Page 4 – Arctic Wolf

Arctic Wolf Report Finds Nearly Three-Quarters of Organizations Have Already Introduced AI into their Cybersecurity Posture

Arctic Wolf | August 27, 2025

New global research reveals high optimism for AI’s role in threat detection and response—but leaders acknowledge it can’t succeed without human oversight EDEN PRAIRIE, Minn. – August 27, 2025 — Arctic Wolf®, a global leader in security operations, today released new findings from its latest report, Navigating the Human-AI Relationship for Security Operations Success. The … Arctic Wolf Report Finds Nearly Three-Quarters of Organizations Have Already Introduced AI into their Cybersecurity Posture

CVE-2025-7775: Critical Citrix NetScaler Zero-Day RCE Exploited to Drop Webshells

Andres Ramos | August 26, 2025

Security bulletin with an exclamation point in the middle of the screen

On August 26, 2025, Citrix released fixes for a critical vulnerability in Citrix NetScaler ADC and Gateway (CVE-2025-7775) that has been exploited on unpatched appliances. The issue stems from a memory overflow flaw that could allow Remote Code Execution (RCE) and/or Denial of Service (DoS) by remote threat actors. The vulnerability affects NetScaler appliances configured … CVE-2025-7775: Critical Citrix NetScaler Zero-Day RCE Exploited to Drop Webshells

Tolly Group Evaluation of Arctic Wolf Aurora Endpoint Security: Eﬃcacy with Endpoint Detection and Response

Arctic Wolf | August 26, 2025

Use independent testing from the Tolly Group to evaluate the protection efficacy and system resource utilisation of Arctic Wolf Endpoint Security.

Tolly Group Evaluation of Arctic Wolf Aurora Endpoint Security: Eﬃcacy with Endpoint Detection and Response

Arctic Wolf | August 26, 2025

Use independent testing from the Tolly Group to evaluate the protection efficacy and system resource utilization of Arctic Wolf Endpoint Security.

Aurora Endpoint Security Achieves 100% Threat Protection in Independent Tolly Group Evaluation

Arctic Wolf | August 26, 2025

Arctic Wolf delivers leading endpoint detection and response while limiting resource use and streamlining analyst workload EDEN PRAIRIE, Minn. — August 26, 2025 — Arctic Wolf®, a global leader in security operations, today announced that its Aurora Endpoint Security achieved 100% threat protection against malware while delivering exceptional efficiency, according to independent testing commissioned by … Aurora Endpoint Security Achieves 100% Threat Protection in Independent Tolly Group Evaluation

it-sa 2025

Arctic Wolf | August 25, 2025

LSZ CIO Kongress

Arctic Wolf | August 25, 2025

Hacked in 60 Seconds: Was, wenn Ihr Unternehmen das nächste ist?

Arctic Wolf | August 25, 2025

Heise IT-Sicherheitstag

Arctic Wolf | August 25, 2025

What is Advanced Endpoint Protection

Arctic Wolf | August 25, 2025

Endpoints play a vital role in any organisation’s operations. However, endpoints are susceptible to a variety of cyber attacks, particularly malware and ransomware – threats that remain highly popular among threat actors. Additionally, many social engineering attacks seek to gain access to individual users’ endpoints. Worse still, in a time when factors such as remote … What is Advanced Endpoint Protection

What is Advanced Endpoint Protection

Arctic Wolf | August 25, 2025

Endpoints play a vital role in any organization’s operations. However, endpoints are susceptible to a variety of cyber attacks, particularly malware and ransomware – threats that remain highly popular among threat actors. Additionally, many social engineering attacks seek to gain access to individual users’ endpoints. Worse still, in a time when factors such as remote … What is Advanced Endpoint Protection

How To Achieve Endpoint Visibility for Enhanced Endpoint Security

Arctic Wolf | August 22, 2025

Endpoint visibility is fundamental to many of the processes that underpin effective endpoint security: data collection, monitoring, alerting (including alert analysis), and comprehensive threat detection and response. Trouble is, the number, types, locations, and use cases of endpoints are constantly in flux, due to user comings and goings, role changes, broad use of virtual instances … How To Achieve Endpoint Visibility for Enhanced Endpoint Security

How To Achieve Endpoint Visibility for Enhanced Endpoint Security

Arctic Wolf | August 22, 2025

How to use Advanced Queries in Aurora Endpoint Defense

Arctic Wolf | August 22, 2025

This demo uses the Advanced Query capability in Aurora Endpoint Defense to investigate an alert and learn that it was a part of a larger attack.

Introducing the Arctic Wolf AI Security Assistant: Providing Value for Security Operations for Beta Customers

Sara Kingsley | August 21, 2025

Arctic Wolf recently introduced its AI Security Assistant, a cutting-edge generative AI security assistant designed to enhance security operations within the Aurora™ Platform. This innovative tool is now in beta and promises to deliver deeper security expertise instantly to users. What Is the AI Security Assistant? The AI Security Assistant is an interactive security assistant … Introducing the Arctic Wolf AI Security Assistant: Providing Value for Security Operations for Beta Customers

The Value of IR Planning and Incident Readiness

Arctic Wolf | August 20, 2025

Web browser icon with wavy lines in the background.

A harsh reality of enterprise cybersecurity is that even the most diligent, careful organisations will eventually experience a threat incident. That’s why an important part of a robust cybersecurity strategy is not just preventing attacks but knowing how best to respond to an active one. But incident response (IR) is more complex than just dialing … The Value of IR Planning and Incident Readiness

The Value of IR Planning and Incident Readiness

Arctic Wolf | August 20, 2025

A harsh reality of enterprise cybersecurity is that even the most diligent, careful organizations will eventually experience a threat incident. That’s why an important part of a robust cybersecurity strategy is not just preventing attacks but knowing how best to respond to an active one. But incident response (IR) is more complex than just dialing … The Value of IR Planning and Incident Readiness

2025 Gartner® Market Guide for Digital Forensics and Incident Response Retainer Services

Arctic Wolf | August 19, 2025

Understand how the digital forensics and incident response marketplace is evolving and how to best evaluate DFIR vendors.

2025 Gartner® Market Guide for Digital Forensics and Incident Response Retainer Services

Arctic Wolf | August 19, 2025

Understand how the digital forensics and incident response marketplace is evolving and how to best evaluate DFIR vendors.

CVE-2025-20265: Maximum-Severity Remote Code Execution Vulnerability in Cisco Secure Firewall Management Center

Andres Ramos | August 18, 2025

On 14 August 2025, Cisco released fixes for a maximum-severity vulnerability affecting Cisco Secure Firewall Management Center (FMC) Software, tracked as CVE-2025-20265. FMC is the centralised platform used to manage security settings and network devices across Cisco Firepower and ASA deployments. CVE-2025-20265 results from improper handling of user input during the RADIUS authentication process. An … CVE-2025-20265: Maximum-Severity Remote Code Execution Vulnerability in Cisco Secure Firewall Management Center

CVE-2025-20265: Maximum-Severity Remote Code Execution Vulnerability in Cisco Secure Firewall Management Center

Andres Ramos | August 18, 2025

On August 14, 2025, Cisco released fixes for a maximum-severity vulnerability affecting Cisco Secure Firewall Management Center (FMC) Software, tracked as CVE-2025-20265. FMC is the centralized platform used to manage security settings and network devices across Cisco Firepower and ASA deployments. CVE-2025-20265 results from improper handling of user input during the RADIUS authentication process. An … CVE-2025-20265: Maximum-Severity Remote Code Execution Vulnerability in Cisco Secure Firewall Management Center

Threat Actor Profile: Interlock Ransomware

Arctic Wolf Threat Research | August 15, 2025

Executive Summary A relatively new ransomware group, Interlock, has gained traction in 2025 as an opportunistic ransomware operator that leverages compromised websites and multi-stage social engineering techniques to deliver their payloads. First observed in September 2024, Interlock departs from the traditional Ransomware-as-a-Service (RaaS) model, operating without affiliates or public advertisements. The financially-motivated group conducts opportunistic … Threat Actor Profile: Interlock Ransomware

CVE-2025-25256: PoC Available for FortiSIEM Remote Unauthenticated Command Injection Vulnerability

Arctic Wolf | August 13, 2025

On 12 August 2025, Fortinet released fixes for a critical-severity vulnerability in FortiSIEM, tracked as CVE-2025-25256. The flaw arises from improper neutralisation of special elements used in an OS command within the phMonitor service (TCP/7900). Successful exploitation could allow a remote, unauthenticated threat actor to execute unauthorised code or commands via crafted CLI requests. Fortinet … CVE-2025-25256: PoC Available for FortiSIEM Remote Unauthenticated Command Injection Vulnerability

CVE-2025-25256: PoC Available for FortiSIEM Remote Unauthenticated Command Injection Vulnerability

Andres Ramos | August 13, 2025

On August 12, 2025, Fortinet released fixes for a critical-severity vulnerability in FortiSIEM, tracked as CVE-2025-25256. The flaw arises from improper neutralization of special elements used in an OS command within the phMonitor service (TCP/7900). Successful exploitation could allow a remote, unauthenticated threat actor to execute unauthorized code or commands via crafted CLI requests. Fortinet … CVE-2025-25256: PoC Available for FortiSIEM Remote Unauthenticated Command Injection Vulnerability

From Hours to Assurance: Inside the Incident360 Retainer

Arctic Wolf | August 13, 2025

Join Arctic Wolf as we take a close look at the new Incident360 Retainer and demonstrate how the next step toward proactive incident response can help you better respond to and prepare for cyber incidents. IDC, Arctic Wolf’s Incident Response Retainer Plan: Why Didn’t Anyone Think of This Before?, July 2025, IDC #US53353925

Microsoft Patch Tuesday: August 2025

Arctic Wolf | August 13, 2025

On 12 August 2025, Microsoft released its August 2025 security update, addressing 107 newly disclosed vulnerabilities. Arctic Wolf highlighted four vulnerabilities in this bulletin based on their potential impact. At the time of disclosure, none of the vulnerabilities had been reported as exploited. Vulnerabilities Vulnerability CVSS Description CVE-2025-49712 8.8 Microsoft SharePoint Remote Code Execution Vulnerability … Microsoft Patch Tuesday: August 2025

Microsoft Patch Tuesday: August 2025

Julian Tuin | August 13, 2025

Security Bulletin text on the screen with a wolf in the background

On August 12, 2025, Microsoft released its August 2025 security update, addressing 107 newly disclosed vulnerabilities. Arctic Wolf highlighted four vulnerabilities in this bulletin based on their potential impact. At the time of disclosure, none of the vulnerabilities had been reported as exploited. Vulnerabilities Vulnerability CVSS Description CVE-2025-49712 8.8 Microsoft SharePoint Remote Code Execution Vulnerability … Microsoft Patch Tuesday: August 2025

The 2025 Cyber Insurance Outlook

Arctic Wolf | August 11, 2025

Discover the latest trends and insights in the cyber insurance market with Arctic Wolf’s 2025 Cyber Insurance Outlook report. Learn how AI, ransomware, and evolving threats are shaping the industry.

The 2025 Cyber Insurance Outlook

Arctic Wolf | August 11, 2025

CVE-2025-53786: U.S. CISA Issues Emergency Directive for Post-Authentication Vulnerability in Microsoft Exchange Hybrid Configurations

Andres Ramos | August 8, 2025

On August 6, 2025, Microsoft disclosed a high-severity post-authentication vulnerability affecting on-premises Microsoft Exchange servers configured for hybrid-joined environments, tracked as CVE-2025-53786. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Emergency Directive 25-02, requiring federal agencies to patch the vulnerability by Monday, August 11. At this time, no other countries are known to … CVE-2025-53786: U.S. CISA Issues Emergency Directive for Post-Authentication Vulnerability in Microsoft Exchange Hybrid Configurations

© 2025 Arctic Wolf Networks Inc. All Rights Reserved.
Privacy Notice	Terms of Use	Cookie Policy	Accessibility Statement	Information Security	Sustainability Statement	Cookies Settings

Platform

Concierge

Journey

Reduce Attack Frequency

Reduce Attack Severity

Transfer Risk

Get Started

Why Arctic Wolf

Expertise by Topic

Incident Response Timelines

Expertise by Industry

Resource Center

Trending Resources

The Arctic Wolf Threat Report draws upon the first-hand experience of our security experts, augmented by research from our threat intelligence team.

The Arctic Wolf State of Cybersecurity: 2025 Trends Report serves as an opportunity for decision makers to share their experiences over the past 12 months and their perspectives on some of the most important issues shaping the IT and security landscape.

Join Arctic Wolf on an interactive journey to discover a better path past the hazards of the modern threat landscape.

Security Bulletins

CVE-2025-61882: New Critical RCE Vulnerability Linked to Oracle E-Business Cl0p Extortion Emails

Alleged Cl0p Extortion Emails Linked to July 2025 Oracle E-Business Suite Vulnerabilities

September 2025 Update on Aggressive Ongoing Akira Ransomware Campaign

Partners

Company

Careers

Press

Arctic Wolf Networks 8939 Columbine Rd Eden Prairie, MN 55347

1.888.272.8429

© 2025 Arctic Wolf Networks Inc. All Rights Reserved.

Arctic Wolf Networks
8939 Columbine Rd
Eden Prairie, MN 55347