SLA A.I CyberSecurity Scoring
SLA
Company Information
Website:https://www.sophos.com/es-es.aspx
Employees number:None
Number of followers:7,839
NAICS:541514
Industry Type:Computer and Network Security
Homepage:sophos.com
SLA Risk Score (AI oriented)
Between 750 and 799
SLAComputer and Network Security
Updated:
04/03/2026
04/03/2026
754/1000
Fair
Baa
SLA Global Score (TPRM)
xxxx
SLAComputer and Network Security
Score locked

SLAFair
Current Score
754Baa (FAIR)
01000
1 incidents
-1 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
755
JUNE 2026
754
MAY 2026
754
APRIL 2026
754
MARCH 2026
754
FEBRUARY 2026
754
JANUARY 2026
754
DECEMBER 2025
754
NOVEMBER 2025
754
OCTOBER 2025
754
SEPTEMBER 2025
754
AUGUST 2025
754
Vulnerability
01 Aug 2025 • SLA
WinRAR (RARLAB)
WinRAR Zero-Day Path Traversal Vulnerability (CVE-2025-8088) Exploited in Targeted Phishing Campaigns
753
CRITICAL-1
WIN748081525
A critical zero-day vulnerability (CVE-2025-8088) in WinRAR’s Windows version (pre-7.13) enabled path traversal attacks, allowing threat actors to deploy malware via malicious RAR archives. Exploited by RomCom (Storm-0978) and Paper Werewolf (GOFFEE), the flaw facilitated phishing campaigns targeting financial, manufacturing, defense, and logistics sectors in Europe, Canada, and Russia. Attackers disguised malicious archives as job resumes or official communications, deploying backdoors (SnipBot, RustyClaw, Mythic) for persistence and data exfiltration. The exploit leveraged alternate data streams (ADS) to hide payloads in Windows Startup folders, achieving remote code execution upon user login. While no mass exploitation was reported by August 2025, the vulnerability’s public disclosure (CVSS 8.8) and dark web sale ($80,000) heightened risks of copycat attacks. Organizations faced potential data breaches, system compromises, and operational disruptions, though no confirmed large-scale data leaks or ransomware incidents were tied to this flaw. Patching (WinRAR 7.13) mitigated the risk, but delayed updates left users exposed to targeted cyber espionage and financial theft.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for SLA ??
What was SLA's A.I Rankiteo Cyber Score in June 2026 ??
What was SLA's A.I Rankiteo Cyber Score in May 2026 ??
What was SLA's A.I Rankiteo Cyber Score in April 2026 ??
What was SLA's A.I Rankiteo Cyber Score in March 2026 ??
What was SLA's A.I Rankiteo Cyber Score in February 2026 ??
What was SLA's A.I Rankiteo Cyber Score in January 2026 ??
What was SLA's A.I Rankiteo Cyber Score in December 2025 ??
What was SLA's A.I Rankiteo Cyber Score in November 2025 ??
What was SLA's A.I Rankiteo Cyber Score in October 2025 ??
What was SLA's A.I Rankiteo Cyber Score in September 2025 ??
What was SLA's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on SLA's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with SLA ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view SLA's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?