Sophos – Page 46 – PossibleThreat Articles

S3 Ep130: Open the garage bay doors, HAL [Audio + Text]

April 13, 2023 0 Comments Apple, Cybercrime, exoploit, Hacking, IoT, Microsoft, Naked Security Podcast, Podcast, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Thu, 13 Apr 2023 16:54:01 +0000

I’m sorry, Dave. I’m afraid I can’t… errr, no, hang on a minute, I can do that easily! Worldwide! Right now!

Security Sophos

Patch Tuesday: Microsoft fixes a zero-day, and two curious bugs that take the Secure out of Secure Boot

April 13, 2023 0 Comments bootkit, Exploit, Microsoft, Patch Tuesday, secure boot, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Wed, 12 Apr 2023 18:57:23 +0000

Is Secure Boot without the Secure just “Boot”?

Security Sophos

Sophos Firewall recognized as #1 firewall solution by G2 users

April 13, 2023 0 Comments g2, Network, products & services, sophos firewall, xgs

Credit to Author: Chris McCormack| Date: Thu, 13 Apr 2023 13:28:58 +0000

Top rated based on a high customer satisfaction score and large market presence.

Security Sophos

Tax firms targeted by precision malware attacks

April 13, 2023 0 Comments featured, guloader, irs, malware, remcos, threat research

Credit to Author: Andrew Brandt| Date: Thu, 13 Apr 2023 10:00:55 +0000

CPAs and accountants received solicitations for tax filing business that were just a social engineering ploy

Security Sophos

Tax-time smishing campaign targets Indian account holders

April 12, 2023 0 Comments featured, finance and banking, india, smishing, threat research

Credit to Author: Jagadeesh Chandraiah| Date: Wed, 12 Apr 2023 20:44:10 +0000

The end of the fiscal year is already hectic enough, but would-be scammers just don’t care whom they affect

Security Sophos

Microsoft fixes a zero-day – and two curious bugs that take the Secure out of Secure Boot

April 12, 2023 0 Comments bootkit, Exploit, Microsoft, Patch Tuesday, secure boot, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Wed, 12 Apr 2023 12:57:23 +0000

Is Secure Boot without the Secure just “Boot”?

Security Sophos

April showers Windows updates on sysadmins

April 11, 2023 0 Comments cve-2023-21554, cve-2023-28231, cve-2023-28250, cve-2023-28252, featured, l2tp, office, Patch Tuesday, pcl5, postscript, signed drivers, threat research, Windows

Credit to Author: Angela Gunn| Date: Tue, 11 Apr 2023 18:34:37 +0000

A 98-CVE Patch Tuesday marks another big haul for the OS

Security Sophos

Attention gamers! Motherboard maker MSI admits to breach, issues “rogue firmware” alert

April 11, 2023 0 Comments blackmail, data breach, extortion, malware, msi, private key, Ransomware, supply chain

Credit to Author: Paul Ducklin| Date: Tue, 11 Apr 2023 16:58:48 +0000

Stealing private keys is like getting hold of a medieval monarch’s personal signet ring… you get to put an official seal on treasonous material.

Security Sophos

Apple zero-day spyware patches extended to cover older Macs, iPhones and iPads

April 10, 2023 0 Comments Apple, Exploit, iOS, kernel bug, OS X, rce, spyware, vulnerability

Credit to Author: Paul Ducklin| Date: Mon, 10 Apr 2023 20:20:44 +0000

That double-whammy Apple browser-to-kernel spyware bug combo we wrote up last week? Turns out it applies to all supported Macs and iDevices – patch now!

Security Sophos

Popular server-side JavaScript security sandbox “vm2” patches remote execution hole

April 8, 2023 0 Comments Exploit, rc e, sandbox, vm2, vulnerability

Credit to Author: Paul Ducklin| Date: Sun, 09 Apr 2023 00:28:42 +0000

The security error was in the error handling system that was supposed to catch potential security errors…