Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

Arctic Wolf Observes Malicious SSO Logins on FortiGate Devices Following Disclosure of CVE-2025-59718 and CVE-2025-59719

Dec 15, 2025 By Arctic Wolf Labs In Arctic Wolf
In December 12, 2025, Arctic Wolf began observing intrusions involving malicious SSO logins on FortiGate appliances. Fortinet had previously released an advisory for two critical authentication bypass vulnerabilities (CVE-2025-59718 and CVE-2025-59719) on December 9, 2025. Arctic Wolf had also sent out a security bulletin for the vulnerabilities shortly thereafter.
Read Post
manageengine

Top 2025 Network and Cybersecurity awards honor Firewall Analyzer

Dec 12, 2025 By Shree Harish S B In ManageEngine
We are excited to announce that ManageEngine Firewall Analyzer has been recognized with multiple prestigious industry awards across the Cybersecurity and Network Security categories. These honors reflect the trust and confidence our users place in Firewall Analyzer as their go-to solution for firewall management, security visibility, and compliance reporting.
Read Post
Strong, Quiet, Predictable. WatchGuard Delivers Total Protection Without Operational Burden in MITRE ER7 Evaluation

Strong, Quiet, Predictable. WatchGuard Delivers Total Protection Without Operational Burden in MITRE ER7 Evaluation

Dec 11, 2025 By WatchGuard In WatchGuard
WatchGuard delivers full coverage with almost no noise in MITRE ATT&CK ER7 testing, giving MSPs stronger protection, faster response, and lower operational burden.
Read Post
cato networks

Cato CTRL Threat Research: A Deep Dive into a New JSCEAL Infostealer Campaign

Dec 11, 2025 By Zohar Buber In Cato Networks
JSCEAL is an information stealer that’s been targeting users of cryptocurrency applications. As reported by Check Point Research (CPR) in July 2025, JSCEAL has developed into a more advanced form. In a new campaign observed by Cato CTRL in August 2025, JSCEAL has adopted a revamped command-and-control (C2) infrastructure, enhanced anti-analysis safeguards, and an updated script engine designed for increased stealth. The campaign remains active.
Read Post
cato networks

Mitigating Credential Phishing in the Age of AI and Cloud Convergence

Dec 10, 2025 By Dr. Guy Waizel In Cato Networks
Phishing remains one of the most effective methods for stealing credentials and breaching enterprise environments. Despite advanced email and browser protections, attackers now leverage AI, and automation to outpace traditional defenses. The Verizon 2024 Data Breach Investigations Report found that 68% of breaches involve the human element, often triggered within seconds of a phishing lure, just 21 seconds to click and 28 seconds to submit credentials.
Read Post
cato networks

Cato CTRL Threat Brief: "React2Shell" Vulnerability Targeting React Server Components

Dec 9, 2025 By Dr. Guy Waizel In Cato Networks
On Wednesday, December 3, a critical remote code execution (RCE) vulnerability in React Server Components (RSC), dubbed React2Shell (CVE-2025-55182), was disclosed. The CVE was discovered by security researcher Lachlan Davidson. It quickly gained traction with multiple third-party proof of concepts (PoCs) being published of varying quality and credibility.
Read Post

Rogue Devices on Your Network: How Hackers Stay Invisible

Dec 9, 2025 By Forescout Technologies In Forescout
Cybercriminals and state-driven actors are getting smarter. Rogue devices, like stolen laptops or stealthy rogue routers, are bypassing traditional security measures and hiding in your network’s blind spots. In this discussion, experts Daniel dos Santos, VP of Forescout Research, Rik Ferguson, VP of Security Intelligence and Liran Chen, VP of Systems Engineering dive into.
View Video
Forward Networks

Identify Unknown or Unapproved Devices: How Forward Networks Helps Strengthen Supply-Chain and Zero Trust Compliance

Dec 9, 2025 By Forward Networks In Forward Networks
Modern enterprise and federal networks increasingly face challenges related to identifying and validating the hardware operating within their environments. While teams typically expect enterprise-grade devices from approved vendors, the broader hardware ecosystem often introduces components and equipment that do not originate from the organization’s procurement process.
Read Post
The Role of Security in the Rise of Smart Business Connectivity

The Role of Security in the Rise of Smart Business Connectivity

Dec 8, 2025 By SecuritySenses In SecuritySenses
In today's fast-paced business environment, connectivity is no longer just a convenience; it is essential for professional growth and success. Businesses and individuals rely on smart tools to share information, collaborate, and expand their networks efficiently. However, as connectivity becomes more digital, security becomes increasingly important. Without proper safeguards, the benefits of smart business connectivity can turn into risks such as data breaches or identity theft.
Read Post
Corelight

How to React(.js) to React2Shell and detecting behaviors to catch the Next(.js) big RCE

Dec 6, 2025 By David Burkett In Corelight
Critical vulnerabilities in React Server Components (CVE-2025-55182) and Next.js (CVE-2025-66478) enable unauthenticated remote code execution in default configurations. The flaw resides in the "Flight" protocol used for server-side rendering, making it a sought after target for adversaries looking to bypass standard controls. While the public discourse is currently cluttered with unreliable exploits, we need to ground our defense in verifiable network evidence.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.