GOLD BLADE remote DLL sideloading attack deploys RedLoader

July 14, 2025

SophosAI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new job

Sophos’ Ben Gelman and Sean Bergeron will present their research on enhancing command line classification with benign anomalous data at Las Vegas

Threat Research

July 10, 2025

July Patch Tuesday offers 127 fixes

The seventh month is always a big one for Microsoft, and this year is no exception

Threat Research

July 03, 2025

Threat Intelligence Executive Report – Volume 2025, Number 3

This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during March and April

Threat Research

June 30, 2025

Using AI to identify cybercrime masterminds

Analyzing dark web forums to identify key experts on e-crime

AI ResearchThreat Research

June 26, 2025

Taking the shine off BreachForums

ShinyHunters threat group members were arrested in a coordinated law enforcement action for their association with BreachForums

Threat Research

June 13, 2025

June Patch Tuesday digs into 67 bugs

An extremely Windows-heavy month, with a surprise cameo by... Sophos?!

Threat Research

June 04, 2025

The strange tale of ischhfd83: When cybercriminals eat their own

A simple customer query leads to a rabbit hole of backdoored malware and game cheats

Threat Research

May 27, 2025

DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers

Ransomware actor exploited RMM to access multiple organizations; Sophos EDR blocked encryption on customer’s network

Security OperationsThreat Research

May 21, 2025

DragonForce targets rivals in a play for dominance

Not content with attacking retailers, this aggressive group is fighting a turf war with other ransomware operators

Threat Research