Latest news with #Sophos


NDTV
4 hours ago
- Business
- NDTV
Microsoft Server Hack Likely Single Actor, Over 8,000 Firms Hit
A global attack on Microsoft server software used by thousands of government agencies and businesses to share documents within organisations is likely the work of a single actor, a cybersecurity researcher said on Monday. Microsoft on Saturday issued an alert about "active attacks" on SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the exploit, also known as a "zero day" because it was previously unknown to cybersecurity researchers. "Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor. However, it's possible that this will quickly change," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm. That tradecraft included the sending of the same digital payload to multiple targets, Pilling added. Microsoft said it had "provided security updates and encourages customers to install them," a company spokesperson said in an emailed statement. It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Centre did not immediately respond to a request for comment. The Washington Post said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted US and international agencies and businesses. According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers. Those servers include major industrial firms, banks, auditors, healthcare companies, and several US state-level and international government entities. "The SharePoint incident appears to have created a broad level of compromise across a range of servers globally," said Daniel Card of British cybersecurity consultancy, PwnDefend. "Taking an assumed breach approach is wise, and it's also important to understand that just applying the patch isn't all that is required here."


Channel Post MEA
13 hours ago
- Business
- Channel Post MEA
Sophos Named Leader In 2025 Gartner Magic Quadrant For Endpoint Protection Platforms
Sophos has been named a Leader in the 2025 Gartner Magic Quadrant for Endpoint Protection Platforms (EPP), marking the 16th consecutive time the company has received this recognition. Sophos has been recognized in the Gartner Magic Quadrant for Endpoint Protection Platforms (EPP) since the inaugural publication for this category in 2007. Sophos' market-leading endpoint security solutions include Sophos Endpoint powered by Intercept X, Sophos Extended Detection and Response (EDR/XDR), and Sophos Managed Detection and Response (MDR). Over 300,000 organizations trust Sophos endpoint security solutions to defend against cyberthreats, including advanced remote ransomware attacks and active adversaries. Unique to Sophos, the solution includes adaptive defenses that automatically disrupt attackers by dynamically adjusting protection levels based on threat context. 'Sophos' strength lies in its prevention-first strategy, designed to stop breaches before they start, adapt defenses in real time, and strengthen detection and response when it matters most,' said Kyle Falkenhagen, SVP, Product Management, Sophos. 'We believe that receiving this recognition in the highly competitive endpoint security market for 16 consecutive reports reflects our relentless focus on developing innovative solutions that stay ahead of the global threat landscape and the adversaries we face every day.' Sophos and Secureworks: The future of protection, detection, and response Following Sophos' acquisition of Secureworks in February 2025, combining two leading and complementary portfolios to offer a comprehensive suite of solutions for small, midmarket and enterprise organizations. Secureworks Taegis XDR customers can use Sophos Endpoint to elevate their cyber defenses — at no additional charge — delivering both improved protection and return on investment. The integration of Secureworks also adds a new Counter Threat Unit (CTU) to the Sophos X-Ops advanced threat response joint task force, further expanding the rich threat intelligence that informs all customers' defenses. Backed by Sophos' advanced security technologies and a broad network of intelligence contacts and partners, the CTU plays a critical role in identifying and tracking threat actors and analyzing anomalous activity, uncovering new attack techniques, threats, and major shifts in the threat landscape. Additional Sophos Recognitions In addition to this most-recent recognition, Sophos has also been named a 'Customers' Choice' vendor in the 2025 Gartner Peer Insights Voice of the Customer Report for Endpoint Protection Platforms for the fourth consecutive year and in the inaugural Voice of the Customer Report for Extended Detection and Response . This makes Sophos the only vendor to be named a 'Customers' Choice' in both reports.


Zawya
14 hours ago
- Business
- Zawya
Sophos named a leader in the 2025 Gartner Magic Quadrant for endpoint protection platforms
Dubai, United Arab Emirates – Sophos, a global leader of innovative security solutions for defeating cyberattacks, today announced that it has been named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms (EPP), marking the 16th consecutive time the company has received this recognition. Sophos has been recognized in the Gartner® Magic Quadrant™ for Endpoint Protection Platforms (EPP) since the inaugural publication for this category in 2007. Sophos' market-leading endpoint security solutions include Sophos Endpoint powered by Intercept X, Sophos Extended Detection and Response (EDR/XDR), and Sophos Managed Detection and Response (MDR). Over 300,000 organizations trust Sophos endpoint security solutions to defend against cyberthreats, including advanced remote ransomware attacks and active adversaries. Unique to Sophos, the solution includes adaptive defenses that automatically disrupt attackers by dynamically adjusting protection levels based on threat context. 'Sophos' strength lies in its prevention-first strategy, designed to stop breaches before they start, adapt defenses in real time, and strengthen detection and response when it matters most,' said Kyle Falkenhagen, SVP, Product Management, Sophos. 'We believe that receiving this recognition in the highly competitive endpoint security market for 16 consecutive reports reflects our relentless focus on developing innovative solutions that stay ahead of the global threat landscape and the adversaries we face every day.' Sophos and Secureworks: The future of protection, detection, and response Following Sophos' acquisition of Secureworks in February 2025, combining two leading and complementary portfolios to offer a comprehensive suite of solutions for small, midmarket and enterprise organizations. Secureworks Taegis XDR customers can use Sophos Endpoint to elevate their cyber defenses — at no additional charge — delivering both improved protection and return on investment. The integration of Secureworks also adds a new Counter Threat Unit (CTU) to the Sophos X-Ops advanced threat response joint task force, further expanding the rich threat intelligence that informs all customers' defenses. Backed by Sophos' advanced security technologies and a broad network of intelligence contacts and partners, the CTU plays a critical role in identifying and tracking threat actors and analyzing anomalous activity, uncovering new attack techniques, threats, and major shifts in the threat landscape. Additional Sophos Recognitions In addition to this most-recent recognition, Sophos has also been named a 'Customers' Choice' vendor in the 2025 Gartner® Peer Insights™ Voice of the Customer Report for Endpoint Protection Platforms for the fourth consecutive year and in the inaugural Voice of the Customer Report for Extended Detection and Response. This makes Sophos the only vendor to be named a 'Customers' Choice' in both reports. For more about Sophos' recognition in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms, visit our blog, read the full report, or check out Sophos Endpoint Protection Platform website. Gartner, Magic Quadrant for Endpoint Protection Platforms, Evgeny Mirolyubov, Deepak Mishra, Franz Hinner, 14 July 2025 GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, Magic Quadrant and PEER INSIGHTS are registered trademarks of Gartner, Inc. and/or its affiliates and are used herein with permission. All rights reserved. Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose. About Sophos Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 30,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at


Al Bawaba
14 hours ago
- Business
- Al Bawaba
Sophos Named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
Sophos, a global leader of innovative security solutions for defeating cyberattacks, today announced that it has been named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms (EPP), marking the 16th consecutive time the company has received this recognition. Sophos has been recognized in the Gartner® Magic Quadrant™ for Endpoint Protection Platforms (EPP) since the inaugural publication for this category in 2007. Sophos' market-leading endpoint security solutions include Sophos Endpoint powered by Intercept X, Sophos Extended Detection and Response (EDR/XDR), and Sophos Managed Detection and Response (MDR). Over 300,000 organizations trust Sophos endpoint security solutions to defend against cyberthreats, including advanced remote ransomware attacks and active adversaries. Unique to Sophos, the solution includes adaptive defenses that automatically disrupt attackers by dynamically adjusting protection levels based on threat context. 'Sophos' strength lies in its prevention-first strategy, designed to stop breaches before they start, adapt defenses in real time, and strengthen detection and response when it matters most,' said Kyle Falkenhagen, SVP, Product Management, Sophos. 'We believe that receiving this recognition in the highly competitive endpoint security market for 16 consecutive reports reflects our relentless focus on developing innovative solutions that stay ahead of the global threat landscape and the adversaries we face every day.' Sophos and Secureworks: The future of protection, detection, and response Following Sophos' acquisition of Secureworks in February 2025, combining two leading and complementary portfolios to offer a comprehensive suite of solutions for small, midmarket and enterprise organizations. Secureworks Taegis XDR customers can use Sophos Endpoint to elevate their cyber defenses — at no additional charge — delivering both improved protection and return on investment. The integration of Secureworks also adds a new Counter Threat Unit (CTU) to the Sophos X-Ops advanced threat response joint task force, further expanding the rich threat intelligence that informs all customers' defenses. Backed by Sophos' advanced security technologies and a broad network of intelligence contacts and partners, the CTU plays a critical role in identifying and tracking threat actors and analyzing anomalous activity, uncovering new attack techniques, threats, and major shifts in the threat landscape. Additional Sophos Recognitions In addition to this most-recent recognition, Sophos has also been named a 'Customers' Choice' vendor in the 2025 Gartner® Peer Insights™ Voice of the Customer Report for Endpoint Protection Platforms for the fourth consecutive year and in the inaugural Voice of the Customer Report for Extended Detection and Response. This makes Sophos the only vendor to be named a 'Customers' Choice' in both reports.


Free Malaysia Today
2 days ago
- Business
- Free Malaysia Today
Microsoft hack likely by single actor, thousands of firms now vulnerable
Microsoft issued an alert about 'active attacks' on its SharePoint servers on Saturday. (EPA Images pic) LONDON : A global attack on Microsoft server software used by thousands of government agencies and businesses to share documents within organisations is likely the work of a single actor, a cybersecurity researcher said today. Microsoft on Saturday issued an alert about 'active attacks' on SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the exploit, also known as a 'zero day' because it was previously unknown to cybersecurity researchers. 'Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor. However, it's possible that this will quickly change,' Rafe Pilling, director of threat intelligence at Sophos, a British cybersecurity firm. That tradecraft included the sending of the same digital payload to multiple targets, Pilling added. Microsoft said it had 'provided security updates and encourages customers to install them', a company spokesman said in an emailed statement. It was not clear who was behind the ongoing hack. The FBI said yesterday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's national cyber security centre did not immediately respond to a request for comment. The Washington Post said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted US and international agencies and businesses. According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers. Those servers include major industrial firms, banks, auditors, healthcare companies, and several US state-level and international government entities. 'The SharePoint incident appears to have created a broad level of compromise across a range of servers globally,' said Daniel Card of British cybersecurity consultancy, PwnDefend. 'Taking an assumed breach approach is wise, and it's also important to understand that just applying the patch isn't all that is required here.'