Sophos Email: Manually create and import mailboxes
Learn how to manually create user mailboxes and import mailboxes using CSV files in Sophos Email. Ask questions and get expert answers in the Sophos Community.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Sophos Central: Set up Microsoft Entra ID Sync
Learn how to implement Microsoft Entra ID Sync in Sophos Central. Ask questions and get expert answers in the Sophos Community.
Advancing MITRE ATLAS AI Security Through Zenity's Contributions
MITRE ATLAS (Adversarial Threat Landscape for Artificial-Intelligence Systems) is a globally recognized AI security framework that catalogs adversarial techniques targeting artificial intelligence systems. Similar in structure to MITRE ATT&CK but purpose-built for AI, machine learning, and agentic systems, ATLAS translates abstract AI risks into concrete, actionable attack techniques that security teams can monitor and mitigate.
How AWS Security Hub and Tines Help Security Teams Prioritize Risk and Accelerate Response
Security teams aren’t short on alerts—they’re short on clarity and time. As cloud environments grow more complex, leaders need to understand which findings represent real exposure and how to act on them quickly. In this webinar, AWS and Tines show how AWS Security Hub prioritizes risk through correlated and exposure-based findings, and how Tines turns that signal into consistent, automated action. Through real-world examples, attendees will see how teams reduce noise, speed remediation, and improve security operations with workflows that scale.
7 Reasons to Get Certified in API Security
API security is becoming more important by the day and skilled practitioners are in high demand. Now’s the time to level up your API security skillset. Wallarm University, our free training course, provides security analysts, engineers, and practitioners with hands-on skills you can’t get from documentation, videos, or traditional courses. Run real attacks, investigate real signals, and learn exactly how to defend API environments when it counts. Here are the 7 reasons you should register.
Quantified Cyber Risk Through an ERM Lens in NIST IR 8286 Rev. 1
Lack of data has rarely been a challenge that cybersecurity leaders in the enterprise setting have faced. In fact, cyber risk data is usually in abundance. The obstacle, thus, is instead twofold. Teams must first make sense of all of that information, and leadership must then be able to communicate what it means in a language that supports high-level decision-making. That gap between information and deeper understanding is where many cyber risk programs flounder.
DSPM for AI: Securing Data in the Age of Artificial Intelligence
Organizations across industries are adopting AI at a rapid pace. From utilizing this newer technology to process data and conduct business-critical tasks to individual employees experimenting with Gen-AI to enhance their workflows, artificial intelligence now touches multiple points of an organization's operations.
January 12, 2026 Cyber Threat Intelligence Briefing
This week’s briefing covers: Dive deeper.
Critical jsPDF Vulnerability Enables Arbitrary File Read in Node.js (CVE-2025-68428)
In January 2026, a critical security vulnerability was disclosed in jsPDF, a popular JavaScript library used to generate PDF documents. The issue, tracked as CVE-2025-68428, affects server-side Node.js deployments of jsPDF prior to version 4.0.0 and has been assigned a CVSS score of 9.2. The vulnerability is a path traversal issue that can be abused to read arbitrary files from the local filesystem.