Security Operations

RSS

Security Operations

Active Adversary

The Active Adversary Report: Safety in numbers

What a long, strange trip it’s been

Products & Services

Security Operations

From Security Operations to Security Leadership: Sophos CISO Advantage

Cyber Advisory: Increased Cyber Risk Amid U.S.–Israel–Iran Escalation

Security Operations

Sophos CTU

Iran

Operation Epic Fury

Cyber Advisory: Increased Cyber Risk Amid U.S.–Israel–Iran Escalation

Security Operations

Threat Research

Active Adversary

Active Adversary Report

Nowhere, man: The 2026 Active Adversary Report

Products & Services

Security Operations

Featured

Microsoft

Microsoft 365 Copilot

Microsoft Copilot

Microsoft Defender

Microsoft Intelligent Security Association (MISA)

Microsoft Security Copilot

SMB

Sophos Intelix

Sophos MDR

Sophos X-Ops

Cybersecurity for Microsoft Environments

Security Operations

CISO

Featured

North Korea

playbook

toolkit

Detecting fraudulent North Korean hires: A CISO playbook

A goldfish wearing a shark's fin that protrudes past the surface of the water

Security Operations

Featured

Phishing

simulations

Sophos X-Ops

Training

Phake phishing: Phundamental or pholly?

It takes two: The 2025 Sophos Active Adversary Report

Security Operations

Threat Research

Active Adversary

Active Adversary Report

Compromised Credentials

detection

dwell time

Featured

impact

incident response

LOLBIN

MFA

Monitoring

RDP

Remote Ransomware

root cause

It takes two: The 2025 Sophos Active Adversary Report

Security Operations

Threat Research

Active Adversary

Active Adversary Report

Featured

incident response

LoLBINs

MDR.

RDP

The Bite from Inside: The Sophos Active Adversary Report