
Greg Iddon
Greg is a strategist in the Sophos Technology Office and a manager for Sophos Managed Threat Response. Driven by a desire to make the digital world a safer place, Greg has a passion for cybersecurity that has consumed the past 15 years of his life.
A rampant, idiosyncratic nerd with a thoroughly 'British' sense of humour, Greg strongly believes that the complexities of computing and security can be made accessible, funny, and interesting to the masses, and takes every opportunity to share his passion with anyone who wishes to listen.
Content by Greg Iddon

Security Operations
Threat Research
Email Compromise
Featured
human-led threat hunting
MDR
Microsoft 365
microsoft graph
Office 365
Investigator, API Yourself: Deploying Microsoft Graph on the trail of an attacker
June 30, 2023

Security Operations
Threat Research
3cx
CVE-2023-29059
d3dcompiler_47.dll
DLL sideloading
Featured
ffmpeg.dll
IOC Hunting
Update 2: 3CX users under DLL-sideloading attack: What you need to know
March 29, 2023

Security Operations
Exchange vulnerability
Featured
Microsoft Exchange
ProxyShell
vulnerability
ProxyShell vulnerabilities in Microsoft Exchange: What to do
August 23, 2021

Security Operations
HiveNightmare
SeriousSAM
vulnerability
Zero-day
HiveNightmare aka SeriousSAM vulnerability : what to do
July 22, 2021

Security Operations
Threat Research
Active Adversary
Active Adversary Report
Featured
Ransomware
sidebar
Sophos EDR
Sophos Managed Threat Response (MTR)
Sophos Rapid Response
The Active Adversary Playbook 2021
May 18, 2021

Security Operations
EDR
Hafnium
patching
Sophos Managed Threat Response (MTR)
webshell
Patching alone is not enough: Investigate your exposure windows
March 25, 2021

Products & Services
Hafnium
MTR
Rapid Response
Sophos MTR
Sophos Rapid Response
HAFNIUM: Advice about the new nation-state attack
March 5, 2021

Security Operations
MDR
Ransomware
sidebar
Sophos MDR
MTR casebook: Uncovering a backdoor implant in a SolarWinds Orion server
February 3, 2021

Security Operations
MDR
Sophos MDR
MTR Casebook: An active adversary caught in the act
October 27, 2020