Cyber Incident? Get Help

Policyholder Education

Security Labs

Cyber Threat Index 2024: Scans, Honeypots, and CVEs 

The Coalition Cyber Threat Index uses our data derived from internet scans, honeypots, and vulnerabilities to provide in-depth cyber insights for 2024.
Security Labs

FortiOS SSL VPN Vulnerability Actively Exploited in the Wild

Fortinet disclosed a critical remote code execution (RCE) vulnerability impacting FortiOS SSL VPN. Learn what actions you need to take.
Security Labs

SonicWall Firewall Devices Vulnerable to DoS Attacks

SonicWall NGFW series 6 and 7 devices are vulnerable to two critical CVEs that can lead to denial-of-service attacks. Learn what steps businesses should take.
Security Labs

Ivanti VPN Zero-Day Avoided with Device Isolation

Two zero-day vulnerabilities are impacting Ivanti VPN devices. Learn how proactive outreach to Coalition policyholders is helping mitigate the threat.
Security Labs

Guidance for Hosted End-Of-Life Microsoft IIS 8.5

Microsoft Internet Information Services (IIS) 8.5 went end-of-life (EOL) on October 10, 2023. Learn how to handle hosted IIS 8.5.
Security Labs

Everything You Always Wanted to Know About Ransomware Negotiation (But Were Afraid to Ask)

Have you ever wondered how ransomware negotiations and payments happen? An Incident Responder breaks down everything from crypto to AI and more.
Security Labs

How to Mitigate the Risks of Internet-Exposed RDP

Learn the risks of internet-exposed Remote desktop protocol (RDP), steps to provide secure remote access, and what Coalition scan data shows about the risk.
Security Labs

SysAid Zero-Day Exploited to Deploy Ransomware

A vulnerability targeting SysAid On-Prem allows threat actors to deploy ransomware. Learn how Coalition Security Labs is responding.
Cyber Insurance

How Our Security Support Center Helps Clients Resolve Alerts

Learn how our Security Support Center helps policyholders understand and resolve alerts and critical security findings to avoid cyber insurance claims.
Security Labs

Security Alert: Phishing Link Leads to Ransomware Download

Attackers can use phishing to steal money and information or deploy ransomware. Learn about a recent phishing campaign and the dangers it poses.
Security Labs

Security Alert: MFA Spamming Attacks Increase Cyber Claims

MFA fatigue, overwhelming users with constant authentication requests, can lead to cyber insurance claims. Learn what mitigations are available.
Security Labs

Security Alert: MOVEit Zero-day Exploited for Data Theft

A zero-day vulnerability targeting MOVEit allows threat actors to mass-download files. Learn about how Coalition Security Labs is responding.
Security Labs

Security Alert: What to Know About Threat Actor Volt Typhoon

Microsoft and CISA warned that the Chinese APT Volt Typhoon is targeting critical infrastructure by living off the land. Learn the risks of this technique.
Security Labs

Security Incident Retrospective: The 3CX Supply Chain Attack

Coalition dives deeper into what security leaders need to know about the supply chain attack that impacted 3CX.
Broker Education

Help your clients avoid holiday cyber scams

Coalition’s Incident Response Lead, Leeann Nicolo reviews common holiday cyber scams and how to avoid falling victim to them.