Cybersecurity

Attacks on the education sector are surging: How can cyber-defenders respond?

CybersecurityApril 16, 2025

Academic institutions have a unique set of characteristics that makes them attractive...

Weekly Update 447

CybersecurityApril 15, 2025

I'm home! Well, for a day, then it's off to the other side of the country (which I just flew over last night on...

Industrial-strength April Patch Tuesday covers 135 CVEs – Sophos News

CybersecurityApril 14, 2025

Microsoft on Tuesday released 135 patches affecting 19 product families. Ten of the addressed issues, all remote code execution issues, are considered by Microsoft...

Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit

CybersecurityApril 13, 2025

Apr 11, 2025Ravie LakshmananNetwork Security / Vulnerability Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices...

Stealing user credentials with evilginx – Sophos News

CybersecurityApril 12, 2025

Evilginx, a tool based on the legitimate (and widely used) open-source nginx web server, can be used to steal usernames, passwords, and session tokens,...

GOFFEE’s recent attacks: new tools and techniques

CybersecurityApril 11, 2025

GOFFEE is a threat actor that first came to our attention in early 2022. Since then, we have observed malicious activities targeting exclusively entities...

Network Infraxploit [Guest Diary] – SANS Internet Storm Center

CybersecurityApril 10, 2025

Background I recently had the opportunity to get hands on with some Cisco networking devices. Due to being a network engineer prior to my current...

The Turing test falls to GPT-4.5 • Graham Cluley

CybersecurityApril 9, 2025

In episode 45 of The AI Fix, our hosts discover that ChatGPT is running the world,...

Grifter – Darknet Diaries

CybersecurityApril 8, 2025

Full Transcript Grifter is a longtime hacker, DEF CON organizer, and respected voice in the infosec community. From his early days...

What is penetration testing? | Unlocked 403 cybersecurity podcast (ep. 10)

CybersecurityApril 7, 2025

Ever wondered what it's like to hack for a living – legally?...

Weekly Update 446

CybersecurityApril 6, 2025

After an unusually long day of travelling from Iceland, we've finally made it to the land of Guinness, Leprechauns, and a tax haven for...

Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream – Sophos News

CybersecurityApril 5, 2025

Late in January 2025, a Managed Service Provider (MSP) administrator received a well-crafted phishing email containing what appeared to be an authentication alert for...

1...121314...25 Page 13 of 25

Cybersecurity

Recent articles

Europol says Telegram post about 50,000 Qilin ransomware award is fake

Sam the Vendor – Darknet Diaries

‘What happens online stays online’ and other cyberbullying myths, debunked

Weekly Update 465

Threat Intelligence Executive Report – Volume 2025, Number 4 – Sophos News

Key Findings from the Blue Report 2025