Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Arctic Wolf Observes Organizations Receiving Unsolicited Microsoft MFA Messages

Jun 11, 2025 By Andres Ramos In Arctic Wolf
Arctic Wolf has recently observed customers receiving unsolicited Microsoft multi-factor authentication (MFA) text messages. These messages originate from legitimate Microsoft short code numbers; however, the source and intent have not been confirmed. This issue appears widespread, affecting organizations across multiple industry verticals. Example of Text Message It is currently unclear whether this activity is due to a systemic issue on Microsoft’s side or part of a malicious campaign.
Read Post

The Howler Episode 19: Todd Warner, SVP of Customer Success

Jun 11, 2025 By Arctic Wolf Networks In Arctic Wolf
This month, we sit down with Todd Warner, Senior Vice President of Customer Success, as he shares the best leadership advice he's ever received, why he loves working in customer success, his love of swim spas, and much more! Todd Warner is the SVP of Customer Success at Arctic Wolf, where he focuses on taking care of our customers and leading the CS team. With 10+ years leading and building CS teams and 10+ years in various sales roles, he has learned the importance of listening to customers and working toward outcomes that best suit their needs.
View Video
Arctic Wolf

CVE-2025-20286: PoC Available for Critical Cisco Identity Services Engine Static Credential Vulnerability

Jun 5, 2025 By Andres Ramos In Arctic Wolf
On June 4, 2025, Cisco released fixes for multiple vulnerabilities, several of which were noted to have publicly available proof-of-concept (PoC) exploit code. The most severe issue, CVE-2025-20286, affects cloud deployments of Cisco Identity Services Engine (ISE) on Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud Infrastructure (OCI).
Read Post
Arctic Wolf

AI and Cybersecurity: Trends That Prove the Fundamentals Matter More Than Ever

Jun 4, 2025 By Dan Schiappa In Arctic Wolf
AI is not just reshaping cybersecurity. It is exposing where many organizations remain vulnerable. While attackers are racing ahead with AI-powered tools, too many defenders are still relying on outdated strategies, siloed data, and manual processes. In conversations with security leaders, I hear the same concern repeatedly. The anxiety is not just about AI-enhanced threats. It is about the growing sense that defenders are falling behind.
Read Post
Arctic Wolf

CVE-2025-37093: HPE Fixes Critical RCE Vulnerability in StoreOnce

Jun 4, 2025 By Andres Ramos In Arctic Wolf
On June 2, 2025, Hewlett Packard Enterprise (HPE) released fixes for multiple vulnerabilities affecting HPE StoreOnce VSA, an enterprise backup storage solution. The most severe of these was CVE-2025-37093, a critical authentication bypass vulnerability discovered by the Zero Day Initiative (ZDI). The flaw resides in the implementation of the machineAccountCheck method and stems from improper handling of an authentication algorithm.
Read Post
Arctic Wolf

What is Privileged Access Management?

Jun 4, 2025 By Arctic Wolf In Arctic Wolf
The management of user access to an organization’s assets, applications, and systems is never static. Users are coming and going, different roles require different access, and for some, privileged access – elevated permissions and access capabilities granted to specific users or groups of users — is needed for mission-critical business functions.
Read Post
Arctic Wolf

ConnectWise Breach Attributed to Nation-State Threat Actor

Jun 3, 2025 By Andres Ramos In Arctic Wolf
On May 28, 2025, ConnectWise published an advisory disclosing suspicious activity within its environment, attributed to a sophisticated nation-state threat actor known for intelligence collection. The activity reportedly affected a very small number of ScreenConnect customers, all of whom ConnectWise has directly contacted. Details remain limited as the investigation is ongoing.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.