Bob Skelley

Progress ShareFile has released fixes for two critical severity vulnerabilities in Progress ShareFile Storage Zones Controller (SZC) 5.x, tracked as CVE-2026-2699 and CVE-2026-2701. Learn more in our latest security bulletin. https://t.co/C98kAp2l0x

Security leaders need full visibility into the signals driving detections but cannot afford the operational overhead of maintaining their own log analytics platform. Arctic Wolf® Data Explorer addresses this exact challenge. Learn how in our latest blog. https://t.co/dFuUwUjX53

On April 4, 2026, Fortinet released a hotfix for a critical vulnerability in FortiClient EMS (CVE-2026-35616) that allows unauthenticated remote threat actors to execute unauthorized code or commands via crafted requests. https://t.co/tFiMFfmqSN

On April 14, 2026, Microsoft released its April 2026 security update, addressing 165 newly disclosed vulnerabilities. Among these, Arctic Wolf has highlighted two vulnerabilities in this security bulletin. https://t.co/y0elmDxv19

F5 has updated its security advisory for a vulnerability impacting BIG-IP APM that was originally disclosed in October 2025 (CVE-2025-53521). Learn more in our latest security bulletin: https://t.co/jmxqUJFEdG

The widely used Axios npm package, a JavaScript library that enables applications to make HTTP/S requests and is included as a dependency in millions of applications, was compromised in a supply chain attack on March 31, 2026 (UTC). https://t.co/WaQI3GN6Sp

Arctic Wolf Labs set out to assess how broadly threat actors have adopted AI to support malware development. Our analysis shows that although AI-assisted malware is no longer an experimental novelty, it remains detectable to mature, layered defenses. https://t.co/MC3kvNhxAF

The threat actor TeamPCP has launched a coordinated campaign targeting security tools and open-source developer infrastructure by pivoting with stolen CI/CD secrets and signing credentials. https://t.co/aZO3LGnCNG

Arctic Wolf has recently observed a phishing campaign targeting Microsoft 365 that abuses the OAuth device code flow to trick victims into providing authentication codes. Learn more in our latest security bulletin: https://t.co/oR9wGucB6v

Arctic Wolf Labs set out to assess how broadly threat actors have adopted AI to support malware development. Our analysis shows that although AI-assisted malware is no longer an experimental novelty, it remains detectable to mature, layered defenses. https://t.co/YMOt2I0TIG

Oracle has released fixes for a critical vulnerability in its Fusion Middleware suite affecting Identity Manager and Web Services Manager, tracked as CVE-2026-21992. https://t.co/99tzxnNF8P

On March 23, 2026, Citrix released fixes for a critical vulnerability affecting NetScaler ADC and NetScaler Gateway (CVE‑2026‑3055) that allows unauthenticated threat actors to perform out-of-bounds memory reads. https://t.co/VxABJkKLPB

On February 24, 2026, sooperset, the mcp-atlassian project maintainer, released fixes for a critical vulnerability in mcp-atlassian, tracked as CVE-2026-27825. Learn more in our latest security bulletin: https://t.co/9HGaCHIece

On March 03, 2026, pac4j released fixes for a maximum severity vulnerability in pac4j-jwt, tracked as CVE-2026-29000. https://t.co/GQsIgk6AG5

On March 11, 2026, U.S. medical technology company Stryker Corporation disclosed a cyber attack that disrupted its global internal networks and Microsoft systems, leaving thousands of employees unable to access corporate systems and devices inoperable. https://t.co/h1i5MNatHg

On March 12, 2026, Veeam released fixes for multiple high and critical severity vulnerabilities in their Backup & Replication product that could allow remote code execution (RCE), privilege escalation, and credential theft. https://t.co/5jeSGfoWUq

Cisco has released fixes for a maximum severity authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager, tracked as CVE-2026-20127. Learn more in our latest security bulletin: https://t.co/eTUdVzx6xH