Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

CVE-2024-20401 and CVE-2024-20419: Critical Vulnerabilities in Cisco Secure Email and Cisco Smart Software Manager On-Prem

Jul 23, 2024 By Stefan Hostetler In Arctic Wolf
On July 17, 2024, Cisco publicly disclosed critical vulnerabilities in Cisco Secure Email Gateway (SEG) and Cisco Smart Software Manager On-Prem (SSM), identified as CVE-2024-20401 and CVE-2024-20419 respectively. Both of these vulnerabilities may allow for unauthenticated administrative actions to be taken by threat actors when exploited.
Read Post
Arctic Wolf

Abusing BOINC: FakeUpdates Campaign Bundling Malware with Legitimate Software

Jul 23, 2024 By Arctic Wolf In Arctic Wolf
Beginning in early July 2024, Arctic Wolf responded to multiple SocGholish/FakeUpdate intrusions that resulted in a seemingly benign payload being delivered as a second-stage download. The zip file payload contained software from the Berkeley Open Infrastructure for Network Computing (BOINC) project, open-source software that allows users to contribute computing power to scientific research projects focused on solving complex calculations.
Read Post

Security Live with AWS and Arctic Wolf

Jul 22, 2024 By Arctic Wolf In Arctic Wolf
Each episode of Security Live features AWS and AWS Partners who are working to solve security challenges for customers. And few companies are doing that with the scale, speed, and efficiency of Arctic Wolf. In this episode, Arctic Wolf CISO Adam Marre explains how Arctic Wolf is solving the operations problem in the cybersecurity industry by providing the platform and human element to help organizations get the outcomes they need out of the tools in their tech stack.
View Video

Tips To Stop Social Engineers Exploiting The Global IT Outage

Jul 22, 2024 By Arctic Wolf In Arctic Wolf
The recent global IT outage on Windows hosts will likely lead to a surge of threat actors posing as support agents offering “help” as a part of a social engineering attack. Here are some quick tips from Arctic Wolf to help you spot and stop these attacks.
View Video
Arctic Wolf

The Top Cyber Attack Vectors Organizations Face

Jul 19, 2024 By Arctic Wolf In Arctic Wolf
Recent research by Arctic Wolf has revealed that, within the last 12 months, 48% of organizations identified evidence of a successful breach within their environment. As The State of Cybersecurity: 2024 Trends Report highlights, “To fully understand the gravity of this statistic, it is important to understand that, although 48% of these environments found evidence of a data breach, that does not inversely mean that 52% of organizations did not suffer a breach.”
Read Post
Arctic Wolf

Technical Fix for Global IT Outage - CrowdStrike and Microsoft Incident

Jul 19, 2024 By Arctic Wolf In Arctic Wolf
Our team at Arctic Wolf has been following the CrowdStrike issue affecting Windows endpoints since approximately 12 AM EST on July 19th, 2024. Although Arctic Wolf’s service is not impacted, some of our customers who leverage CrowdStrike for endpoint security are experiencing widespread outages. Arctic Wolf continues to protect and monitor these customers’ environments while they focus their attention on recovering from this event.
Read Post
Arctic Wolf

How State and Local Governments Can Stay Safe From Cyber Attacks

Jul 18, 2024 By Louis Evans In Arctic Wolf
Cyber threats are increasing and, unfortunately, local and state government entities have become top targets. In 2023, the FBI reported that government entities were the third most-targeted sector by ransomware, and Arctic Wolf’s own research saw the average ransom for government organizations top $1 million USD. And that’s just one kind of cyber attack.
Read Post
Arctic Wolf

CVE-2024-4879, CVE-2024-5178, CVE-2024-5217: ServiceNow MID Server Vulnerabilities Resulting in Unauthorized Code Execution

Jul 17, 2024 By Stefan Hostetler In Arctic Wolf
On July 10, 2024, ServiceNow disclosed a series of critical vulnerabilities impacting their platform, identified as CVE-2024-4879, CVE-2024-5178, and CVE-2024-5217. These vulnerabilities were responsibly disclosed to ServiceNow in May 2024 by Assetnote, a cybersecurity firm. ServiceNow responded by patching hosted instances in June 2024.
Read Post
Arctic Wolf

How To Stop MFA Fatigue Attacks

Jul 15, 2024 By Sule Tatar In Arctic Wolf
As organizations continue to digitize and passwords proliferate across systems, applications, and even assets, identity and access management (IAM) has become a pillar of cybersecurity. One component of IAM has become ubiquitous with access security: multi-factor authentication (MFA). MFA is an access control technique that adds a layer of security to user logins and access by making the user verify their identity.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.