most valuable resource in the world is, their answer would be: data.

Cloud-native network detection and response provider ExtraHop has appointed Tanya Hovagimian as the company’s first Australia and New Zealand channel manager.