Bleeping Computer

Critical Sophos Firewall vulnerability allows remote code execution

Sophos has fixed a critical vulnerability in its Sophos Firewall product that allows remote code execution (RCE). Tracked as CVE-2022-1040, the authentication bypass vulnerability exists in the User ...
TechNewsWorld

PCI’s False Dilemma: Code Review or Application Firewall?

Web application vulnerabilities put critical business applications and back-end databases at risk from attack, theft, and fraud. The Payment Card Industry Data Security Standard (PCI DSS, or PCI), ...
Ars Technica

Sophos Firewall 0day allowing remote code-execution comes under attack

And just last week they were spamming me with a lightweight "whitepaper" about how I totally needed Sophos XG to sniff out next generation malware in all that sinister SSL... More competent work there ...