Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Arctic Wolf

1H 2023 Ransomware Landscape Overview

Aug 30, 2023 By Arctic Wolf In Arctic Wolf
Threat actor groups maintain dark web shame sites to negotiate ransoms with their victims, name them, and leak their data as punishment for not paying. These sites serve as a major tool for threatening victims and securing ransom payments but are not a precise record of global cyber attacks. However, there’s a lot to learn from the dark web behavior observed in the first half of this year to help contextualize the current threat landscape.
Read Post

Arctic Wolf Cybersecurity Awareness Month: House of 1000 Breaches Trailer

Aug 29, 2023 By Arctic Wolf In Arctic Wolf
This October, Arctic Wolf Managed Security Awareness in conjunction with Cybersecurity Awareness Month presents “House of 1000 Breaches”, the cybersecurity anthology raising goosebumps and social engineering awareness of all who dare to watch. Available to Arctic Wolf Managed Security Awareness subscribers, and on the Arctic Wolf YouTube Channel. Learn more about Security Awareness and how it can prepare your employees to recognize and neutralize social engineering attacks and human error.
View Video

The Hacker and The Fed: Combatting Cybercrime from the Inside

Aug 28, 2023 By Arctic Wolf In Arctic Wolf
You’ve heard of Anonymous. This is one of the most talked about and dangerous cybercriminal organizations in the world. Join this session to understand the perspective and experience of former Anonymous Black Hat Hacker, Hector Monsegur, and the former FBI agent who infiltrated Anonymous, Chris Tarbell.
View Video
Arctic Wolf

5 Ways to Avoid Falling for Phishing Attacks

Aug 24, 2023 By Nathan Caldwell In Arctic Wolf
There’s a sentiment that has, unfortunately, taken hold in the field of cybersecurity: Users are the weakest part of your environment. You can see why some may try to paint that picture. The statistics would seem to back it up: However, there’s a deeper truth hiding behind these statistics: It’s not the employees who are the weakest part of your security environment, it’s the training they receive.
Read Post

The Pretext: Insider Threats

Aug 24, 2023 By Arctic Wolf In Arctic Wolf
Cybercriminals are looking for a few good... actually, bad... insiders. Malicious insiders enact revenge for termination or line their pockets with ill-gotten funds through partnership with threat actors, giving up their credentials, stealing data, or agreeing to install malware on their organization's environment. How to prevent them? Watch this session from Arctic Wolf® Managed Security Awareness!
View Video
Arctic Wolf

CVE-2023-38035: Critical Authentication Bypass Vulnerability in Ivanti Sentry

Aug 23, 2023 By Andres Ramos In Arctic Wolf
On August 21, 2023, Ivanti published a knowledge base article on a critical authentication bypass vulnerability impacting Ivanti Sentry (CVE-2023-38035). For this vulnerability to be exploited, the System Management Portal which is hosted on port 8443 by default must be exposed to the internet. Successful exploitation of this vulnerability could lead to a remote unauthenticated threat actor making configuration changes to the server and the underlying Operating System (OS) as root.
Read Post
Arctic Wolf

CVE-2023-32560: Critical Remote Code Execution Vulnerabilities in Ivanti Avalanche

Aug 21, 2023 By James Liolios In Arctic Wolf
On August 14th, 2023, cybersecurity company Tenable released a research advisory detailing two stack-based buffer overflow vulnerabilities, collectively tracked as CVE-2023-32560, impacting Ivanti Avalanche products version 6.4.0 and older. A threat actor could remotely exploit the vulnerabilities without user authentication by specifying long data type items to overflow the buffer.
Read Post
Arctic Wolf

Multiple Junos OS Vulnerabilities Could lead to Unauthenticated Remote Code Execution

Aug 18, 2023 By Steven Campbell In Arctic Wolf
On August 17th, 2023, Juniper Networks released out-of-band fixes for multiple vulnerabilities that could be chained together to achieve unauthenticated remote code execution (RCE) on SRX and EX series devices. The vulnerabilities impact the J-Web component of Junos OS, the operating system running on the devices.
Read Post
Arctic Wolf

How Humans Cause and Can Prevent Data Breaches

Aug 17, 2023 By Arctic Wolf In Arctic Wolf
When it comes to analyzing your attack surface, you’re probably assessing vulnerabilities, monitoring your firewall, tracking email security, and managing your identity and access management. But there is one part of the attack surface that often gets overlooked, and for that reason threat actors are targeting it with increased frequency, causing it to jump to the top of the initial access methods list: the human element.
Read Post

Consent Phishing Mystery

Aug 17, 2023 By Arctic Wolf In Arctic Wolf
Janice was notified of an unauthorized $10,000 transfer from her account. Which of her co-workers is behind this nefarious attack? And how did they gain access to her personal data? Find out in this silent mystery. Learn more about Security Awareness and how it can prepare your employees to recognize and neutralize social engineering attacks and human error.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.