Threat Research

RSS

Threat Research

Ransomware

cybercrime

state-sponsored ransomware

victimization

Eeny, meeny, miny, moe? How ransomware operators choose victims

Most ransomware attacks are opportunistic, not targeted at a specific sector or region

Threat Research

clickfix

Featured

GOLD FEATHER

human verification

infostealer

qilin

Ransomware

StealC

I am not a robot: ClickFix used to deploy StealC and Qilin

The fake human verification process led to infostealer and ransomware infections

Security Operations

Threat Research

Active Adversary

Active Adversary Report

Nowhere, man: The 2026 Active Adversary Report

A silver-white robot hand holding a silver tray on its fingertips, against a blurred background of a large room

Threat Research

LLM

OpenClaw

CISO

risk

Sophos X-Ops

The OpenClaw experiment is a warning shot for enterprise AI security

Threat Research

X-ops

Patch Tuesday

Microsoft

Windows

February’s Patch Tuesday assumes battle stations

Threat Intelligence Executive Report – Volume 2025, Number 6

Threat Research

EDR killer

infostealer

Ransomware

Threat Intelligence Executive Report – Volume 2025, Number 6

Threat Research

virtual machine

cybercrime

Ransomware

ISPs

Malicious use of virtual machine infrastructure

Threat Research

Microsoft Office

vulnerability

advisory

Microsoft Office vulnerability (CVE-2026-21509) in active exploitation

Threat Research

TamperedChef

EvilAI

infostealer

Sophos X-Ops

TamperedChef serves bad ads, with infostealers as the main course

A computer hard disk on fire against a white background

Threat Research

Ransomware

Hive

Lockbit

BlackCat

LLM

Money Laundering

Laughter in the dark: Tales of absurdity from the cyber frontline and what they taught us

Threat Research

ATT&CK

Emulation

Featured

MITRE

MUSTANG PANDA

scattered spider

Sophos X-Ops

Game of clones: Sophos and The MITRE ATT&CK Enterprise 2025 Evaluations

…