Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

The Howler Bonus Episode - Mental Health & Wellbeing Roundtable

Dec 22, 2023 By Arctic Wolf In Arctic Wolf
In this bonus episode, pack members from around the globe have a conversation about what it looks like for them personally to prioritize mental health and wellbeing. Interested in running with the pack? Explore careers at Arctic Wolf—one of the fastest-growing and exciting cybersecurity companies in the world, to learn about how you can join our Pack, create impact, and influence what’s next in security operations.
View Video
Arctic Wolf

CVE-2023-41727, CVE-2023-46220, CVE-2023-46261, and More: Multiple Critical Vulnerabilities Patched in Ivanti Avalanche

Dec 22, 2023 By Andres Ramos In Arctic Wolf
On December 20, 2023, Ivanti announced that 20 vulnerabilities in Ivanti Avalanche On-Prem were patched in the product’s latest update. Arctic Wolf has highlighted 13 of these vulnerabilities in this bulletin that were rated as critical severity and could lead to remote code execution (RCE) or Denial of Service (DoS).
Read Post
Arctic Wolf

Should Your Organization Rely on XDR For Cybersecurity?

Dec 20, 2023 By Arctic Wolf In Arctic Wolf
The cybersecurity industry is always evolving. Whether new solutions arrive because of advances in technology, emerging threats, or changing security needs, every few years a new platform — and often acronym — joins the market. Extended detection and response (XDR) is one of those solutions that has gained momentum from buyers and taken over many security conversations in recent years.
Read Post

Arctic Wolf Always Ahead: 2024 Cybersecurity Predictions

Dec 20, 2023 By Arctic Wolf In Arctic Wolf
In this episode of Always Ahead, our Chief Product Officer Dan Schiappa explains why the cybersecurity industry should expect ransomware to continue to dominate the threat landscape in 2024, and why organizations that prioritize cyber insurance and AI integration are on the right track to protect their IT environment.
View Video
Arctic Wolf

Why You Need Incident Response as Part of Your Cybersecurity Strategy

Dec 19, 2023 By Arctic Wolf In Arctic Wolf
With cyber attack frequency hitting new highs, the continued evolution of threat actor tactics, techniques and procedures (TTPs), and the rapid digitization of organizations across industries, it’s become common to say that it’s not a matter of if, but when you’ll experience a cyber incident.
Read Post
Arctic Wolf

CVE-2023-50164: Public PoC Leveraged to Exploit Critical RCE Vulnerability in Apache Struts

Dec 18, 2023 By Andres Ramos In Arctic Wolf
On December 13, 2023, threat actors began exploitation attempts against CVE-2023-50164, a critical-severity remote code execution (RCE) vulnerability impacting Apache Struts, an open-source framework used to create Java Web applications. Based on current intelligence, the threat actors are leveraging a publicly published proof of concept (PoC) exploit.
Read Post
Arctic Wolf

CVE-2023-36553: Critical OS Command Injection Vulnerability in FortiSIEM

Dec 11, 2023 By Andres Ramos In Arctic Wolf
On November 14, 2023, FortiGuard published an advisory disclosing that a critical command injection vulnerability (CVE-2023-36553) had been patched in the latest updates for FortiSIEM. The vulnerability was rated with a Common Vulnerability Scoring System (CVSS) score of 9.3, as it can be exploited remotely by an unauthenticated threat actor using crafted API requests to execute unauthorized commands. This vulnerability is caused by improper neutralization of special elements in FortiSIEM report server.
Read Post

Arctic Wolf Always Ahead: Holiday Threats

Dec 8, 2023 By Arctic Wolf In Arctic Wolf
Arctic Wolf understands that the holiday season is a stressful time. Our Chief Product Officer Dan Schiappa explains in this episode of Always Ahead why the holiday season is also a lucrative time for threat actors, who are looking to target organizations who may have let their guard down as they celebrate, and what organizations need to know to stay protected.
View Video
Arctic Wolf

CVE-2023-22523, CVE-2022-1471, CVE-2023-22524, and CVE-2023-22522: Four Critical RCE Vulnerabilities Impacting Multiple Atlassian Products

Dec 7, 2023 By Steven Campbell In Arctic Wolf
On Tuesday, December 5, 2023, Atlassian published fixes for four critical-severity remote code execution (RCE) vulnerabilities impacting a variety of Atlassian products, including Atlassian Confluence Server and Data Center. The vulnerabilities were discovered by Atlassian as part of a security review and have not been actively exploited by threat actors. Additionally, we have not observed a public proof of concept (PoC) exploit published for any of the vulnerabilities.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.