Cybersecurity

SOC files: an APT41 attack on government IT services in Africa

CybersecurityJuly 22, 2025

Introduction Some time ago, Kaspersky MDR analysts detected a targeted attack against government IT services in the African region. The attackers used hardcoded names of...

Critical Sharepoint 0-Day Vulnerablity Exploited CVE-2025-53770 (ToolShell)

CybersecurityJuly 21, 2025

Microsoft announced yesterday that a newly discovered critical remote code execution vulnerability in SharePoint is being exploited. There is no patch available. As a...

Belgian police launch bread-based cybersecurity campaign • Graham Cluley

CybersecurityJuly 20, 2025

You’ve heard of ransomware, deepfake scams, and business email compromise. But what about bread bag cybercrime...

MG – Darknet Diaries

CybersecurityJuly 19, 2025

Full Transcript In this episode we talk with MG (https://x.com/MG), the brilliant (and notorious) hacker and hardware engineer behind the OMG...

Navigating the labyrinth of forks

CybersecurityJuly 18, 2025

AsyncRAT has cemented its place as a cornerstone of modern malware and as a pervasive threat that has evolved into...

Welcoming Aura to Have I Been Pwned’s Partner Program

CybersecurityJuly 17, 2025

One of the greatest fears we all have in the wake of...

Anomaly detection betrayed us, so we gave it a new job – Sophos News

CybersecurityJuly 16, 2025

At this year’s Black Hat USA conference, Sophos Senior Data Scientists Ben Gelman and Sean Bergeron will give a talk on their research into...

North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign

CybersecurityJuly 15, 2025

Jul 15, 2025Ravie LakshmananMalware / Web Security The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing another set of...

What is UserAssist and how to use it in IR activities?

CybersecurityJuly 14, 2025

Introduction As members of the Global Emergency Response Team (GERT), we work with forensic artifacts on a daily basis to conduct investigations, and one of...

SSH Tunneling in Action: direct-tcp requests [Guest Diary], (Wed, Jul 9th)

CybersecurityJuly 13, 2025

As part of the SANS degree program curriculum, I had the opportunity to set up a honeypot to monitor log activities mimicking a vulnerable...

Russian basketball player arrested in ransomware case despite being “useless with computers”

CybersecurityJuly 12, 2025

A Russian professional basketball player has been arrested for allegedly acting as a negotiator for a ransomware gang.26-year old Daniil Kasatkin, was reportedly arrested...

The D.R. Incident – Darknet Diaries

CybersecurityJuly 11, 2025

Full Transcript Omar Avilez worked in the CSIRT of the Dominican Republic when a major cyber security incident erupted. Omar walks...

1...567...26 Page 6 of 26

Cybersecurity

Recent articles

Ola – Darknet Diaries

Safeguarding business data with encryption

Weekly Update 467

Threat Intelligence Executive Report – Volume 2025, Number 4 – Sophos News

Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions

How to protect your cookies from theft