%term

Operating inside the lethal trifecta: Blast radius reduction in AI agent deployments

May 12, 2026 By Ross McKerchar In Sophos

Seven things security teams can start doing today to reduce risk.

Read Post

Sophos

Read more about Operating inside the lethal trifecta: Blast radius reduction in AI agent deployments

How Corelight identified a years-old network issue in 30 minutes

May 11, 2026 By Corelight In Corelight

A global cruise line operating across maritime and resort environments was struggling with inconsistent detections, alert overload, and limited visibility from its existing NDR platform. In this customer story, Jay Miller from Corelight walks through how the organization evaluated its network visibility strategy, identified long-standing gaps in detection coverage, and improved investigation workflows across a complex environment with intermittent connectivity at sea.

View Video

Corelight

Read more about How Corelight identified a years-old network issue in 30 minutes

GPT-5.5-Cyber is here. What it means for defenders operating at the frontier.

May 11, 2026 By John Peterson In Sophos

GPT-5.5-Cyber is here. What it means for defenders operating at the frontier. OpenAI’s May 7 release of GPT-5.5 and the limited preview of GPT-5.5-Cyber put frontier AI in verified defenders’ hands. As a member of the Trusted Access for Cyber program, Sophos is using these models to sharpen what we already operate: an agentic SOC that resolves more than half of cases without a human, and an endpoint architecture purpose-built to stop AI-generated zero-days.

Read Post

Sophos

Read more about GPT-5.5-Cyber is here. What it means for defenders operating at the frontier.

Ransomware: AI changes the writer. It doesn't change the math.

May 11, 2026 By Mark Loman In Sophos

Ransomware: AI changes the writer. It doesn't change the math. Why most endpoint protection still treats ransomware as just another piece of malware, and what changes when you watch the data instead of the attacker. In 2013, CryptoLocker introduced the modern ransomware playbook. It also introduced something most of the industry has still not come to terms with: remote encryption.

Read Post

Sophos

Read more about Ransomware: AI changes the writer. It doesn't change the math.

Inside CrowdStrike Automated Leads: A Transformative Approach to Threat Detections

May 11, 2026 By Daniel Brown - Thomas Hobson - Amogh Pradeep In CrowdStrike

Last summer we introduced Automated Leads, a transformative approach to threat detection designed to surface the subtle signs of an attack before it turns into a full-blown breach. It’s powered by CrowdStrike Signal (distinct from SGNL) and delivered via the CrowdStrike Falcon platform. Since that launch, the goal has remained the same: to move beyond the limitations of traditional alerting and give analysts a head start on detecting the most sophisticated adversaries.

Read Post

CrowdStrike

Read more about Inside CrowdStrike Automated Leads: A Transformative Approach to Threat Detections

Sophos Email: Enterprise-grade, AI-powered email protection

May 11, 2026 By Sophos In Sophos

Sophos Email delivers enterprise-grade protection that keeps malicious messages out of user inboxes, elevates your defense against AI-powered adversaries, trains your employees to stay vigilant, and simplifies day-to-day security operations - all at a competitive price point.

View Video

Sophos

Read more about Sophos Email: Enterprise-grade, AI-powered email protection

Sophos named a Leader in the KuppingerCole Analysts Leadership Compass for Managed Detection and Response 2026

May 8, 2026 By Sophos In Sophos

Sophos named a Leader in the KuppingerCole Analysts Leadership Compass for Managed Detection and Response 2026 Sophos recognized across four leadership categories: Overall, Product, Innovation, and Market Sophos has been named an Overall Leader in the 2026 KuppingerCole Analysts Leadership Compass for Managed Detection and Response (MDR).

Read Post

Sophos

Read more about Sophos named a Leader in the KuppingerCole Analysts Leadership Compass for Managed Detection and Response 2026

Securonix Connects Threat Intelligence to Action with AI-Powered Threat Research Agent and ThreatWatch Validation

May 7, 2026 By Securonix In Securonix

Threat Research Agent and ThreatWatch combine AI-driven threat research and exposure validation to help security teams act with confidence.

Read Post

Securonix

Read more about Securonix Connects Threat Intelligence to Action with AI-Powered Threat Research Agent and ThreatWatch Validation

Donuts and Beagles: Fake Claude site spreads backdoor

May 7, 2026 By Chaitanya Ghorpade In Sophos

A malicious imitation of Anthropic’s Claude site leads to DLL sideloading – and a backdoor As we reported on social media recently, Sophos X-Ops has been investigating reports of a fake Claude AI website distributing malware. Like other researchers, we thought this might be a PlugX-like campaign, given that the attack chain shares several characteristics with observed PlugX attacks.

Read Post

Sophos

Read more about Donuts and Beagles: Fake Claude site spreads backdoor

How AI-accelerated threat discovery is reshaping network security

May 7, 2026 By Barbara Hudson In Sophos

How AI-accelerated threat discovery is reshaping network security As vulnerabilities are discovered faster than ever, organizations must rethink how they reduce exposure and contain risk at the network edge. Claude Mythos Preview has reignited debate about AI-driven cyber attacks, but the real shift isn’t what AI finds, it’s how quickly issues at the network edge can turn into impact. This post explores what’s changed and how network security must adapt to keep up.

Read Post