News & Resources

Dive into our resource hub and explore top cybersecurity
topics along with what we do and what we can do for you.

Learn More

Threat Report | Aug 10, 2023

Flash Notice: Two Microsoft Zero-Day Vulnerabilities Exploited by Attackers

This week, Microsoft patched two zero-day vulnerabilities (CVE-2023-36884 and CVE-2023-38180).

A vulnerability (CVE-2023-21932) was found in Oracle Opera – a property management system that is widely used in large resort and hotel chains.

Learn More

Threat Report | May 2, 2023

Lazarus and the 3CX Double Software Supply Chain Attack

Learn More

Threat Report | Mar 27, 2023

Flash Notice: Emergency Security Update Released for Windows 10 and 11 Snipping Tool

Learn More

Blog | Mar 2, 2023

Securing the Customer Channel: 2 Critical Things for Retailers to Know

Explore the challenges retailers face and take a look at 2 critical factors retailers must know to protect the customer channel and build trust with them.

A critical zero-day vulnerability (CVE-2022-42475) was found in multiple versions of Fortinet’s FortiOS SSL-VPN.

Learn More

Threat Report | Dec 13, 2022

Everything You Need to Know About Royal Ransomware

After emerging in January 2022, Royal ransomware is a ransomware strain that is being distributed by ransomware threat actors from previous operations.

CISA and the FBI recently warned that Iranian threat actors APT42 and HomeLand Justice have been consistently improving their offensive cyber capabilities.

Google released a patch for their 5th zero-day vulnerability in 2022. CVE-2022-2856 is a high-severity bad input validation vulnerability impacting Chrome.

Learn More

News | Aug 16, 2022

Avertium Ranks No. 781 on the 2022 Inc. 5000 Annual List of America's Fastest-Growing Private Companies

Today, Inc. revealed that Avertium is #781 on its annual Inc. 5000 list, the most prestigious ranking of the fastest-growing private companies in America.

Learn More

Threat Report | Aug 9, 2022

An In-Depth Look at the APT, Evilnum

Learn More

Threat Report | Jul 27, 2022

Healthcare Ransomware Threats - MedusaLocker & Maui

FBI, CISA, + more recently issued joint warnings for Maui and MedusaLocker ransomware. Both are currently responsible for many cyber attacks in healthcare.

Learn More

Blog | Jul 14, 2022

Flash Notice: [CVE-2022-22047] Microsoft Zero-Day Actively Exploited, Impacting Server & Client Windows Platforms

A zero-day, local privilege escalation vulnerability was found in the latest Widows 11 & Windows Server 2022 releases. It's being tracked as CVE-2022-22047

Learn More

Blog | Jul 13, 2022

Flash Notice: New Ransomware Family, HavanaCrypt, Disguises Itself as Fake Google Update

Researchers at Trend Micro discovered a new ransomware family that’s being delivered as a fake Google software update - HavanaCrypt.

Learn More

Threat Report | Jul 12, 2022

An In-Depth Look at Ransomware Gang, LockBit 3.0

As of 3/2022, the ransomware gang, LockBit, has re-branded itself as LockBit 3.0. LockBit 3.0, also known as LockBit Black, is active and in the wild.

Learn More

News | Jul 11, 2022

Facing Ransomware, Healthcare Systems Can't Use 'Hope as a Strategy'

Chief Healthcare Executive -- Cyberattacks have become an increasingly dangerous threat to hospitals. Healthcare systems must take action.

Learn More

Threat Report | Jul 6, 2022

An In-Depth Look at Chinese APT ToddyCat

ToddyCat is a new APT, has been active since December 2020, and has attacked several high-profile organizations within the government and military sectors.

Learn More

Blog | Jul 6, 2022

Google Chrome Zero-Day Vulnerability Exploit [CVE-2022-2294]

Over the 4th of July weekend, Google released a patch for a high-severity zero-day Chrome vulnerability. Learn everything you need to know in our blog.

Learn More

Threat Report | Jun 28, 2022

How the Tables Have Turned - Russia vs. Ukraine Part Three

Over the past 5 months, things have changed. It appears that Russia and Ukraine are now on equal footing regarding the Russia vs. Ukraine cyber war.

Learn More

Blog | Jun 27, 2022

Flash Notice: [CVE-2022-29499] Critical Zero-Day Vulnerability Found in Mitel VoIP Appliance

A ransomware attack was deployed against an unnamed mark using Mitel’s VoIP appliance as an entry point. CVE-2022-29499 is actively being used in the wild

Learn More

Threat Report | Jun 21, 2022

An In-Depth Look at Chinese APT, Aoqin Dragon

Active since 2013, the APT Aoqin Dragon flew under the radar for ten years before researchers at Sentinel Labs identified their activity.

Learn More

Threat Report | Jun 14, 2022

An In-Depth Look at the Data Extortion Group, Karakurt

This month, CISA issued a warning about a data extortion group called Karakurt. Let's take a detailed look at the group and their tactics.

During Patch Tuesday, Microsoft fixed a zero-day Windows vulnerability. However, the patch was bypassed and led to a new privilege elevation vulnerability named ‘InstallerFileTakeOver’.

Learn More

Blog | Nov 19, 2021

Flash Notice - APT Group Exploits FatPipe Zero-Day Vulnerability for 6 Months

The FBI issued a notice yesterday warning that APT has been exploiting a zero-day vulnerability in FatPipe’s router clustering and load balancer products.

Learn More

Blog | Nov 19, 2021

Flash Notice - Emotet Botnet is Back with New Spam Campaigns

Last seen in January 2021, after law enforcement took them down, Emotet is back & is using TrickBot to install Emotet malware on infected Windows systems.

Learn More

Blog | Nov 17, 2021

Flash Notice - BotenaGo Botnet Could Affect Millions of Routers & IoT Devices

A new botnet named BotenaGo has been seen in the wild targeting a number of IoT devices & routers. BotenaGo can exploit up to 30 different vulnerabilities.

Learn More

Threat Report | Nov 16, 2021

HIVE Ransomware: Everything You Need To Know (Attacks & Analysis)

Hive has a variety of techniques and tactics that are challenging for cyber security professionals to defend and mitigate. Learn more.

Learn More

Ebook | Nov 15, 2021

Creating a Business-First Incident Response Plan

Breaches are no longer a simple ransom to be paid. The ripple effect that follows an attack can leave a long-lasting impact if your company is not prepared.

Learn More

Threat Report | Nov 11, 2021

TIR-20211004 An In-Depth Look at Ransomware Gang, Conti

News | Sep 30, 2021

Avertium’s Paul Caiazzo Named “CISO of the Year” in 2021 CyberSecurity Breakthrough Awards Program

Chief Information Security Officer, Paul Caiazzo, has been named “CISO of the Year” in the fifth annual CyberSecurity Breakthrough Awards program.

Learn More

News | Sep 29, 2021

Avertium and Black Kite Announce Strategic Partnership in New Approach to Attack Surface Monitoring

Watch Now

Whitepaper | Sep 15, 2021

Strengthening Cybersecurity with Consensus: How to Build Positive Board Relationships

For CISOs looking to strengthen their cybersecurity posture, board buy-in is a helpful ally. This free guide details tangible action steps that CISOs can take.

Guide | Sep 15, 2021

8 Steps to Take if You've Been Breached

When it comes to a security breach, fast detection, mitigation and response are vital for reducing impact. This guide gives a formal, methodical approach.

Learn More

Infographic | Sep 15, 2021

5 Ways to Prevent Ransomware [Infographic]

Avertium offers five ways for your security team to prevent ransomware.

Learn More

Guide | Sep 15, 2021

6 Steps to Implementing a Zero Trust Network

This guide offers the 6 steps to implementing a zero trust network (ZTN) cybersecurity strategy to protect against cyber threat and improve your program.

Learn More

Whitepaper | Sep 15, 2021

Security Operations Maturity Model (SOMM)

Avertium and LogRhythm explain SIEM pricing models and educate SIEM buyers on how to mitigate security and financial risks associated with business growth.

Ebook | Sep 15, 2021

7 Metrics to Measure the Effectiveness of Your Security Operations

Avertium and LogRhythm explain metrics to measure the effectiveness of your security operations (SecOps) to detect and respond to cybersecurity events.

Learn More

Whitepaper | Sep 15, 2021

Budgeting for a Modern SIEM

Avertium and LogRhythm explain SIEM pricing models and educate SIEM buyers on how to mitigate security and financial risks associated with business growth.

Whitepaper | Sep 15, 2021

HIPAA Privacy During a COVID-19 Outbreak Re-Occurrence

Learn how to stay HIPAA compliant with the Privacy Rule and OCR Notifications of Enforcement Discretion during a COVID-19 pandemic outbreak re-occurrence.

Webinar | Sep 15, 2021

HIPAA Compliance in a Pandemic

Join the CEO of Avertium, Jeff Schmidt, for a discussion on the implications the pandemic has and will continue to have on HIPAA compliance.

Watch Now

Ebook | Sep 15, 2021

9 Steps to Manage Third-Party Information Security Risk

9 essential steps to managing third-party vendor risk that every information security professional can adopt for their organization.

Learn why XDR is more than technology in order to achieve a proactive and more mature security posture.

Webinar | Sep 15, 2021

Navigating Cybersecurity & Managing Data Breach Risks

Webinar providing tips on how to secure your company network, endpoints and remote workers in a remote working model.

Watch Now

Webinar | Sep 15, 2021

5 Essential Steps to Creating a Relevant Incident Response Plan

Incident response templates are readily available online but how well do they work for your company's specific policies, procedures, and workflows?

Watch Now

Checklist | Sep 15, 2021

The Ultimate Incident Response Plan Checklist

A cybersecurity incident response plan for a data breach takes thoughtful planning. Learn what's needed with this incident response (IR) planning checklist.

Learn More

Ebook | Sep 14, 2021

Leveraging Zero Trust Architecture to Contain & Combat Ransomware

Gain visibility on who's on your network by signing up to download our free eBook discussing how you can contain ransomware utilizing Zero Trust.

Learn More

Threat Report | Sep 14, 2021

TIR-20210913 TEAMTNT – “CHIMAERA” CRYPTOMINING MALWARE CAMPAIGN TARGETS SERVERS

TeamTNT released a new campaign known as "Chimaera" meant to cryptomine malware and is actively targeting several operating systems and applications.

Learn More

Blog | Sep 9, 2021

Lockbit 2.0 Ransomware: An In-Depth Look At Lockfile & LockBit

Emerging in July 2021, LockFile has compromised over 300 servers in an ongoing ransomware campaign. Learn more!

Learn More

Blog | Sep 9, 2021

Flash Notice – Microsoft Issues Warning for Remote Code Execution Vulnerability

A statement has been released by Microsoft warning users of a remote code execution vulnerability in Office 365 and Office 2019 on Windows 10.

Learn More

Blog | Aug 24, 2021

Threat Actor Profile – “BlackMatter” Ransomware

BlackMatter began making its presence known as a ransomware-as-a-service (RaaS) gang in 2021. Read more for indicators of compromise and our recommendations.

Learn More

Blog | Aug 18, 2021

Email Phishing Campaigns (Beware Of These Scams)

We discuss the similarities between Photo Copyright email phishing campaigns and SharePoint phishing campaigns. Learn more!

Learn More

Blog | Aug 13, 2021

Flash Notice – The PrintNightmare Continues

These disappointing developments coincide with reports of ransomware groups exploiting the PrintNightmare family of vulnerabilities in the wild.

Learn More

Blog | Aug 10, 2021

XDR: Tech Stack, Service, Process, or All Three?

What is eXtended Detection Response (XDR)? Is it a process, a tech stack, or a service? How does it differ from MDR and EDR?

Learn More

Blog | Aug 3, 2021

Microsoft Exchange Server Breach is Formally Attributed to China by the U.S

The extensive breach of Microsoft Exchange Server early this year has been formally attributed to China by the United States & several allies.

Learn More

Blog | Aug 3, 2021

President Biden’s Executive Order on Cybersecurity: What it does & What it doesn’t do

The growing need for cybersecurity has brought onto a new executive order. Read more to learn about what this means and where it falls short.

Learn More

Blog | Jul 28, 2021

A Zero Trust Network Architecture (ZTNA) POV with Appgate

As Zero Trust becomes more relevant, Appgate x Avertium leads the way in accelerating the customer's Zero Trust journey.

Learn More

Blog | Jul 22, 2021

July 4th Post Mortem on PrintNightmare and REvil

The latest noteworthy exploit leveraged a vulnerability in Microsoft’s Print Spooler Service to target IT Solutions company, Kaseya.

Learn More

Blog | Jul 16, 2021

Flash Notice: SonicWall Warns of Imminent Ransomware Attack Against EOL Products

Learn More

Threat Report | Mar 30, 2021

A report in the Firefox vulnerability and the fake technical support page scam that attempts to steal credentials with our recommended countermeasures.

Learn More

Latest

News & Resources

SUBSCRIBE

Flash Notice: Critical Vulnerability Found in Cisco's IOS and IOS XE Software

The Decline in Ransomware in 2023 + The Threats Ahead

Flash Notice: Zero-Day Vulnerability in Libwebp - Exploited in the Wild

MGM/Caesars Post-Mortem and Attribution

Why Partnering with an MSSP is Crucial for Microsoft Intune Success

Flash Notice: Apple Patches Three Critical Zero-Day Vulnerabilities

Flash Notice: Thousands of Juniper Firewalls Vulnerable to RCE Flaw

Flash Notice: Patch Now - Trend Micro Zero-Day Exploited by Attackers, Impacts Endpoint Security Products

Ransomware Groups Pivoting Away from Encryption

Flash Notice: Microsoft Patches Two Zero-Day Vulnerabilities

Flash Notice: Google Chrome Zero-Day Exploited by Attackers

Monti Ransomware

Flash Notice: Critical Vulnerability in Apache RocketMQ Exploited in the Wild

Flash Notice: PATCH NOW - Two Zero-Day Vulnerabilities Impact Apple Products

New Ransomware Strains - CryptNet, Mallox, and Xollam

Flash Notice: Two Vulnerabilities Found in Aria Operations for Networks

What Does the Microsoft e5 License Mean for Your Cybersecurity?

How the SEC's Proposed Security Rules Could Impact Businesses

Understanding Ransomware-as-a-Service (RaaS) - A Guide

How Ransomware Has Caused Patient Deaths and Taken a Toll on Emergency Rooms

Flash Notice: Patch Now - High Severity Vulnerability Found in OpenNMS

Potential Pitfalls for Public Companies Due to SEC's New Cybersecurity Rules

AI and Cybersecurity: Is There a Balance Between AI and Privacy?

Flash Notice: Two Microsoft Zero-Day Vulnerabilities Exploited by Attackers

Unraveling Scattered Spider: A Stealthy and Persistent Threat Actor Targeting Telecom Networks

Flash Notice: Critical Vulnerability Found in Ivanti's MobileIron Core

Flash Notice: UPDATE - Ivanti Endpoint Manager Mobile Zero-Day Exploited by Attackers

The Double Extortion Group, 8Base

Flash Notice: OpenSSH Flaw Could be Exploited by Attackers

The Move from Reactive GRC to Proactive GRCaaS

Evolution of Russian APT29 – New Attacks and Techniques Uncovered

Flash Notice: Critical Vulnerability in Citrix NetScaler ADC and NetScaler Gateway

An Update on the Pro-Russia Threat Actor, Killnet

Flash Notice: RCE Vulnerability Found in Open-Source PDF Library Ghostscript

Microsoft Azure Marketplace New Offers - June 29, 2023

Flash Notice: Microsoft Zero-Day Exploited by Russian Threat Actor

Threat Actor Profile - Cadet Blizzard

Flash Notice: Patch NOW - Three New MOVEit Transfer Vulnerabilities

Flash Notice: StackRot, a New Linux Kernel Vulnerability

MOVEit Postmortem

How Ransomware Has Caused Patient Deaths in Healthcare

Explore Positive Applications and Potential Risks of AI in Cybersecurity

Flash Notice: Critical VMware Vulnerability Exploited in the Wild

Flash Notice: Critical Vulnerabilities Impact ASUS Routers

Analyzing Embedded Files in Malicious OneNote Documents

Becoming an MSSP is Hard. Partnering With One Could be a Better Answer

MSSPs on Why MDR Isn't Always Enough

Flash Notice: Microsoft Patches High-Severity and Critical Vulnerabilities

Flash Notice: UPDATE - Critical Fortinet Heap-Based Overflow RCE Vulnerability Patched

Insider Threats in Healthcare

Flash Notice: Google Patches Chrome Type Confusion Zero-Day Exploited by Attackers

Volt Typhoon: Targeted Attacks on U.S. Critical Infrastructure

Flash Notice: SECOND UPDATE - Critical MOVEit File Transfer Zero-Day Vulnerability Exploited by Attackers

An In-Depth Look at Cuba Ransomware

Flash Notice: UPDATE - Barracuda Zero-Day Vulnerability Exploited in the Wild - Customers Urged to Patch ESG Appliances

The Clock is Ticking for Healthcare Organizations to Become PCI 4.0 Compliant

Flash Notice: Vulnerabilities Found in Mitsubishi Electric MELSEC Series Products

The Impact of AI on the Cybersecurity Landscape

The Money Message Group - A New Ransomware Threat

A Deeper Look into the PaperCut Vulnerabilities

Flash Notice: Secure Boot Zero-Day Exploited by BlackLotus UEFI Malware

Ransomware - Akira and Rapture

Flash Notice: Oracle Opera Vulnerability Impacts Hotel Chains

Lazarus and the 3CX Double Software Supply Chain Attack

SEC’s Role in the Shift Towards Greater Transparency in Cybersecurity

Flash Notice: PaperCut - Patch Now, Critical Printer Software Vulnerabilities Exploited in the Wild

Kelly Bissell Joins Avertium as Board Advisor

Can Someone With No Programming Experience Write Ransomware Using ChatGPT?

Avertium Named Winner of the Coveted Global InfoSec Awards During RSA Conference 2023

Am I ready for a PCI ROC?

An Avertium Case Study - LockBit

Flash Notice: Actively Exploited Zero-Day Vulnerability in Google Chrome

Flash Notice: Critical Vulnerability Found in Windows Queuing Middleware Service

Flash Notice: Windows Zero-Day Actively Exploited by Ransomware Group

APT Winter Vivern Resurfaces in 2023

Flash Notice: Two Apple Zero Days Exploited in the Wild

An In-Depth Look at Mirai & HinataBot