Cybersecurity

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

CybersecurityNovember 25, 2025

Nov 25, 2025Ravie LakshmananData Exposure / Cloud Security New research has found that organizations in various sensitive sectors, including governments, telecoms, and critical infrastructure, are...

Advancing Cybersecurity for Microsoft Environments – Sophos News

CybersecurityNovember 24, 2025

I’m pleased to share three significant updates that advance cybersecurity for organizations that rely on Microsoft technologies. These milestones expand the reach of Sophos’...

ToddyCat APT’s new tools and techniques

CybersecurityNovember 23, 2025

Introduction Email remains the main means of business correspondence at organizations. It can be set up either using on-premises infrastructure (for example, by deploying Microsoft...

Use of CSS stuffing as an obfuscation technique?

CybersecurityNovember 22, 2025

From time to time, it can be instructive to look at generic phishing messages that are delivered to one’s inbox or that are caught...

Wind farm worker sentenced after turning turbines into a secret crypto mine

CybersecurityNovember 21, 2025

A technical manager at a Dutch wind farm operator has been sentenced to 120 hours of community service after it was discovered he had...

MalwareTech – Darknet Diaries

CybersecurityNovember 20, 2025

Full Transcript MalwareTech was an anonymous security researcher, until he accidentally stopped WannaCry, one of the largest ransomware attacks in history....

What if your romantic AI chatbot can’t keep a secret?

CybersecurityNovember 19, 2025

Does your chatbot know too much? Here's why you should think twice...

Weekly Update 478

CybersecurityNovember 18, 2025

This week, it was an absolute privilege to be at Europol in The Hague, speaking about cyber offenders and at the InterCOP conference and...

November Patch Tuesday does its chores – Sophos News

CybersecurityNovember 17, 2025

Microsoft on Tuesday announced 63 patches affecting 13 product families. Four of the addressed issues are considered by Microsoft to be of Critical severity,...

RondoDox Exploits Unpatched XWiki Servers to Pull More Devices Into Its Botnet

CybersecurityNovember 16, 2025

Nov 15, 2025Ravie LakshmananMalware / Vulnerability The botnet malware known as RondoDox has been observed targeting unpatched XWiki instances against a critical security flaw that...

Phundamental or pholly? – Sophos News

CybersecurityNovember 15, 2025

On paper, it sounds so simple: you prepare for the real thing by running simulations. After all, the same principle applies to countless disciplines:...

The BetterBank DeFi protocol exploited for reward minting

CybersecurityNovember 14, 2025

Executive summary From August 26 to 27, 2025, BetterBank, a decentralized finance (DeFi) protocol operating on the PulseChain network, fell victim to a sophisticated exploit...

1 234 5 Page 3 of 5

Cybersecurity

Recent articles

Why identity is critical to improving cybersecurity posture

Weekly Update 481

GOLD BLADE’s strategic evolution – Sophos News

Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China

Rubrik & Sophos Enhance Cyber Resilience for Microsoft 365 – Sophos News

Kaspersky Security Bulletin 2025. Statistics