Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit on March 18, 2026 Posted by The Hacker News
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS on March 17, 2026 Posted by The Hacker News
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23 on March 17, 2026 Posted by The Hacker News
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE on March 17, 2026 Posted by The Hacker News
Posted in DragonForce DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers on May 27, 2025 gallagherseanm
Posted in 3am ransomware A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist on May 20, 2025 gallagherseanm
Posted in Annual Threat Report Sophos Annual Threat Report appendix: Most frequently encountered malware and abused software on April 16, 2025 gallagherseanm
Posted in Annual Threat Report The Sophos Annual Threat Report: Cybercrime on Main Street 2025 on April 16, 2025 gallagherseanm
Posted in active adversary It takes two: The 2025 Sophos Active Adversary Report on April 2, 2025 Angela Gunn
Posted in adversary in the middle Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream on April 1, 2025 gallagherseanm
Posted in adversary in the middle Stealing user credentials with evilginx on March 28, 2025 Angela Gunn
