Arctic Wolf Networks

New infostealer reaches enterprise devices through FortiClient EMS vulnerability

Arctic Wolf Networks, cookies, credentials, data theft, Don't miss, endpoint management, enterprise, Fortinet, Hot stuff, News, vulnerability /

New infostealer reaches enterprise devices through FortiClient EMS vulnerability 2026-05-29 at 18:31 By Zeljka Zorz Attackers are delivering a broad-spectrum infostealer to enterprise computers by exploiting a known vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS). “The [malicious] payload was presented as a Fortinet endpoint update and executed through FortiClient-managed VPN scripting workflows,” Arctic Wold […]

New infostealer reaches enterprise devices through FortiClient EMS vulnerability Read More »

CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133)

Arctic Wolf Networks, CISA, Cisco, Don't miss, Government, Hot stuff, News, VulnCheck /

CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133) 2026-04-21 at 15:29 By Zeljka Zorz CISA added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including a Cisco Catalyst SD-WAN Manager vulnerability (CVE-2026-20133) that Cisco has yet to flag as exploited. Three Cisco Catalyst SD-WAN Manager vulnerabilities Alongside CVE-2026-20133, CISA has

CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133) Read More »

North Korean hackers linked to Axios npm supply chain compromise

Arctic Wolf Networks, backdoor, cybercrime, Don't miss, Google Cloud, Hot stuff, Mandiant, News, North Korea, supply chain attacks, supply chain compromise /

North Korean hackers linked to Axios npm supply chain compromise 2026-04-01 at 18:56 By Zeljka Zorz The software supply chain attack that resulted in the compromise of npm packages of Axios, an extremely popular HTTP client library, is believed to be the work of financially-motivated North Korean attackers. Links to UNC1069 On March 31, 2026,

North Korean hackers linked to Axios npm supply chain compromise Read More »

Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055)

Arctic Wolf Networks, Citrix, Don't miss, Hot stuff, NetScaler, News, Rapid7, vulnerability /

Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055) 2026-03-24 at 16:13 By Zeljka Zorz Citrix has fixed two vulnerabilities in NetScaler ADC and NetScaler Gateway, with the more serious flaw (CVE-2026-3055) potentially allowing attackers to extract active session tokens from the memory of affected devices. Anil Shetty, senior VP of Engineering with Cloud

Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055) Read More »

Arctic Wolf acquires Sevco Security to advance proactive exposure management

Arctic Wolf Networks, Industry news /

Arctic Wolf acquires Sevco Security to advance proactive exposure management 2026-02-24 at 10:51 By Industry News Arctic Wolf has acquired Sevco Security, integrating Sevco’s cloud-native technology into the Arctic Wolf Aurora Platform. This integration unifies asset intelligence, vulnerability context, and security control coverage to give organizations a continuous, consolidated view of exposures across hybrid environments

Arctic Wolf acquires Sevco Security to advance proactive exposure management Read More »

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718?

Arctic Wolf Networks, Don't miss, firewall, Fortinet, FortiOS, Hot stuff, Huntress, News, privileged accounts, SSO, vulnerability /

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718? 2026-01-21 at 22:22 By Zeljka Zorz CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS. According to Fortinet, CVE-2025-59718 had been fixed in FortiOS versions 7.6.4 or

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718? Read More »

CISOs are managing risk in survival mode

Arctic Wolf Networks, Binalyze, CISO, CSC, cybersecurity, Cynomi, DataVisor, Dune Security, EY, Fastly, Fortinet, Hack The Box, Ivanti, JumpCloud, Nagomi Security, News, NTT, Proofpoint, report, Splunk, Trellix, Unisys, VikingCloud, Wipro, Wiz /

CISOs are managing risk in survival mode 2025-12-29 at 08:08 By Anamarija Pogorelec CISOs carry expanding responsibility as cybersecurity budgets rise, AI adoption spreads, and board expectations grow. Risk management now depends on faster decisions, stronger coordination, and better communication across leadership teams. This article shows how CISOs are responding to growing pressure, ongoing threats,

CISOs are managing risk in survival mode Read More »

Attackers are exploiting auth bypass vulnerability on FortiGate firewalls (CVE-2025-59718)

Arctic Wolf Networks, CISA, Don't miss, firewall, Fortinet, Hot stuff, News, vulnerability /

Attackers are exploiting auth bypass vulnerability on FortiGate firewalls (CVE-2025-59718) 2025-12-17 at 16:31 By Zeljka Zorz Attackers are exploiting a recently revealed vulnerability (CVE-2025-59718) to bypass authentication on Fortinet’s FortiGate firewalls, and are leveraging the achieved access to export their system configuration files, Arctic Wolf researchers warned on Tuesday. Configuration files can expose information about

Attackers are exploiting auth bypass vulnerability on FortiGate firewalls (CVE-2025-59718) Read More »

Arctic Wolf expands MDR capabilities with Abnormal AI behavioral email intelligence

Abnormal AI, Arctic Wolf Networks, Industry news /

Arctic Wolf expands MDR capabilities with Abnormal AI behavioral email intelligence 2025-11-19 at 11:17 By Industry News Arctic Wolf announced a new integration between the Arctic Wolf Aurora Platform and Abnormal AI, expanding detection and response capabilities across one of the most targeted attack surfaces, email. The integration brings Abnormal AI’s behavioral AI detections directly

Arctic Wolf expands MDR capabilities with Abnormal AI behavioral email intelligence Read More »

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491)

Arctic Wolf Networks, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, News, Trend Micro, vulnerability, Windows /

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) 2025-10-31 at 17:09 By Zeljka Zorz A Windows vulnerability (CVE-2025-9491, aka ZDI-CAN-25373) that state-sponsored threat actors and cybercrime groups have been quietly leveraging since at least 2017 continues to be exploited for attacks. “Arctic Wolf Labs assesses with high confidence that [the campaign they detected]

Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) Read More »

Akira ransomware: From SonicWall VPN login to encryption in under four hours

Arctic Wolf Networks, credentials, Don't miss, enterprise, Hot stuff, MFA, News, Ransomware, SMBs, SonicWall, vulnerability /

Akira ransomware: From SonicWall VPN login to encryption in under four hours 2025-09-29 at 18:47 By Zeljka Zorz Four hours or less: that’s how long it takes for Akira affiliates to break into organizations and deploy the ransomware on their systems, Arctic Wolf researchers have warned. Armed with SonicWall SSL VPN credentials stolen in earlier

Akira ransomware: From SonicWall VPN login to encryption in under four hours Read More »

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers

Arctic Wolf Networks, data theft, Don't miss, enterprise, Hot stuff, malvertising, Malware, malware analysis, News, SMBs /

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers 2025-09-09 at 09:46 By Zeljka Zorz Researchers have spotted a malvertising (and clever malware delivery) campaign targeting IT workers in the European Union with fake GitHub Desktop installers. “We believe the goal of this campaign was to gain initial access to organizations for

Ongoing malvertising campaign targets European IT workers with fake GitHub Desktop installers Read More »

AI will drive purchases this year, but not without questions

Arctic Wolf Networks, Artificial Intelligence, cybersecurity, News, report, security operations, SOC, survey /

AI will drive purchases this year, but not without questions 2025-09-03 at 07:04 By Sinisa Markovic AI is moving into security operations, but CISOs are approaching it with a mix of optimism and realism. A new report from Arctic Wolf shows that most organizations are exploring or adopting AI-driven tools, yet many still see risks

AI will drive purchases this year, but not without questions Read More »

Cyber insurance market shows early signs of maturity

Arctic Wolf Networks, cyber insurance, cybersecurity, News, report, survey /

Cyber insurance market shows early signs of maturity 2025-08-15 at 09:06 By Sinisa Markovic The cyber insurance market is entering a new phase of evolution and showing early signs of maturity, according to recent research from Arctic Wolf. Brokers and carriers are taking on different but connected roles to help customers get policies. Brokers advise

Cyber insurance market shows early signs of maturity Read More »

SonicWall firewalls targeted in ransomware attacks, possibly via zero-day

Arctic Wolf Networks, Don't miss, firewall, Hot stuff, News, Ransomware, SonicWall /

SonicWall firewalls targeted in ransomware attacks, possibly via zero-day 2025-08-04 at 14:34 By Zeljka Zorz Attackers wielding the Akira ransomware and possibly a zero-day exploit have been spotted targeting SonicWall firewalls since July 15, 2025. “In the intrusions reviewed, multiple pre-ransomware intrusions were observed within a short period of time, each involving VPN access through

SonicWall firewalls targeted in ransomware attacks, possibly via zero-day Read More »

Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399)

Arctic Wolf Networks, botnet, Don't miss, Hot stuff, News, PoC, Samsung, SANS ISC, vulnerability /

Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399) 2025-05-06 at 13:03 By Zeljka Zorz An easily and remotely exploitable vulnerability (CVE-2024-7399) affecting Samsung MagicINFO, a platform for managing content on Samsung commercial displays, is being leveraged by attackers. Exploit attempts have been flagged by the SANS Internet Storm Center and Arctic Wolf researchers:

Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399) Read More »

Infosec products of the month: April 2025

1touch.io, Abnormal AI, AppViewX, Arctic Wolf Networks, Bitdefender, BitSight, Bugcrowd, Cato Networks, CyberQP, Cyware, Entrust, Exabeam, Flashpoint, Forescout, Index Engines, Jit, LastPass, News, PlexTrac, PowerDMARC, RunSafe Security, Saviynt, Seal Security, Seemplicity, SkyHawk Security, Stellar Cyber, Swimlane, Varonis, Veracode /

Infosec products of the month: April 2025 2025-05-02 at 07:03 By Sinisa Markovic Here’s a look at the most interesting products from the past month, featuring releases from: 1touch.io, Abnormal AI, AppViewX, Arctic Wolf Networks, Bitdefender, BitSight, Bugcrowd, Cato Networks, CyberQP, Cyware, Entrust, Exabeam, Flashpoint, Forescout, Index Engines, Jit, LastPass, PlexTrac, PowerDMARC, RunSafe Security, Saviynt,

Infosec products of the month: April 2025 Read More »

Top solutions to watch after RSAC 2025

Abnormal AI, AppViewX, Arctic Wolf Networks, BreachLock, Don't miss, Flashpoint, LastPass, News, PowerDMARC, RSAC 2025, Saviynt, Swimlane, Varonis /

Top solutions to watch after RSAC 2025 2025-05-01 at 08:03 By Help Net Security RSAC 2025 showcased a wave of innovation, with vendors unveiling technologies poised to redefine cybersecurity. From AI-powered defense to breakthroughs in identity protection, this year’s conference delivered a glimpse into the future. Here are the most interesting products that caught our

Top solutions to watch after RSAC 2025 Read More »

Arctic Wolf launches Cipher to enhance security investigations with AI insights

Arctic Wolf Networks, Industry news, RSAC 2025 /

Arctic Wolf launches Cipher to enhance security investigations with AI insights 2025-04-29 at 10:47 By Industry News Arctic Wolf has introduced Cipher, an AI security assistant that provides customers with self-guided access to deeper security insights directly within the Arctic Wolf Aurora Platform. Cipher enhances investigations and alert comprehension by delivering instant answers, contextual enrichment,

Arctic Wolf launches Cipher to enhance security investigations with AI insights Read More »

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433)

Arctic Wolf Networks, Don't miss, exploit, Horizon3.ai, Hot stuff, News, Platform Security, PoC, ProDefense, Ruhr University Bochum, SSH, vulnerability /

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) 2025-04-22 at 15:48 By Zeljka Zorz There are now several public proof-of-concept (PoC) exploits for a maximum-severity vulnerability in the Erlang/OTP SSH server (CVE-2025-32433) unveiled last week. “All users running an SSH server based on the Erlang/OTP SSH library are likely to be affected by

PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) Read More »

Scroll to Top