AI accelerated tool development and testing, but humans drove the workflow Categories: Threat Research Tags: AI, EDR
Tag: ResearchTags
AI, Global Security News
WantToCry ransomware remotely encrypts files
Brute-force attempts against SMB services can be early signs of an attack Categories: Threat Research Tags: Ransomware, WantToCry, SMB
Global Security News
Why AMOS matters: The macOS malware stealing data at scale
Sophos X-Ops looks at the Atomic macOS Stealer and its capabilities Categories: Threat Research Tags: MacOS, AMOS, infostealer
AI, Global Security News
Donuts and Beagles: Fake Claude site spreads backdoor
A malicious imitation of Anthropic’s Claude site leads to DLL sideloading – and a backdoor Categories: Threat Research Tags: Claude, Beagle, Backdoor, malvertising, AI, DONUT, DLL sideloading, Sophos X-Ops
AI, Global Security News
Proof-of-concept exploit available for Linux ‘Copy Fail’ vulnerability (CVE-2026-31431)
Categories: Threat Research Tags: advisory, Linux, Copy Fail
Global Security News
‘Mini Shai-Hulud’ supply chain attack targets SAP npm packages
Categories: Threat Research Tags: advisory, NPM, SAP
AI, Global Security News
Supply chain attacks hit Checkmarx and Bitwarden developer tools
Two supply chain attacks, same day, same command-and-control domain Categories: Threat Research Tags: Supply chain, Sophos X-Ops, pipeline, Bitwarden, Checkmarx
Global Security News
Microsoft addresses 163 CVEs, 88 advisories for April Patch Tuesday
Following a long-established pattern, the fourth month of the year is one of the cruelest Categories: X-ops, Threat Research Tags: Patch Tuesday
Global Security News
Adobe Reader zero-day vulnerability in active exploitation
Categories: Threat Research Tags: advisory, vulnerability, Adobe Reader
Global Security News
Axios npm package compromised to deploy malware
Categories: Threat Research Tags: advisory, NPM, Axios
Global Security News
Oracle vulnerability (CVE-2026-21992) impacts core products
Categories: Threat Research Tags: advisory, vulnerability, Oracle
Global Security News
March Patch Tuesday visits 15 product families
Eight Critical-severity bugs – none in Windows – appear in 84-CVE haul Categories: Threat Research Tags: Patch Tuesday, x-ops, Microsoft, Windows, detection
Global Security News
Cisco SD-WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitation
Categories: Threat Research Tags: advisory, vulnerability, SD-WAN
Global Security News
Eeny, meeny, miny, moe? How ransomware operators choose victims
Most ransomware attacks are opportunistic, not targeted at a specific sector or region Categories: Threat Research Tags: Ransomware, cybercrime, state-sponsored ransomware, victimization
Global Security News
Eeny, meeny, miny, moe? How ransomware operators choose victims
Most ransomware attacks are opportunistic, not targeted at a specific sector or region Categories: Threat Research Tags: Ransomware, cybercrime, state-sponsored ransomware, victimization
Global Security News
Eeny, meeny, miny, moe? How ransomware operators choose victims
Most ransomware attacks are opportunistic, not targeted at a specific sector or region Categories: Threat Research Tags: Ransomware, cybercrime, state-sponsored ransomware, victimization
Global Security News
Eeny, meeny, miny, moe? How ransomware operators choose victims
Most ransomware attacks are opportunistic, not targeted at a specific sector or region Categories: Threat Research Tags: Ransomware, cybercrime, state-sponsored ransomware, victimization
Global Security News
Eeny, meeny, miny, moe? How ransomware operators choose victims
Most ransomware attacks are opportunistic, not targeted at a specific sector or region Categories: Threat Research Tags: Ransomware, cybercrime, state-sponsored ransomware, victimization
Global Security News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
Categories: Threat Research Tags: Microsoft Office, vulnerability, advisory
Global Security News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
Categories: Threat Research Tags: Microsoft Office, vulnerability, advisory
Global Security News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
Categories: Threat Research Tags: Microsoft Office, vulnerability, advisory
Global Security News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
Categories: Threat Research Tags: Microsoft Office, vulnerability, advisory
Global Security News
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation
Categories: Threat Research Tags: Microsoft Office, vulnerability, advisory