Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

CVE-2025-42890: Hard-Coded Credentials in SAP SQL Anywhere Monitor (Non-GUI)

Nov 11, 2025 By Julian Tuin In Arctic Wolf
On November 11, 2025, SAP published a security advisory as part of their November security patches, addressing a maximum severity vulnerability identified as CVE-2025-42890 in SQL Anywhere Monitor (Non-GUI) version 17.0. The vulnerability involves hard-coded credentials, which exposes system resources to unauthorized users and allows threat actors to execute arbitrary code without authentication.
Read Post
Arctic Wolf

The Top 10 Ransomware TTPs

Nov 10, 2025 By Arctic Wolf In Arctic Wolf
Arctic Wolf’s The State of Cybersecurity: 2025 Trends Report revealed that 23% of organizations experienced at least one significant ransomware attack in 2024. And these attacks remain difficult for organizations to remediate without succumbing to threat actor demands, with the same report finding 76% of victim organizations are electing to pay the ransom to regain access to their data and environment.
Read Post
Arctic Wolf

Purpose-Built for MSPs: Unlock New Market Opportunities with Arctic Wolf

Nov 5, 2025 By Arctic Wolf In Arctic Wolf
In today’s evolving threat landscape, a stack of security tools isn’t enough. MSPs need a partner that helps them scale, differentiate, and deliver exceptional security outcomes. That’s why Arctic Wolf launched a purpose-built MSP program earlier this year, designed in close collaboration with our MSP partners to empower them to grow faster and more profitably.
Read Post

SOCast: No Shortcuts - A Discussion on Cyber Resilience

Nov 3, 2025 By Arctic Wolf Networks In Arctic Wolf
Why do people take shortcuts in security, and how can we prevent them? Join us for a special live episode of Arctic Wolf SOCast as our experts unpack the psychology behind risky security behaviors and explore how AI is influencing decision-making in today’s workplaces. We’ll also reveal new data on how IT leaders and employees are using tools like ChatGPT and other generative AI platforms, and what that means for your organization’s security posture.
View Video

SOCast: No Shortcuts - A Discussion on Cyber Resilience

Oct 30, 2025 By Arctic Wolf Networks In Arctic Wolf
Why do people take shortcuts in security, and how can we prevent them? Join us for a special live episode of Arctic Wolf SOCast as our experts unpack the psychology behind risky security behaviors and explore how AI is influencing decision-making in today’s workplaces. We’ll also reveal new data on how IT leaders and employees are using tools like ChatGPT and other generative AI platforms, and what that means for your organization’s security posture.
View Video
Arctic Wolf

UNC6384 Weaponizes ZDI-CAN-25373 Vulnerability to Deploy PlugX Against Hungarian and Belgian Diplomatic Entities

Oct 30, 2025 By Arctic Wolf Labs In Arctic Wolf
Threat Actor Name: UNC6384 Targeted Industries: Government, Diplomatic Services Geographic Focus: Hungary, Belgium, Serbia, Italy, Netherlands (broader European diplomatic community)
Read Post

The Howler Episode 23 - Matthew Trushinski, Vice President of Product Marketing

Oct 28, 2025 By Arctic Wolf Networks In Arctic Wolf
This month we sit down with Matthew Trushinski, Vice President of Product Marketing, as he shares how he cultivates creativity & innovation within himself and his team, skills he thinks all product marketers should have, and so much more! Matthew Trushinski has a diverse technology marketing background including carrier networks, IoT, smart cities, AI and security. As the Vice President of Product Marketing for Arctic Wolf, he works with customers and prospects to improve their security operations.
View Video
Arctic Wolf

Microsoft Releases Emergency Patch for Exploited Critical Remote Code Execution Vulnerability (CVE-2025-59287)

Oct 24, 2025 By Andres Ramos In Arctic Wolf
On October 23, 2025, Microsoft released an out-of-band security update for a critical vulnerability tracked as CVE-2025-59287. The flaw stems from the deserialization of untrusted data in Windows Server Update Services (WSUS), which allows remote, unauthenticated threat actors to achieve remote code execution by sending a crafted event. According to Microsoft, only Windows servers with the WSUS Server Role enabled are affected. This feature is not enabled by default.
Read Post
Arctic Wolf

Brazilian Caminho Loader Employs LSB Steganography and Fileless Execution to Deliver Multiple Malware Families Across South America, Africa, and Eastern Europe

Oct 21, 2025 By Arctic Wolf Labs In Arctic Wolf
Arctic Wolf Labs has identified and analyzed a new malware loader we’re calling Caminho, a Brazilian-origin Loader-as-a-Service (LaaS) operation employing Least Significant Bit (LSB) steganography to conceal.NET payloads within image files hosted on legitimate platforms.
Read Post
Arctic Wolf

The Role of Tabletop Exercises in IR Planning

Oct 21, 2025 By Arctic Wolf In Arctic Wolf
Stopping a cyber incident and restoring operations requires more than technology — it depends on having the right plans, people, and processes working together under pressure. Effective incident response (IR) readiness helps position your organization to act with precision to contain threats, prevent escalation, and return to normal operations quickly. A cornerstone of a mature IR strategy is the tabletop exercise.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.