A pre-auth SQL injection bug leading to remote code execution is at the heart of a data-stealing campaign against XG firewalls, using the Asnarok trojan. Attackers have been targeting the Sophos XG ...

One of the leading products for TCO per Protected Mbps, a metric that includes three-year TCO, NSS-rated throughput, and security effectiveness The NSS Labs evaluation included 11 market leading ...

Sophos Firewall v21 features a redesigned control center (shown here), with a refreshed user experience and expanded network object visibility. These enhancements simplify firewall management and ...

Hackers tried to exploit a zero-day in the Sophos XG firewall to distribute ransomware to Windows machines but were blocked by a hotfix issued by Sophos. At the end of April, hackers utilized a ...

UK cyber-security vendor Sophos published today an update on its investigation into a recent series of attacks that tried to exploit a zero-day vulnerability in its XG firewall product. Sophos said ...

Sophos has fixed a critical vulnerability in its Sophos Firewall product that allows remote code execution (RCE). Tracked as CVE-2022-1040, the authentication bypass vulnerability exists in the User ...

Sophos has published an emergency security update to patch a zero-day vulnerability in its XG enterprise firewall product. The patch plugs a hole that was being abused in the wild by hackers. Sophos ...

The cybersecurity vendor integrated zero trust network access (ZTNA) into its firewall software and added support in its extended detection and response (XDR) offering for numerous third-party ...

Sophos has patched a remote code execution (RCE) vulnerability in the Firewall product line. Sophos Firewall is an enterprise cybersecurity solution that can adapt to different networks and ...