Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

CVE-2025-22457: Ivanti Connect Secure VPN Vulnerable to Zero-Day RCE Exploitation

Apr 3, 2025 By Andres Ramos In Arctic Wolf
On April 3, 2025, Ivanti disclosed a critical zero-day vulnerability, CVE-2025-22457, affecting Ivanti Connect Secure, Policy Secure, and ZTA Gateways. This stack-based buffer overflow allows remote unauthenticated threat actors to achieve remote code execution (RCE) and has been exploited in the wild. At the time of writing, exploitation has only been observed in Connect Secure, not Policy Secure or ZTA Gateway.
Read Post
Arctic Wolf

CVE-2025-31161: Exploitation of Critical Authentication Bypass Vulnerability in CrushFTP

Apr 2, 2025 By Andres Ramos In Arctic Wolf
On March 21, 2025, CrushFTP privately alerted customers to a critical authentication bypass vulnerability, now tracked as CVE-2025-31161. Since the initial disclosure, a proof-of-concept (PoC) exploit has been made publicly available, and the CrushFTP CEO has confirmed observing customer compromises via CVE-2025-31161.
Read Post
Arctic Wolf

Securing AI Against Evolving Threats

Apr 1, 2025 By Madeline Chantry In Arctic Wolf
Arctic Wolf is an AI-powered security operations provider, which gives our organization advanced insights into the emerging threats inherent in being an early adopter of the more recent techniques. However, Arctic Wolf is not the only one turning to AI. A third of technology leaders reported that AI was already fully integrated into their products and services. This statistic will grow as major tech companies like Microsoft and Google invest billions of dollars into AI infrastructure..
Read Post
Arctic Wolf

CVE-2025-1974: Critical Unauthenticated RCE Vulnerability in Ingress NGINX for Kubernetes

Mar 25, 2025 By Andres Ramos In Arctic Wolf
On March 24, 2025, ingress-nginx maintainers released fixes for multiple vulnerabilities that could allow threat actors to take over Kubernetes clusters. Ingress is a Kubernetes feature that defines how workload Pods are exposed to the network, while an Ingress Controller implements those rules by configuring the necessary local or cloud resources. According to Kubernetes, ingress-nginx is deployed in over 40% of Kubernetes clusters.
Read Post
Arctic Wolf

Alleged Oracle Cloud Supply Chain Attack: Six Million Records Stolen, 140K Companies Affected

Mar 24, 2025 By Andres Ramos In Arctic Wolf
On March 20, 2025, a Breach Forums user, “rose87168,” claimed to have stolen six million records from Oracle Cloud’s SSO and LDAP services and offered the data for sale or in exchange for zero-day exploits. Breach Forums is a known marketplace for cybercriminals to trade stolen data and exploits.
Read Post

The Howler - Episode 17: Kerri Shafer Page, Vice President of Incident Response

Mar 24, 2025 By Arctic Wolf Networks In Arctic Wolf
This month, we sit down with Kerri Shafer-Page, Vice President of Incident Response, as she shares a peak behind the curtain of the day-to-day of her and her team, reflections on being a woman in tech, and so much more! Kerri Shafer-Page serves as the Vice President of Digital Forensics and Incident Response at Arctic Wolf. A proven leader in threat identification, IT security and data privacy incident response and mitigation, Kerri has served in leadership roles at IBM and AIG, overseeing incident response and cybersecurity claims.
View Video
Arctic Wolf

CVE-2025-23120: Critical Remote Code Execution Vulnerability in Veeam Backup & Replication

Mar 21, 2025 By Julian Tuin In Arctic Wolf
On March 19, 2025, Veeam published a security advisory for a critical severity vulnerability impacting their Backup & Replication software. The advisory did not provide technical details regarding the vulnerability, although it did mention that it could be exploited by authenticated domain users.
Read Post
Arctic Wolf

Widespread Fake CAPTCHA Campaign Delivering Malware

Mar 13, 2025 By Andres Ramos In Arctic Wolf
Arctic Wolf has recently observed a campaign in which threat actors are compromising widely used websites across various industries and embedding a fake CAPTCHA challenge. When victims visit the site, they are presented with the CAPTCHA challenge or redirected to a site that provides instructions, triggering PowerShell code execution and ultimately leading to the loading of information stealer malware.
Read Post

Arctic Wolf Incident Response: End-to-End Response and Recovery

Mar 12, 2025 By Arctic Wolf In Arctic Wolf
Explore how Arctic Wolf Incident Response provides 24x7 support to our customers, providing expertise and action when they need it most. The Arctic Wolf IR solution offers a suite of in-house offerings, from digital forensics, to recovery, to threat actor negotiations and data mining. Arctic Wolf is able to come in with our skills and expertise to step up fast, secure the environment, and help organizations restore their environment with speed and efficiency -- all in-house.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.