Threat Research

RSS

A silver-white robot hand holding a silver tray on its fingertips, against a blurred background of a large room

Threat Research

LLM

OpenClaw

CISO

risk

Sophos X-Ops

The OpenClaw experiment is a warning shot for enterprise AI security

Agentic AI promises a lot – but it also introduces more risk. Sophos’ CISO explores the challenges and how to address them

Threat Research

Ransomware

cybercrime

state-sponsored ransomware

victimization

Eeny, meeny, miny, moe? How ransomware operators choose victims

Most ransomware attacks are opportunistic, not targeted at a specific sector or region

Threat Research

X-ops

Patch Tuesday

Featured

Microsoft

Windows

February’s Patch Tuesday assumes battle stations

Threat Research

virtual machine

cybercrime

Ransomware

ISPs

Malicious use of virtual machine infrastructure

Threat Research

Microsoft Office

vulnerability

advisory

Microsoft Office vulnerability (CVE-2026-21509) in active exploitation

Threat Research

TamperedChef

EvilAI

infostealer

Sophos X-Ops

TamperedChef serves bad ads, with infostealers as the main course

It takes two: The 2025 Sophos Active Adversary Report

Security Operations

Threat Research

active adversary

Active Adversary Report

Compromised Credentials

detection

dwell time

featured

impact

incident response

LOLBIN

MFA

Monitoring

RDP

Remote Ransomware

root cause

It takes two: The 2025 Sophos Active Adversary Report