Sophos – Page 44 – PossibleThreat Articles

Security Sophos

A doubled “Dragon Breath” adds new air to DLL sideloading attacks

May 3, 2023 0 Comments dll sideloading, featured, sophos x-ops, threat research

Credit to Author: Gabor Szappanos| Date: Wed, 03 May 2023 10:00:12 +0000

Exploits of the venerable vulnerability gain in complexity

Security Sophos

Update 1: Increased exploitation of PaperCut drawing blood around the Internet

May 2, 2023 0 Comments cve-2023-27350, featured, mdr, mdr flash, papercut, security operations, sophos mdr

Credit to Author: Angela Gunn| Date: Thu, 27 Apr 2023 18:43:38 +0000

A recent remote code execution (RCE) vulnerability is increasingly in use to deliver Cobalt Strike and other remote management software, along with multiple ransomware threats – what you need to know about CVE-2023-27350

Security Sophos

Apple delivers first-ever Rapid Security Response “cyberattack” patch – leaves some users confused

May 1, 2023 0 Comments Apple, malware, Patch, rapid security response, security threats, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Mon, 01 May 2023 20:46:09 +0000

Just when we’d got used to three-numbered versions, such as “13.3.1”, here comes an update suffix, bringing you “13.3.1 (a)”…

Security Sophos

Mac malware-for-hire steals passwords and cryptocoins, sends “crime logs” via Telegram

May 1, 2023 0 Comments amos, Apple, Brave, Cybercrime, firefox, Google Chrome, mac, malware, Microsoft Edge, Opera, Yandex

Credit to Author: Paul Ducklin| Date: Sun, 30 Apr 2023 01:23:38 +0000

These malware peddlers are specifically going after Mac users. The hint’s in the name: “Atomic macOS Stealer”, or AMOS for short.

Security Sophos

Google wins court order to force ISPs to filter botnet traffic

April 28, 2023 0 Comments bust, cryptbot, Google, Law & order, racketeering, Scam

Credit to Author: Naked Security writer| Date: Fri, 28 Apr 2023 16:59:16 +0000

CryptBot criminals are alleged to have plundered browser passwords, illicitly-snapped screenshots, cryptocurrency account data, and more.

Security Sophos

Increased exploitation of PaperCut drawing blood around the Internet

April 27, 2023 0 Comments cve-2023-27350, featured, mdr, mdr flash, papercut, security operations, sophos mdr

Credit to Author: Angela Gunn| Date: Thu, 27 Apr 2023 18:43:38 +0000

Security Sophos

S3 Ep132: Proof-of-concept lets anyone hack at will

April 27, 2023 0 Comments chrome, Cybercrime, Edge, Google, Google Chrome, Microsoft, Microsoft Edge, papercut, Podcast, Privacy, vulnerability

Credit to Author: Paul Ducklin| Date: Thu, 27 Apr 2023 16:55:18 +0000

When Doug says, “Happy Remote Code Execution Day, Duck”… it’s irony. For the avoidance of all doubt 🙂

Security Sophos

Google leaking 2FA secrets – researchers advise against new “account sync” feature for now

April 26, 2023 0 Comments 2-factor Authentication, Google

Credit to Author: Paul Ducklin| Date: Wed, 26 Apr 2023 17:59:07 +0000

You waited 13 years for this feature in Google Authenticator. Now researchers are advising you to wait a while longer, just in case…

Security Sophos

PaperCut security vulnerabilities under active attack – vendor urges customers to patch

April 25, 2023 0 Comments cve-2023-27350, cve-2023-27351, Exploit, papercut, rce, vulnerability

Credit to Author: Paul Ducklin| Date: Tue, 25 Apr 2023 17:53:39 +0000

If you have the product, but you haven’t patched – well, the crooks have now landed, so please don’t delay. Do it today…

Security Sophos

Everything Everywhere All At Once: The 2023 Active Adversary Report for Business Leaders

April 25, 2023 0 Comments active adversary playbook, coinminer, conti, data breach, exfiltration, extortion, featured, Incident Response, loader, lockbit, Ransomware, sophos x-ops, threat research, web shells

Credit to Author: Angela Gunn| Date: Tue, 25 Apr 2023 10:00:03 +0000

A deep dive into over 150 incident-response cases reveals both attackers and defenders picking up the pace