Skip to Content

Get started

Open search
Focus Scroll Background

incident response

RSS
It takes two: The 2025 Sophos Active Adversary Report

Security Operations

Threat Research

active adversary

Active Adversary Report

Compromised Credentials

detection

dwell time

featured

impact

incident response

LOLBIN

MFA

Monitoring

RDP

Remote Ransomware

root cause

It takes two: The 2025 Sophos Active Adversary Report

April 2, 2025

The Bite from Inside: The Sophos Active Adversary Report

Security Operations

Threat Research

active adversary

Active Adversary Report

featured

incident response

IR

LoLBINs

MDR

RDP

The Bite from Inside: The Sophos Active Adversary Report

December 12, 2024

Qilin ransomware caught stealing credentials stored in Google Chrome

Security Operations

Threat Research

Credentials

featured

incident response

Privacy

qilin

Ransomware

Qilin ransomware caught stealing credentials stored in Google Chrome

August 22, 2024

Don’t get Mad, get wise

Security Operations

Threat Research

AnyDesk

featured

incident response

mad liberator

malware

Social engineering

Don’t get Mad, get wise

August 13, 2024

RD Web Access abuse: Fighting back

Security Operations

Threat Research

active adversary

Active Adversary Report

featured

incident response

RDP

Sophos X-Ops

RD Web Access abuse: Fighting back

June 12, 2024

Sophos Incident Response achieves NCSC Certified Incident Response (CIR) Level 2 status

Products & Services

CIR

featured

incident response

NCSC

Sophos IR

Sophos Incident Response achieves NCSC Certified Incident Response (CIR) Level 2 status

May 14, 2024

Extracting data from encrypted virtual disks: six seven methods

Security Operations

Threat Research

data extraction

DFIR

Encryption

featured

incident response

MDR

Ransomware

Sophos X-Ops

virtual machine

Extracting data from encrypted virtual disks: six seven methods

May 13, 2024

It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024

Threat Research

active adversary

Active Adversary Report

Case Study

featured

incident response

RDP

Sophos X-Ops

It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024

April 3, 2024

Remote Desktop Protocol: The Series

Security Operations

Threat Research

active adversary

Active Adversary Report

featured

incident response

Incident response tools

MDR

RDP

Sophos X-Ops

Remote Desktop Protocol: The Series

March 20, 2024

Blog Listing - Content With Form - BG

Subscribe to get the latest updates in your inbox.