-
Custom "Pygmy Goat" malware used in Sophos Firewall hack on govt network
UK's National Cyber Security Centre (NCSC) has published an analysis of a Linux malware named "Pigmy Goat" created to backdoor Sophos XG firewall devices as part of recently disclosed attacks by Chinese threat actors.
- November 04, 2024
- 12:46 PM
0
-
Sophos backports RCE fix after attacks on unsupported firewalls
Sophos opted to backport a security update for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions after discovering hackers actively exploiting the flaw in attacks.
- December 12, 2023
- 12:29 PM
0
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
CISA warns of actively exploited Windows, Sophos, and Oracle bugs
The U.S. Cybersecurity & Infrastructure Security Agency has added to its catalog of known exploited vulnerabilities (KEV) three security issues that affect Microsoft devices, a Sophos product, and an enterprise solution from Oracle.
- November 17, 2023
- 09:08 AM
- 0
-
Cybersecurity firm Sophos impersonated by new SophosEncrypt ransomware
Cybersecurity vendor Sophos is being impersonated by a new ransomware-as-a-service called SophosEncrypt, with the threat actors using the company name for their operation.
- July 18, 2023
- 04:47 PM
- 0
-
Over 4,000 Sophos Firewall devices vulnerable to RCE attacks
Over 4,000 Sophos Firewall devices exposed to Internet access are vulnerable to attacks targeting a critical remote code execution (RCE) vulnerability.
- January 17, 2023
- 01:53 PM
- 0
-
Sophos warns of new firewall RCE bug exploited in attacks
Sophos warned today that a critical code injection security vulnerability in the company's Firewall product is being exploited in the wild.
- September 23, 2022
- 12:36 PM
- 0
-
Sophos Firewall zero-day bug exploited weeks before fix
Chinese hackers used a zero-day exploit for a critical-severity vulnerability in Sophos Firewall to compromise a company and breach cloud-hosted web servers operated by the victim.
- June 16, 2022
- 06:23 PM
- 0
-
Sophos antivirus driver caused BSODs after Windows KB5013943 update
Sophos has released a fix for a known issue triggering blue screens of death (aka BSODs) on Windows 11 systems running Sophos Home antivirus software after installing the KB5013943 upda
- May 16, 2022
- 11:43 AM
- 0
-
CISA orders agencies to patch actively exploited Sophos firewall bug
The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal civilian agencies on Thursday to patch a critical Sophos firewall bug and seven other vulnerabilities within the next three weeks, all exploited in ongoing attacks.
- March 31, 2022
- 03:46 PM
- 0
-
Sophos warns critical firewall bug is being actively exploited
British-based cybersecurity vendor Sophos warned that a recently patched Sophos Firewall bug allowing remote code execution (RCE) is now actively exploited in attacks.
- March 29, 2022
- 10:00 AM
- 0
-
Critical Sophos Firewall vulnerability allows remote code execution
Sophos has fixed a critical vulnerability in its Sophos Firewall product that allows remote code execution. Tracked as CVE-2022-1040, the authentication bypass vulnerability exists in the User Portal and Webadmin areas of Sophos Firewall.
- March 27, 2022
- 08:03 AM
- 0
-
Sophos fixes SQL injection vulnerability in their Cyberoam OS
Sophos has deployed a hotfix for their line of Cyberoam firewalls and routers to fix a SQL injection vulnerability.
- December 10, 2020
- 04:17 PM
- 0
-
Sophos alerts customers of info exposure after security breach
British cybersecurity and hardware company Sophos has emailed a small group of customers to alert them that their personal information was exposed following a security breach discovered on Tuesday.
- November 26, 2020
- 08:12 AM
- 0
-
Hackers tried to use Sophos Firewall zero-day to deploy Ransomware
Hackers tried to exploit a zero-day in the Sophos XG firewall to distribute ransomware to Windows machines but were blocked by a hotfix issued by Sophos.
- May 21, 2020
- 02:32 PM
- 0
-
Asnarök malware exploits firewall zero-day to steal credentials
Some Sophos firewall products were attacked with a new Trojan malware, dubbed Asnarök by researchers cyber-security firm Sophos, to steal usernames and hashed passwords starting with April 22 according to an official timeline.
- April 27, 2020
- 11:07 AM
- 0
-
Hackers exploit zero-day in Sophos XG Firewall, fix released
Sophos has fixed a zero-day SQL injection vulnerability in their XG Firewall after receiving reports that hackers actively exploited it in attacks.
- April 26, 2020
- 03:43 PM
- 1
-
Windows May Hang for Sophos Users After Installing May Updates
Sophos is reporting that if their business products are installed on Windows 7, installing the May 2019 Patch Tuesday updates may cause Windows to hang on the update screen showing "Configuring 30%".
- May 17, 2019
- 04:10 PM
- 2
-
Sophos UTM 9.602 Released That Fixes 3 Vulnerabilities
An update for Sophos UTM has been released that resolves three vulnerabilities in the network security platform. Two of these vulnerabilities are related to bundled open source software and a third is for a component related to inbound mail processing.
- April 30, 2019
- 09:58 PM
- 0
-
Windows Security Update Caused Recent Antivirus Conflicts and Freezes
According to an updated McAfee support bulletin, a Windows security update for the Windows Client Server Run-Time Subsystem (CSRSS) service appears to have caused the recent conflicts between enterprise antivirus software and Windows.
- April 28, 2019
- 07:15 PM
- 0
