Sophos – TheCyberThrone

CISA KEV Catalog Update Part III- February 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) Catalog, adding five new vulnerabilities that are actively being exploited in the wild. These vulnerabilities…

PravinKarthik February 7, 2025

Frag Ransomware Dissection

A new ransomware strain named Frag ransomware has been discovered during the series of cyberattacks involving exploiting a vulnerability in Veeam backup servers, tracked as CVE-2024-40711 This newly observed ransomware,…

PravinKarthik November 11, 2024

Sophos says Chinese threat actors enhance tactics over time

Security researchers from Sophos have detailed evolving tactics by Chinese advanced persistent threat groups through the analysis of their telemetry on campaigns targeting its customers between December 2018 and November…

PravinKarthik November 2, 2024

Sophos set to acquire Secureworks

Sophos is set to acquire Secureworks for a deal worth $859 million. The acquisition comes five years after Sophos was itself bought by Thoma Bravo for $3.9 billion. Sophos are…

PravinKarthik October 22, 2024

SOPHOS Appliances Vulnerable to RCE

Sophos last year patched a remote code execution flaw affecting the web administration console (WebAdmin) of SG UTM devices. The issue, tracked as CVE-2020-25223, was reported and fixed with the…

PravinKarthik August 23, 2021