Secrets of a security analyst: Starting a threat hunt

Credit to Author: Alice Barford| Date: Tue, 19 Oct 2021 12:44:38 +0000

Learn the basics of starting a threat hunt with tips and tricks from experienced security analysts.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/QnlzsfLnhYc” height=”1″ width=”1″ alt=””/>

Read more

Sophos achieves AWS Level 1 Managed Security Service Provider Competency status

Credit to Author: Rich Beckett| Date: Tue, 24 Aug 2021 17:00:30 +0000

Sophos today announced that it has achieved Amazon Web Services (AWS) Level 1 Managed Security Service Provider (MSSP) Competency status. This designation recognizes that Sophos has successfully met AWS’s requirements for a baseline of managed security services to protect and monitor essential AWS resources 24/7, known as Level 1 Managed Security Services. This new baseline [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/kH6E-dWApkg” height=”1″ width=”1″ alt=””/>

Read more

Sophos Acquires Refactr

Credit to Author: Joe Levy| Date: Tue, 03 Aug 2021 13:00:39 +0000

Optimizing Managed Threat Response (MTR) and Extended Detection and Response (XDR) with Security Orchestration Automation and Response (SOAR) Capabilities<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/ftv4GpNXSd0″ height=”1″ width=”1″ alt=””/>

Read more

Sophos Acquires Braintrace

Credit to Author: Joe Levy| Date: Thu, 22 Jul 2021 13:00:04 +0000

Further Enhancing Sophos’ Adaptive Cybersecurity Ecosystem with Network Detection and Response (NDR) technology<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/2tfduEGnFkA” height=”1″ width=”1″ alt=””/>

Read more

MTR in Real Time: Hand-to-hand combat with REvil ransomware chasing a $2.5 million pay day

Credit to Author: Tilly Travers| Date: Wed, 30 Jun 2021 12:30:47 +0000

A few weeks ago, a mid-sized, 24/7 media company that had moved critical activities online during the pandemic, found itself locked in live combat with REvil ransomware attackers determined to secure a multi-million-dollar pay-out. The attack failed, but the company has yet to fully recover. In early June 2021, a detection of Cobalt Strike on [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/GaLU13-WJn8″ height=”1″ width=”1″ alt=””/>

Read more

What to expect when you’ve been hit with REvil ransomware

Credit to Author: Tilly Travers| Date: Wed, 30 Jun 2021 12:30:11 +0000

REvil, also known as Sodinokibi, is a widely used, conventional ransomware-as-a-service (RaaS) offering that has been around since 2019. Criminal customers can lease the REvil ransomware from its developers, adding their own tools and resources for targeting and implementation. As a result, the approach and impact of an attack involving REvil ransomware is highly variable. [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/vTf9wLrAhwI” height=”1″ width=”1″ alt=””/>

Read more

What to expect when you’ve been hit with Avaddon ransomware

Credit to Author: Tilly Travers| Date: Mon, 24 May 2021 11:52:50 +0000

Avaddon ransomware is a Ransomware-as-a-Service (RaaS) that combines encryption with data theft and extortion. Avaddon has been around since 2019 but has become more prominent and aggressive since June 2020. “Affiliates” or customers of the service have been observed deploying Avaddon to a wide range of targets in multiple countries, often through malicious spam and [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/eJWPBvysUPs” height=”1″ width=”1″ alt=””/>

Read more