From arcticwolf.com
1 2
Arctic Wolf Labs identified a campaign targeting Fortinet FortiGate firewall devices with exposed management interfaces.
on Tue, 4PM
From arcticwolf.com
Ransomware Campaign Encrypting Amazon S3 Buckets using SSE-C - Arctic Wolf
0 1
On January 13, 2025, Halcyon released a research blog about the Codefinger group conducting a ransomware campaign targeting Amazon S3 buckets. The attacks leverage AWS’s Server-Side Encryption with Customer Provided Keys (SSE-C) to encrypt data. The threat actors then demand ransom payments for...
on Tue, 6PM
From arcticwolf.com
0 0
Key Takeaways Cleo MFT products were exploited by threat actors to deploy a malicious PowerShell stager, culminating in the execution of a Java-based backdoor we are dubbing Cleopatra. The campaign began on 7 December 2024, and is ongoing as of the publication of this article. The Cleopatra...
on Dec 13
From arcticwolf.com
Arctic Wolf Observes Threat Campaign Targeting Palo Alto Networks Firewall Devices - Arctic Wolf
0 0
Arctic Wolf Labs has observed several intrusions exploiting CVE-2024-0012/CVE-2024-9474 on Palo Alto Networks Firewall devices to gain initial access and exfiltrate sensitive information.
on Nov 24
From arcticwolf.com
0 0
CVE-2024-42509 and CVE-2024-47460 could allow unauthenticated command injection. Find Arctic Wolf's recommendations.
on Nov 8
From arcticwolf.com
0 0
On October 29, 2024, QNAP issued a security advisory regarding a critical OS command injection vulnerability, tracked as CVE-2024-50388. Find Arctic Wolf's recommendations.
on Oct 31
From arcticwolf.com
0 0
Poor password hygiene runs rampant with 68% of IT leaders and end users admitting to reusing system passwords EDEN PRAIRIE, MN – October 16, 2024 – Arctic Wolf®, a global leader in security operations, today published findings from its 2024 Human Risk Behavior Snapshot based on a global survey...
on Oct 29
From arcticwolf.com
0 0
Since Early August 2024, Arctic Wolf has observed a high volume of intrusions involving Fog and Akira ransomware encryption affecting organizations with SonicWall devices.
on Oct 25
From arcticwolf.com
Arctic Wolf | The Leader in Security Operations
0 0
Arctic Wolf delivers dynamic 24x7 cybersecurity protection tailored to the specific needs of your organization. Ready to boost your security posture?
on Oct 1
From arcticwolf.com
Arctic Wolf Observes Akira Ransomware Campaign Targeting SonicWall SSLVPN Accounts | Arctic Wolf
0 0
In recent threat activity observed by Arctic Wolf, Akira ransomware affiliates carried out ransomware attacks with an initial access vector involving the compromise of SSLVPN user accounts on SonicWall devices.
on Sep 9
From arcticwolf.com
CVE-2024-20439 & CVE-2024-20440 | Arctic Wolf
0 0
On September 4, 2024, Cisco released fixes for two critical vulnerabilities in Cisco Smart Licensing Utility (CSLU), a tool used to manage licenses across Cisco products in a network.
on Sep 6
From arcticwolf.com
0 0
On July 1, 2024, OpenSSH released fixes for CVE-2024-6387, a vulnerability in OpenSSH's server (sshd) on glibc-based Linux systems allowing for potential Remote Code Execution (RCE).
on Jul 12
From arcticwolf.com
Lost in the Fog: A New Ransomware Threat - Arctic Wolf
0 0
Arctic Wolf Labs has observed Fog ransomware being deployed against US organizations in the education and recreation sectors.
on Jun 6
From arcticwolf.com
New Go-based Malware Loader Discovered I Arctic Wolf
0 0
Arctic Wolf Labs has discovered, based on recent intrusion observations, a new Go-based malware loader named CherryLoader
on Jan 25
From arcticwolf.com
Follow-On Extortion Campaign Targeting Victims of Akira and Royal Ransomware - Arctic Wolf
0 0
Arctic Wolf Labs has investigated several cases where ransomware victims are being targeted for follow-on extortion attempts by threat actors who are aware of ransom attack details.
on Jan 13, 2024
From arcticwolf.com
Qlik Sense Exploited in Cactus Ransomware Campaign - Arctic Wolf
0 0
Arctic Wolf Labs has observed a new Cactus ransomware campaign which exploits publicly-exposed Qlik Sense installations.
on Nov 29, 2023