Looking for trusted #cybersecurity in #Kenya and East Africa? #Victorock is your certified #Sophos #Partner for #firewalls, #endpoint #protection & #MDR. Call +254706357055 or email info@victorockkenya.com us today. #Sophos #ICT #CloudBased

https://victorockkenya.com/victorock-kenya-limited-your-trusted-sophos-partner-in-cybersecurity-solutions/

As a #Sophos #Silver #Partner in East Africa, trust Victorock to deliver Sophos enterprise-grade #protection with local expertise you can rely on. Call +254706357055 or email info@victorockkenya.com us today. #Cybersecurity #ICT #Firewalls #Kenya

https://victorockkenya.com/victorock-kenya-limited-named-sophos-silver-partner-in-east-africa/

🛡️ Defend your digital world with #Sophos! 🚀Advanced #cybersecurity made simple. Protect your business from online threats with industry-leading solutions. Call +254706357055 or email info@victorockkenya.com to place your order. #NetworkSecurity

https://victorockkenya.com/order-sophos/

Vanochtend voor het eerst last gehad van het feit dat ik een nieuwe authenticator app (#EnteAuth) gebruik en niet die van #Google of #Microsoft.
Klant gebruikt #Sophos voor vpn en die moet een goedkeuringsmelding krijgen ipv sms of een andere #authenticator app.
Sophos gebruiken is dus geen aanrader.

Found the last #dateformat on a #sophos UTM9 in the logs. Who conceived that log format?! #iso8601 is the only acceptable format for logs.

The Persistent Threat of Salt Typhoon: Tracking Exposures of Potentially Targeted Devices

Salt Typhoon, a Chinese state-sponsored threat actor, has been targeting major telecommunications providers worldwide by exploiting vulnerabilities in network devices. This analysis tracks global exposures of internet-facing devices associated with Salt Typhoon activity over six months, including Sophos Firewalls, Cisco IOS XE WebUIs, Ivanti Connect Secure, and Fortinet FortiClient EMS systems. Overall combined exposure decreased by 25%, with Sophos Firewall interfaces showing the largest reduction. Cisco IOS XE was the only platform with increased exposure. Geographically, most exposures remain concentrated in the United States, except for Sophos XG Firewall exposures in Germany. The persistence of exposed devices raises questions about remediation efforts and organizational responses to these threats.

Pulse ID: 680c3c41a960b91fa23ec72d
Pulse Link: https://otx.alienvault.com/pulse/680c3c41a960b91fa23ec72d
Pulse Author: AlienVault
Created: 2025-04-26 01:52:01

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Chinese #Cisco #ConnectSecure #CyberSecurity #Germany #InfoSec #Ivanti #OTX #OpenThreatExchange #RAT #Sophos #Telecom #Telecommunication #UnitedStates #bot #iOS #AlienVault

Einen VPN Tunnel bekommen ich aber leider nicht hin. #OpenVPN #Sophos

(sophos.com) Evilginx: How Attackers Bypass MFA Through Adversary-in-the-Middle Attacks https://news.sophos.com/en-us/2025/03/28/stealing-user-credentials-with-evilginx/

A short descriptive article about Evilginx and how stealing credentials work, a few suggested ways of detecting etc.

Summary:
This article examines Evilginx, a tool that leverages the legitimate nginx web server to conduct Adversary-in-the-Middle (AitM) attacks that can bypass multifactor authentication (MFA). The tool works by proxying web traffic through malicious sites that mimic legitimate services like Microsoft 365, capturing not only usernames and passwords but also session tokens. The article demonstrates how Evilginx operates, showing how attackers can gain full access to a user's account even when protected by MFA. It provides detection methods through Azure/Microsoft 365 logs and suggests both preemptive and reactive mitigations, emphasizing the need to move toward phishing-resistant FIDO2-based authentication methods.

#Cybersecurity #ThreatIntel #Evilginx #Phishing #Credentials #MFA #Azure #Sophos

Le ransomware #Qilin affiche 23 victimes en mars

Le tribunal de Cleveland, dans l'Ohio (USA) est à l'arrêt depuis le 23 février, son site WEB est hors service. L'hôpital de Los Madroños à 30 km à l'ouest de Madrid, voit ses données exposées sur le dark web.

Qilin affiche aussi plus d'une centaine de documents appartenant au ministère des Affaires étrangères de l'Ukraine dans un contexte géopolitique en équilibre précaire.

https://librexpression.fr/le-ransomware-qilin-fait-23-victimes-en-mars

#ClevelandOhio #cyberattack #databreach #espagne #europe #hospital #informatique #librexpression #ransomware #gdpr #russie #sophos #threaths #ukraine #usa #warfare

(Crédits : Mohamed Hassan/Pixabay)

Vor zwei Jahren habe ich aufgeschrieben wie ich mir mit einem alten #Sophos Gateway und #OPNsense einen sehr anständigen #Router / #Firewall gebaut habe.
Ganz vergessen zu veröffentlichen, das habe ich jetzt mal nachgeholt. 😵‍💫

https://www.schatenseite.de/2025/03/04/opnsense-appliance-mit-sonos-hardware/

#Android :android: abriegeln - onlinepc.ch https://www.onlinepc.ch/mobile/praxis/android-abriegeln-2948927.html #MobileSecurity #Cybersecurity #DataPrivacy #Antivirus #TechTips #AndroidUpdates #MobileTech #SecurityApps #Sophos #Bitdefender #StaySafeOnline #SecureAndroid #TechForGood

보안 업체 인수해서 인프라 사업에 끼워팔기 경영 모임원 중 하나였던 Dell Technologies도 이제 AI 하겠다고 보안 사업 엑시트. 유럽의 스몰 비즈니스 보안 사업 강자인 Sophos가 인수 했다.

#Sophos #DellTechnologies #Secureworks

Sophos voltooit overname van secureworks voor $859 miljoen https://www.trendingtech.news/trending-news/2025/02/52659/sophos-voltooit-overname-van-secureworks-voor-859-miljoen #Sophos #Secureworks #cyberbeveiliging #MDR #overname #Trending #News #Nieuws

Cyber gangs from Russia are increasingly acting as Microsoft support staff, in order to steal data or deliver ransomware to their victims.

https://www.computing.co.uk/news/2025/security/russian-cybercriminals-muscle-in-on-microsoft-support-scam

#infosec #cybersecurity #sophos #russia #hacking #scam #technews #microsoft #teams

Critical vulnerabilities threaten Sophos firewalls

Important security updates for Sophos firewalls have been released. They install automatically with the default settings.

https://www.heise.de/en/news/Critical-vulnerabilities-threaten-Sophos-firewalls-10218984.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Firewall #Patchday #Security #Sicherheitslücken #Sophos #Updates #news

🚨 Security Alert! Sophos has identified and patched three critical vulnerabilities in its Firewall, including risks for remote code execution and privilege escalation. Users are urged to apply the patch immediately! If unable, follow the suggested workarounds to protect your systems. 🔒💻 Read more here: https://www.techradar.com/pro/security/sophos-flags-concerning-firewall-security-flaws-users-told-to-patch-now #CyberSecurity #Sophos #FirewallFlaws #PatchNow #newz

Kritische Sicherheitslücken bedrohen Sophos-Firewalls

Es sind wichtige Sicherheitsupdates für Firewalls von Sophos erschienen. Mit den Standardeinstellungen installieren sie sich automatisch.

https://www.heise.de/news/Kritische-Sicherheitsluecken-bedrohen-Sophos-Firewalls-10218914.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Firewall #Patchday #Security #Sicherheitslücken #Sophos #Updates #news

#Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform #SQLinjection, remote code execution, and gain privileged SSH access to devices.
#cybercrime #CyberSecurity https://www.bleepingcomputer.com/news/security/sophos-discloses-critical-firewall-remote-code-execution-flaw/

Alert: Two critical vulnerabilities in #Sophos Firewalls could grant attackers remote code execution and privileged access.

🔧 Action Plan:
✔️ Update to v21 MR1 or newer.
✔️ Restrict SSH access immediately.
✔️ Ensure user portals are not WAN-exposed.

🔗https://thehackernews.com/2024/12/sophos-fixes-3-critical-firewall-flaws.html