Sophos Security News

Security made simple
  1. New Sophos Central management and reporting for XG Firewall

    Sophos Central now includes group firewall management and flexible, cloud-based firewall reporting - for free.
  2. How I learned to stop worrying and love ‘grey hat’ tools

    A comprehensive security solution needs a sense of subtlety: not all machine code lends itself to be classified easily as malicious. As with most things in life, there’s a grey area in malware detection that includes hacking tools, poorly designed or easily exploitable applications, or borderline adware that provides little benefit to the unfortunate user […]
  3. Harden your public cloud environment against APT-style attacks

    A new APT-style attack combines a bypassing technique with a multi-platform payload to target both Windows and Linux cloud workloads. Stop the attack with technical advice from Sophos.
  4. ‘Cloud Snooper’ Attack Bypasses Firewall Security Measures

    In the course of investigating a malware infection of cloud infrastructure servers hosted in the Amazon Web Services (AWS) cloud, SophosLabs discovered a sophisticated attack that employed a unique combination of techniques to evade detection and that permits the malware to communicate freely with its command and control (C2) servers through a firewall that should, […]
  5. Five steps to avoid a cloud data breach

    The recent MGM Resort hotels cloud server data breach highlights the need to secure sensitive data held in the public cloud.