%term

Sophos Firewall: Integrate Active Directory

May 7, 2026 By Sophos In Sophos

A step-by-step tutorial for integrating Active Directory in your Sophos Firewall. The steps are shown in SFOS v21, so the steps and user interface may vary slightly in later versions. Ask questions and get expert answers in the Sophos Community.

View Video

Sophos

Read more about Sophos Firewall: Integrate Active Directory

The New Vanguard: Strategic Leadership in the Age of Autonomous Threats

May 7, 2026 By SecuritySenses In SecuritySenses

The threat landscape of 2026 is no longer defined by the singular hacker or the isolated malware strain. We have entered the era of the "Autonomous Adversary"-a period where AI-driven social engineering, automated vulnerability discovery, and polymorphic code are the standard tools of state-sponsored and criminal actors alike. For the security professional, the traditional defensive perimeter has dissolved. To navigate this complexity, the industry is moving away from purely tactical responses toward a model of "Cyber-Resilience and Strategic Governance.".

Read Post

SecuritySenses

Read more about The New Vanguard: Strategic Leadership in the Age of Autonomous Threats

The New Insurance Fast Track program for Sophos MDR Customers

May 5, 2026 By Sophos In Sophos

Getting a clear ROI on your security investment has never been easier. Get cyber insurance in minutes from top brand global companies who all believe in the power of Sophos MDR so much, they are willing to enhance their insurance offerings for it.

View Video

Sophos

Read more about The New Insurance Fast Track program for Sophos MDR Customers

Sophos Security Services Retainer

May 5, 2026 By Sophos In Sophos

The Sophos Security Services Retainer gives your organization flexible access to proactive security services, along with incident response coverage should a cyberattack happen.

View Video

Sophos

Read more about Sophos Security Services Retainer

5 signs it is time to upgrade your DIY Zeek deployment

May 5, 2026 By Matt Ellison In Corelight

You already know the immense value of open-source Zeek. It provides the absolute gold standard of network evidence, giving you the deep visibility required to defend your organization. You have the right strategic foundation, but the operational workload of managing a do-it-yourself (DIY) deployment at scale is likely draining your energy.

Read Post

Corelight

Read more about 5 signs it is time to upgrade your DIY Zeek deployment

AI Threat Detection for Healthcare: Protecting Patient Data from AI-Mediated Attacks

May 1, 2026 By Shauli Rozen In ARMO

For six weeks, a mid-size hospital system’s CDS agent issued recommendations biased by a poisoned guideline summary. No detection alert fired. The drift — denial recommendations in cases sharing one specific clinical attribute — traced back to a guideline an outside contributor had quietly reweighted in editorial review. Every existing detection stack reported green. DLP: no PHI left the cluster. EHR audit log: agent reading and writing within scope. Network egress: normal traffic.

Read Post

ARMO

Read more about AI Threat Detection for Healthcare: Protecting Patient Data from AI-Mediated Attacks

Proof-of-concept exploit available for Linux 'Copy Fail' vulnerability (CVE-2026-31431)

May 1, 2026 By Sophos Counter Threat Unit Research Team In Sophos

On April 29, 2026, details about the ‘Copy Fail’ vulnerability (CVE-2026-31431) were publicly disclosed. This high-severity (CVSS score of 7.8) privilege escalation vulnerability impacts Linux distributions shipped since 2017. It allows an unprivileged local user to obtain root-level access on affected Linux systems by corrupting the kernel’s in-memory page cache of a privileged binary.

Read Post

Sophos

Read more about Proof-of-concept exploit available for Linux 'Copy Fail' vulnerability (CVE-2026-31431)

AI finds the vulnerabilities, but exploiting them is a different problem.

May 1, 2026 By Mark Loman In Sophos

AI finds the vulnerabilities, but exploiting them is a different problem. How Sophos Endpoint defends in the AI era, and what the public record on Mythos shows. When Mozilla shipped Firefox 150 with fixes for 271 issues identified by Anthropic’s Mythos model, the headlines focused on the count. The detail that mattered was further down: Mozilla credited only three CVEs to the model. The remaining 268 were classified as defense-in-depth, hardening, or bugs in code paths that could not be exploited.

Read Post

Sophos

Read more about AI finds the vulnerabilities, but exploiting them is a different problem.

AI just became the world's most dangerous exploit writer. Here's why Sophos Endpoint is built to stop it.

May 1, 2026 By Sophos In Sophos

AI just became the world's most dangerous exploit writer. Here's why Sophos Endpoint is built to stop it. AI-generated zero-days are here. Sophos Endpoint was architected to stop exploits that have never been seen before — blocking the techniques every attack must use, at the moment of execution, with no signature, no cloud lookup, and no configuration required.

Read Post

Sophos

Read more about AI just became the world's most dangerous exploit writer. Here's why Sophos Endpoint is built to stop it.

The 7 sins killing your SOC efficacy (and why NDR is the cure)

Apr 30, 2026 By Josh Porto In Corelight

Network Detection and Response (NDR) is a glorious tool for spotting the stuff that slips past the velvet ropes. The weird lateral movement. The "why is Finance talking to a printer in Moldova" moment. The internal reconnaissance that looks harmless until it's suddenly not. What can't NDR do? Trick question. It can't walk the dog, run a marathon, or explain to leadership why "just block Russia" isn't a complete strategy. NDR is your truth serum.

Read Post