Sophos Security News

Security made simple
  1. CVE-2018-18500: Heap write-after-free in Firefox, Analysis and Exploitation

    Editor’s note: This article is a technical description of a bug discovered by a member of the Offensive Research team at SophosLabs, and how the researcher created a proof-of-concept “Arbitrary Read/Write Primitive” exploit for this bug. The vulnerability was deemed critical by Mozilla’s bug tracking team and was patched in Firefox 65.0. It’s written for […]
  2. SD-WAN and XG Firewall

    What is SD-WAN exactly? And what's it for? We take a look.
  3. Microsoft fixes 74 bugs in its April, 2019 Patch Tuesday releases

    There are 16 Microsoft bugs marked as critical, as well as serious flaws in Adobe Flash and Acrobat that require immediate attention
  4. Machine learning hones weapons of maldoc destruction

    By Jason Zhang Criminals continue to leverage the features of Adobe’s PDF document format to engage in malware and phishing attacks, with no sign of a slowdown. Last year at Black Hat USA, I gave a presentation about PDF-based malware detection using machine learning. We discovered that the best AV engine could only catch fewer […]
  5. Sophos Cloud Optix is solving the toughest challenges in public cloud security

    You move to the public cloud with the dream of infrastructure cost savings, added agility, and taking full advantage of devOps process to speed up development and product delivery. A move to Amazon Web Services, Microsoft Azure or Google Cloud Platform can bring all that good stuff. But soon you’ll meet your new challenge of […]