itcnu.com

Cyber Security

Behind the Blog: Putting the Puzzle Together

storshop.dk@gmail.com1 month ago02 mins

This is Behind the Blog, where we share our behind-the-scenes thoughts about how a few of our top stories of the week came together. This week, we discuss the staying power of surveillance coverage, the jigsaw of reporting, and eyestrain. JASON: I’ve started this year in the same way I spent a lot of last…

Uncategorized

TamperedChef serves bad ads, with infostealers as the main course

storshop.dk@gmail.com1 month ago01 mins

Sophos X-Ops explores a malvertising campaign that leverages Google Ads to distribute an infostealer Categories: Threat Research Tags: TamperedChef, EvilAI, infostealer, Sophos X-Ops

Cyber Security

There’s a Lootbox With Rare Pokémon Cards Sitting in the Pentagon Food Court

storshop.dk@gmail.com1 month ago04 mins

It’s possible to win a gem mint Surging Sparks Pikachu EX Pokémon card worth as much as $840 from a vending machine in the Pentagon food court. Thanks to a company called Lucky Box Vending, anyone passing through the center of American military power can pay to win a piece of randomized memorabilia from a…

Cyber Security

New Legislation Would Rein In ICE’s Facial Recognition App

storshop.dk@gmail.com1 month ago05 mins

A group of six Democratic lawmakers is proposing legislation that would dramatically rein in Immigration and Customs Enforcement’s (ICE) facial recognition app, according to a copy of the draft bill shared with 404 Media. ICE and Customs and Border Protection (CBP) have been scanning peoples’ faces with the app, called Mobile Fortify, across the country,…

Cyber Security

‘ELITE’: The Palantir App ICE Uses to Find Neighborhoods to Raid

storshop.dk@gmail.com1 month ago08 mins

Palantir is working on a tool for Immigration and Customs Enforcement (ICE) that populates a map with potential deportation targets, brings up a dossier on each person, and provides a “confidence score” on the person’s current address, 404 Media has learned. ICE is using it to find locations where lots of people it might detain…

Uncategorized

A big finish to 2025 in December’s Patch Tuesday

storshop.dk@gmail.com1 month ago01 mins

A month with no Critical-severity Windows bugs is overshadowed by a mass of Mariner mop-up Categories: X-ops Tags: threat research, featured, Microsoft, Patch Tuesday, zero days

Uncategorized

React2Shell flaw (CVE-2025-55182) exploited for remote code execution

storshop.dk@gmail.com1 month ago01 mins

The availability of exploit code will likely lead to more widespread opportunistic attacks Tags: Threat Research, Featured, vulnerability, react2shell

Uncategorized

Game of clones: Sophos and The MITRE ATT&CK Enterprise 2025 Evaluations

storshop.dk@gmail.com1 month ago01 mins

Winter is coming – so it must be time for Sophos X-Ops’ report on this year’s MITRE ATT&CK Enterprise Evaluations Categories: Threat Research Tags: ATT&CK, Emulation, Featured, MITRE, MUSTANG PANDA, scattered spider, Sophos X-Ops

Uncategorized

I am not a robot: ClickFix used to deploy StealC and Qilin

storshop.dk@gmail.com1 month ago01 mins

The fake human verification process led to infostealer and ransomware infections Categories: Threat Research Tags: clickfix, Featured, GOLD FEATHER, human verification, infostealer, qilin, Ransomware, StealC

Uncategorized

5 ways your firewall can keep ransomware out — and lock it down if it gets in

storshop.dk@gmail.com1 month ago01 mins

Categories: Sophos Insights Tags: Firewall, Ransomware

Cisco SD-WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitationFebruary 27, 2026
Categories: Threat Research Tags: advisory, vulnerability, SD-WAN
Sophos Workspace Protection is Now AvailableFebruary 26, 2026
We’re excited to announce the highly anticipated release of Sophos Workspace Protection has arrived. Categories: Products & Services Tags: Workspace
Company Helps Men Scrub Negative Posts About Them from Tea AppFebruary 26, 2026
Tea App Green Flags, a service that claims it can “protect your digital reputation,” will remove negative posts about men from private online groups where women share “red flags” about men they’ve dated in order to help other women. The service is another escalation in the age of online dating, women attempting to protect each...
The Islamic State Is Using AI to Resurrect Dead Leaders and Platforms Are Failing to Moderate ItFebruary 26, 2026
The Islamic State’s online warriors are still posting. It’s been almost a decade since the group lost the Battle of Raqqa and saw its IRL territorial ambitions thwarted. Unable to hold territory in the real world, the group renewed its focus on posting and has started using AI to resurrect dead leaders. And, because social...
The Government Just Made it Harder to See What Spy Tech it BuysFebruary 26, 2026
It might look like something from the early days of the internet, with its aggressively grey color scheme and rectangles nested inside rectangles, but FPDS.gov is one of the most important resources for keeping tabs on what powerful spying tools U.S. government agencies are buying. It includes everything from phone hacking technology, to masses of...

Chief Editor

Saroj Mhr

How Sugar and Sedentary Lifestyle Affects Men

Simple lifestyle changes that will help reduce stress

Cisco SD-WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitation

Sophos Workspace Protection is Now Available

Company Helps Men Scrub Negative Posts About Them from Tea App

The Islamic State Is Using AI to Resurrect Dead Leaders and Platforms Are Failing to Moderate It

The Government Just Made it Harder to See What Spy Tech it Buys

Amazon Change Means Wishlists Might Expose Your Address

Behind the Blog: Putting the Puzzle Together

TamperedChef serves bad ads, with infostealers as the main course

There’s a Lootbox With Rare Pokémon Cards Sitting in the Pentagon Food Court

New Legislation Would Rein In ICE’s Facial Recognition App

‘ELITE’: The Palantir App ICE Uses to Find Neighborhoods to Raid

A big finish to 2025 in December’s Patch Tuesday

React2Shell flaw (CVE-2025-55182) exploited for remote code execution

Game of clones: Sophos and The MITRE ATT&CK Enterprise 2025 Evaluations

I am not a robot: ClickFix used to deploy StealC and Qilin

5 ways your firewall can keep ransomware out — and lock it down if it gets in

Uncategorized

Uncategorized

Cyber Security