News & Resources

Dive into our resource hub and explore top cybersecurity
topics along with what we do and what we can do for you.

Learn More

Flash Notice | Feb 15, 2024

Flash Notice: Microsoft Addresses Two Zero-Day Vulnerabilities Exploited by Attackers - Patch Now

As part of patch Tuesday, Microsoft has responded to security concerns by providing fixes for a total of 72 vulnerabilities, including two zero-days.

This week, Microsoft patched two zero-day vulnerabilities (CVE-2023-36884 and CVE-2023-38180).

Learn More

Flash Notice | Mar 27, 2023

Flash Notice: Emergency Security Update Released for Windows 10 and 11 Snipping Tool

Learn More

Blog | Mar 2, 2023

Securing the Customer Channel: 2 Critical Things for Retailers to Know

Explore the challenges retailers face and take a look at 2 critical factors retailers must know to protect the customer channel and build trust with them.

A critical zero-day vulnerability (CVE-2022-42475) was found in multiple versions of Fortinet’s FortiOS SSL-VPN.

Learn More

Threat Report | Dec 13, 2022

Everything You Need to Know About Royal Ransomware

After emerging in January 2022, Royal ransomware is a ransomware strain that is being distributed by ransomware threat actors from previous operations.

CISA and the FBI recently warned that Iranian threat actors APT42 and HomeLand Justice have been consistently improving their offensive cyber capabilities.

Google released a patch for their 5th zero-day vulnerability in 2022. CVE-2022-2856 is a high-severity bad input validation vulnerability impacting Chrome.

Learn More

News | Aug 16, 2022

Avertium Ranks No. 781 on the 2022 Inc. 5000 Annual List of America's Fastest-Growing Private Companies

Today, Inc. revealed that Avertium is #781 on its annual Inc. 5000 list, the most prestigious ranking of the fastest-growing private companies in America.

Learn More

Threat Report | Aug 9, 2022

An In-Depth Look at the APT, Evilnum

Learn More

Threat Report | Jul 27, 2022

Healthcare Ransomware Threats - MedusaLocker & Maui

FBI, CISA, + more recently issued joint warnings for Maui and MedusaLocker ransomware. Both are currently responsible for many cyber attacks in healthcare.

Learn More

Flash Notice | Jul 14, 2022

Flash Notice: [CVE-2022-22047] Microsoft Zero-Day Actively Exploited, Impacting Server & Client Windows Platforms

A zero-day, local privilege escalation vulnerability was found in the latest Widows 11 & Windows Server 2022 releases. It's being tracked as CVE-2022-22047

Learn More

Flash Notice | Jul 13, 2022

Flash Notice: New Ransomware Family, HavanaCrypt, Disguises Itself as Fake Google Update

Researchers at Trend Micro discovered a new ransomware family that’s being delivered as a fake Google software update - HavanaCrypt.

Learn More

Threat Report | Jul 12, 2022

An In-Depth Look at Ransomware Gang, LockBit 3.0

As of 3/2022, the ransomware gang, LockBit, has re-branded itself as LockBit 3.0. LockBit 3.0, also known as LockBit Black, is active and in the wild.

Learn More

News | Jul 11, 2022

Facing Ransomware, Healthcare Systems Can't Use 'Hope as a Strategy'

Chief Healthcare Executive -- Cyberattacks have become an increasingly dangerous threat to hospitals. Healthcare systems must take action.

Learn More

Threat Report | Jul 6, 2022

An In-Depth Look at Chinese APT ToddyCat

ToddyCat is a new APT, has been active since December 2020, and has attacked several high-profile organizations within the government and military sectors.

Learn More

Blog | Jul 6, 2022

Google Chrome Zero-Day Vulnerability Exploit [CVE-2022-2294]

Over the 4th of July weekend, Google released a patch for a high-severity zero-day Chrome vulnerability. Learn everything you need to know in our blog.

Learn More

Threat Report | Jun 28, 2022

How the Tables Have Turned - Russia vs. Ukraine Part Three

Over the past 5 months, things have changed. It appears that Russia and Ukraine are now on equal footing regarding the Russia vs. Ukraine cyber war.

Learn More

Flash Notice | Jun 27, 2022

Flash Notice: [CVE-2022-29499] Critical Zero-Day Vulnerability Found in Mitel VoIP Appliance

A ransomware attack was deployed against an unnamed mark using Mitel’s VoIP appliance as an entry point. CVE-2022-29499 is actively being used in the wild

Learn More

Threat Report | Jun 21, 2022

An In-Depth Look at Chinese APT, Aoqin Dragon

Active since 2013, the APT Aoqin Dragon flew under the radar for ten years before researchers at Sentinel Labs identified their activity.

Learn More

Threat Report | Jun 14, 2022

An In-Depth Look at the Data Extortion Group, Karakurt

This month, CISA issued a warning about a data extortion group called Karakurt. Let's take a detailed look at the group and their tactics.

Although conversation regarding Log4Shell has diminished, the exploit is still an issue for organizations and remains a permanent threat.

Learn More

Ebook | Mar 23, 2022

2022 Ransomware Trends

Learn More

Whitepaper | Mar 23, 2022

United States organizations within the financial sector are currently being attacked by a recently discovered ransomware operation named, Yanluowang.

News | Sep 30, 2021

Avertium’s Paul Caiazzo Named “CISO of the Year” in 2021 CyberSecurity Breakthrough Awards Program

Chief Information Security Officer, Paul Caiazzo, has been named “CISO of the Year” in the fifth annual CyberSecurity Breakthrough Awards program.

Learn More

News | Sep 29, 2021

Avertium and Black Kite Announce Strategic Partnership in New Approach to Attack Surface Monitoring

Watch Now

Whitepaper | Sep 15, 2021

Strengthening Cybersecurity with Consensus: How to Build Positive Board Relationships

For CISOs looking to strengthen their cybersecurity posture, board buy-in is a helpful ally. This free guide details tangible action steps that CISOs can take.

Guide | Sep 15, 2021

8 Steps to Take if You've Been Breached

When it comes to a security breach, fast detection, mitigation and response are vital for reducing impact. This guide gives a formal, methodical approach.

Learn More

Infographic | Sep 15, 2021

5 Ways to Prevent Ransomware [Infographic]

Avertium offers five ways for your security team to prevent ransomware.

9 essential steps to managing third-party vendor risk that every information security professional can adopt for their organization.

Webinar providing tips on how to secure your company network, endpoints and remote workers in a remote working model.

Watch Now

Webinar | Sep 15, 2021

5 Essential Steps to Creating a Relevant Incident Response Plan

Incident response templates are readily available online but how well do they work for your company's specific policies, procedures, and workflows?

Watch Now

Checklist | Sep 15, 2021

The Ultimate Incident Response Plan Checklist

A cybersecurity incident response plan for a data breach takes thoughtful planning. Learn what's needed with this incident response (IR) planning checklist.

Learn More

Ebook | Sep 14, 2021

Leveraging Zero Trust Architecture to Contain & Combat Ransomware

Gain visibility on who's on your network by signing up to download our free eBook discussing how you can contain ransomware utilizing Zero Trust.

Learn More

Threat Report | Sep 14, 2021

TIR-20210913 TEAMTNT – “CHIMAERA” CRYPTOMINING MALWARE CAMPAIGN TARGETS SERVERS

TeamTNT released a new campaign known as "Chimaera" meant to cryptomine malware and is actively targeting several operating systems and applications.

Learn More

Blog | Sep 9, 2021

Lockbit 2.0 Ransomware: An In-Depth Look At Lockfile & LockBit

Emerging in July 2021, LockFile has compromised over 300 servers in an ongoing ransomware campaign. Learn more!

Learn More

Blog | Aug 24, 2021

Threat Actor Profile – “BlackMatter” Ransomware

BlackMatter began making its presence known as a ransomware-as-a-service (RaaS) gang in 2021. Read more for indicators of compromise and our recommendations.

Learn More

Blog | Aug 18, 2021

Email Phishing Campaigns (Beware Of These Scams)

We discuss the similarities between Photo Copyright email phishing campaigns and SharePoint phishing campaigns. Learn more!

Learn More

Blog | Aug 10, 2021

XDR: Tech Stack, Service, Process, or All Three?

What is eXtended Detection Response (XDR)? Is it a process, a tech stack, or a service? How does it differ from MDR and EDR?

Learn More

Blog | Aug 3, 2021

Microsoft Exchange Server Breach is Formally Attributed to China by the U.S

The extensive breach of Microsoft Exchange Server early this year has been formally attributed to China by the United States & several allies.

Learn More

Blog | Aug 3, 2021

President Biden’s Executive Order on Cybersecurity: What it does & What it doesn’t do

The growing need for cybersecurity has brought onto a new executive order. Read more to learn about what this means and where it falls short.

Learn More

Blog | Jul 28, 2021

A Zero Trust Network Architecture (ZTNA) POV with Appgate

As Zero Trust becomes more relevant, Appgate x Avertium leads the way in accelerating the customer's Zero Trust journey.

Learn More

Blog | Jul 22, 2021

July 4th Post Mortem on PrintNightmare and REvil

Learn More

Threat Report | Mar 30, 2021

This article covers online collaboration tools security and explains the associated risks and best practices for protecting your workers.

Learn More

Blog | Apr 6, 2020

Zoom virtual meeting Vulnerabilities

This threat report covers Zoom virtual meeting vulnerabilities with potential for immense concerns, their potential impact and Avertium's recommendations.

Learn More

Blog | Mar 31, 2020

Cybersecurity tips for your remote workers

We've put together a list of cybersecurity tips for users who are working from home for the near to mid-term future as the world responds and takes measures to contain the spread of COVID-19.

Learn More

Blog | Mar 24, 2020

COVID-19 Phishing Scams to Watch For

Covid-19 phishing scams and other social engineering tactics exploiting this confusing time are surfacing. Watch for these to protect your organization.

Learn More

Blog | Mar 23, 2020

Latest Pawn Storm attack methods

An analysis of Pawn Storm aka APT28 aka Fancy Bear. It contains recommendations on how to prevent an attack in 2020.

Learn More

Blog | Mar 16, 2020

Remote Workforce Security: 4 Best Practices

Learn More

Blog | Feb 10, 2020

CDPwn: Five Cisco Vulnerabilities

This threat report is about CDPwn, the collective name for five major Cisco vulnerabilities affecting a multitude of the company's products.

Learn how to use deception against pass-the-hash attacks to subtly guide even experienced attackers away from data and where you want them to go.

Learn More

Blog | Jan 9, 2020

Deception in Cyber Defense in Layman's Terms

This is an introduction to the use of deception as a defensive mechanism in cybersecurity. It includes the use of honey pots in cyber defense.

Learn More

Blog | Jan 8, 2020

Dealing with a Discovered Vulnerability

The active threat landscape means that dealing with a discovered vulnerability may move to the top of your to-do list this year. Learn what to do.

Learn More

Blog | Jan 6, 2020

Enterprise Grade Malware JsOutProx

An overview of the enterprise-grade malware dubbed JsOutProx which targets Windows.

Learn More

Threat Report | Dec 5, 2019

Dexphot Polymorphic Malware

Report on Dexphot polymorphic malware whose campaign is to crytomine but deploys a sophisticated approach that makes detection and deploying countermeasures difficult.

Learn More

Threat Report | Nov 26, 2019

Firefox Vulnerability and Fake Tech support page scammers

A report in the Firefox vulnerability and the fake technical support page scam that attempts to steal credentials with our recommended countermeasures.

Learn More

News & Resources

SUBSCRIBE

THE LATEST TOP MICROSOFT CONTENT

From Endpoints to Identity: Microsoft’s Approach to Holistic Cybersecurity

Microsoft Defender for Endpoint: A Comprehensive Market Overview and Competitive Analysis

Harnessing Copilot for Security: A Strategic Approach to Healthcare Cyber Defense

Flash Notice: WordPress Review Plugin Local File Inclusion

Flash Notice: Azure Information Disclosure Vulnerability

Flash Notice: Azure Automation Privilege Elevation Vulnerability

Flash Notice: Codeastro Bus Ticket Booking System SQL Injection Vulnerability

Flash Notice: Critical Object Injection in FluentBoards

Flash Notice: SAP NetWeaver Visual Composer Remote Code Execution Vulnerability

Flash Notice: GoldenDB DDE Injection Vulnerability

Flash Notice: Microsoft Dynamics Information Disclosure

Demystifying Microsoft Purview: Enhancing Data Security, Compliance, and AI Readiness

Building Trust Over Time: SOC 2 and the Importance of Annual Audits

Avertium Recognized with Microsoft Verified Managed XDR Solution Status

Flash Notice: Ivanti Stack-Based Overflow Leading to RCE

Flash Notice: Kubernetes Ingress NGINX Controller Vulnerability

Flash Notice: CVE-2025-29927 - Next.js Middleware Authorization Bypass

Escalation 8: How to Close a Commonly Exploited Active Directory Certificate Services Elevation of Privilege Vulnerability

Flash Notice: Windows NTFS Remote Code Execution Vulnerability

Flash Notice: Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability

Flash Notice: CVE-2025-23209 - Craft CMS Code Injection Vulnerability Analysis and Mitigation

Flash Notice: CVE-2025-24989 - Microsoft Power Pages Improper Access Control Vulnerability

Flash Notice: CVE-2025-24472 Actively Exploited - Patch and Manage

Flash Notice: Publicly Disclosed Windows Zero-Days

Flash Notice: Actively Exploited Windows Zero-Days

Driving Efficiency With Microsoft Intune

Flash Notice: CVE-2025-21298 Zero-Click Vulnerability - Patch and Monitor

HHS Tightens the Reins: What the New HIPAA Rules Mean for Healthcare

Flash Notice: CVE-2024-21672 Remote Code Execution Vulnerability - Patch and Monitor

Flash Notice: CVE-2024-55591 Actively Exploited - Patch and Manage

Flash Notice: CVE-2024-50623 Actively Exploited - Patch and Scan

Flash Notice: Apache Tomcat and Traffic Control Vulnerability - PATCH NOW!

Flash Notice: Double Clickjacking Exploit Bypasses Protections - STAY VIGILANT

Flash Notice: Windows Zero-Day - No Name, No Patch

2024 Cyber Crime Review

2025 Cybersecurity Forecast: Trends to Watch and How to Prepare

From SIEM to MXDR: Why Midmarket Companies Need More Than Just a SIEM

How New York Hospitals Should Prepare for New Cybersecurity Requirements

Avertium Unveils Fusion Engine 2.0: Advanced Threat Detection and Response Powered by Microsoft

Flash Notice: Quad7 Botnet Exploiting Router Flaws

Flash Notice: Stealer Malware Spread Through HiJacked Facebook Advertisements

Why You are Missing the Mark if You Think XDR is Only About Technology

Avertium Expands Capabilities With Private Offers Within Microsoft's Azure Marketplace

Flash Notice: Hackers Exploit Docker API Servers for Crypto Mining Attackers

Flash Notice: Microsoft Patches Multiple Vulnerabilities, Including Two Under Active Exploitation

Flash Notice: Multiple Vulnerabilities Discovered in DrayTek Routers - PATCH NOW!

Case Study: The Courts

Flash Notice: New Malware Campaign Targeting Healthcare, IT, and Manufacturing

Flash Notice: Critical Vulnerability in SolarWinds Access Rights Manager Discovered - PATCH NOW!

Flash Notice: GeoServer Vulnerability Targeted for Exploitation

From Endpoints to Identity: Microsoft’s Approach to Holistic Cybersecurity

Flash Notice: Android Users Warned About Flaw Under Active Exploitation

Flash Notice: North Korean Hackers Target Job Seekers

Flash Notice: Hacker Groups Target United States Political Entities with Phishing and Malware

Flash Notice: Chrome Security Flaw, CVE-2024-7965, Actively Exploited - PATCH NOW!

Flash Notice: Critical Flaw in Ivanti Virtual Traffic Manager

Flash Notice: New Endpoint Killing Tool Observed

Flash Notice: UPDATE - Palo Alto Vulnerability Exploited in the Wild

Flash Notice: Microsoft Office Spoofing Vulnerability

Flash Notice: Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now

CrowdStrike Outage Illustrates That Effective Cybersecurity is the Sum of its Parts

An In-Depth Look at DarkAngels Ransomware

Flash Notice: Exploitation of VMware ESXi Authentication Bypass Vulnerability

Microsoft Defender for Endpoint: A Comprehensive Market Overview and Competitive Analysis

East Tennessee Businesses Impacted by Global Outage

Flash Notice: UPDATE - Widespread Outages Linked to CrowdStrike Software Update

Flash Notice: Critical Vulnerability in Cisco Smart Software Manager

Botnets to Watch - CatDDoS and Zergeca

How to Safeguard Personal Information After AT&T Reveals Hack

Flash Notice: PATCH NOW - Critical PHP Vulnerability Exploited by Attackers

Flash Notice: Critical Zero-Day Vulnerability Patched by Microsoft

Flash Notice: Critical RADIUS Protocol Vulnerability

Flash Notice: Xctdoor Malware Targeting IIS Servers

New Ransomware Groups to Watch - RA World and DragonForce

Flash Notice: Attackers Attempting to Exploit Critical MOVEit Transfer Vulnerabilities

Flash Notice: High Severity Atlassian Confluence Vulnerability

Flash Notice: Critical Firmware Vulnerability in Intel Powered Computers