Report a cybersecurity incident

If you experience a cybersecurity incident, report the incident to Arctic Wolf® as soon as possible.

Note:

If you are an existing Managed Detection and Response (MDR) customer and want to check if you are eligible for an IR Retainer, contact your Concierge Security® Team (CST) at security@arcticwolf.com.

Contact Arctic Wolf during a cybersecurity incident

If you experience a cybersecurity incident and have the IR Retainer, contact Arctic Wolf® using one of these methods:
  • By phone — Call Arctic Wolf Security Services at 1-888-272-8429, and then dial 2.
  • Through the Arctic Wolf Unified Portal — Create a ticket in the Arctic Wolf Unified Portal. For more information, see Create a new ticket.

How Arctic Wolf responds to a cybersecurity incident report

After an organization reports a cybersecurity incident to Arctic Wolf:

  1. The Arctic Wolf Security Services team investigates the incident and determines if it should be escalated to the Arctic Wolf Incident Response (IR) team.
  2. If the cybersecurity incident qualifies, a member of the IR team contacts you to schedule a free scoping call. During this call, Arctic Wolf:
    • Reviews your incident.
    • Prepares a statement of work (SOW).
  3. If you sign the SOW, the team works with you to remediate the security incident.
  4. If you are enrolled in the Security Operations Warranty program, see Make a warranty request for instructions to make a cybersecurity event claim.