Colin Cowie

Colin is a Threat Intelligence Analyst for the Sophos Managed Detection and Response (MDR) team, focusing on threat actor identification, incident response and working alongside detection engineers to address emerging threats. In past roles he worked in the financial sector performing internal and external penetration testing.

Contenuto di Colin Cowie

Threat Research

Astaroth

Brazil

featured

Guildma

infostealer

worm

Compromissione di WhatsApp porta al deployment di Astaroth

November 24, 2025

Threat Research

featured

MDR

Patch Tuesday

SharePoint

Sophos X-Ops

toolshell

Vulnerabilità “ToolShell” di SharePoint sfruttate attivamente in rete

July 21, 2025

Security Operations

Threat Research

adversary in the middle

featured

MFA

MFA phishing

qilin

RMM

ScreenConnect

supply chain compromise

Attacco mirato a MSP ScreenConnect: gli affiliati di Qilin colpiscono con spear-phishing

April 3, 2025

Security Operations

Threat Research

Black Basta

featured

Fin7

Java malware

legitimate service abuse

Microsoft Office 365

python malware

Quick Assist

remote machine management

STAC5143

stac5777

Teams

Sophos MDR intercetta due campagne di ransomware che utilizzano l”email bombing” e il “vishing” di Microsoft Teams

January 23, 2025