Security Labs

CrowdStrike Software Update Triggers Global Outage

A software update from cybersecurity vendor CrowdStrike prompted a global computer outage impacting Microsoft Windows operating systems.

Tiago HenriquesJuly 19, 2024

Learn more

Security Labs

Remove Polyfill.io to Prevent Malicious Attacks

Researchers published new information about the open-source code Polyfill leading to malicious attacks. Learn more about prevention.

Scott WalshJune 28, 2024

Learn more

Security Labs

SEO Poisoning Attacks Demand More Scrutiny from Search Engine Users

Threat actors are capitalizing on the trust we put in search engines by hiding malicious websites in plain sight using a tactic known as SEO poisoning.

Alexander AmmonsJune 20, 2024

Learn more

Security Labs

Threat Actor Claims 100% Success With SIM-Swapping Extortion

SIM-swapping extortion attacks are on the rise due to self-service password resets, which help threat actors bypass interaction with their victims.

Shelley MaJune 17, 2024

Learn more

Security Labs

Not All Endpoint Security Solutions Are Created Equal

As more businesses adopt endpoint security solutions, a clear disconnect has emerged between how they’re marketed and how they truly function.

Jason VitaleJune 10, 2024

Learn more

Security Labs

XZ Near Miss Sheds Light on Vulnerability, Patching Issues

The recent XZ Utils backdoor uncovered the potential risks associated with vulnerabilities in open-source systems.

Scott WalshJune 04, 2024

Learn more

Security Labs

Palo Alto Networks: Patch Available for PAN-OS Zero-day

A patch is now available for a command injection zero-day vulnerability impacting Palo Alto Networks PAN-OS. Learn what actions you need to take.

Simon BellApril 15, 2024

Learn more

Security Labs

LockBit Ransomware Used in Exploitation of ConnectWise ScreenConnect

Coalition Incident Response has discovered a link between the LockBit ransomware gang and the ConnectWise ScreenConnect vulnerabilities.

Leeann NicoloMarch 06, 2024

Learn more

Security Labs

MFA Bypass Attacks: Weak MFA Implementation Welcomes Intrusion

Threat actors are increasingly targeting multi-factor authentication (MFA). Learn the most effective types of MFA and how to avoid MFA bypass attacks.

Joe ToomeyMarch 01, 2024

Learn more

Security Labs

Cyber Threat Index 2024: Scans, Honeypots, and CVEs

The Coalition Cyber Threat Index uses our data derived from internet scans, honeypots, and vulnerabilities to provide in-depth cyber insights for 2024.

Tiago HenriquesFebruary 21, 2024

Learn more

Security Labs

FortiOS SSL VPN Vulnerability Actively Exploited in the Wild

Fortinet disclosed a critical remote code execution (RCE) vulnerability impacting FortiOS SSL VPN. Learn what actions you need to take.

Ryan GregoryFebruary 12, 2024

Learn more

Security Labs

SonicWall Firewall Devices Vulnerable to DoS Attacks

SonicWall NGFW series 6 and 7 devices are vulnerable to two critical CVEs that can lead to denial-of-service attacks. Learn what steps businesses should take.

Simon BellJanuary 29, 2024

Learn more

Security Labs

Ivanti VPN Zero-Day Avoided with Device Isolation

Two zero-day vulnerabilities are impacting Ivanti VPN devices. Learn how proactive outreach to Coalition policyholders is helping mitigate the threat.

Ryan GregoryJanuary 22, 2024

Learn more

Security Labs

QR Codes Increasingly Used in Phishing Attacks

Threat actors are using QR codes in phishing attacks to gain access to business networks. Learn the risks and how to evaluate a QR code for legitimacy.

Jason VitaleJanuary 11, 2024

Learn more

Security Labs

Guidance for Hosted End-Of-Life Microsoft IIS 8.5

Microsoft Internet Information Services (IIS) 8.5 went end-of-life (EOL) on October 10, 2023. Learn how to handle hosted IIS 8.5.

Joe ToomeyDecember 19, 2023

Learn more

Coalition’s products are offered with the financial security of Allianz Global Corporate & Specialty SE (A.M. Best A+ rating) and Lloyd’s of London (A.M. Best A rating).

The descriptions contained in this communication are for preliminary informational purposes only. Coalition is a trading name of Coalition Risk Solutions Ltd. which is an appointed representative of Davies MGA Services Limited, a company authorised and regulated by the Financial Conduct Authority (FCA), registration number 597301, to carry on insurance distribution activities. You may check this on the FCA register by visiting the FCA website www.fca.org.uk. Coalition Risk Solutions Ltd. is registered in England and Wales: company number 13036309. Registered office: 34-36 Lime Street, London, United Kingdom, EC3M 7AT. Copyright ©2023. All rights reserved. Coalition and the Coalition logo are trademarks of Coalition, Inc.

Cyber Incident? Get Help

Security Labs

CrowdStrike Software Update Triggers Global Outage

A software update from cybersecurity vendor CrowdStrike prompted a global computer outage impacting Microsoft Windows operating systems.

Remove Polyfill.io to Prevent Malicious Attacks

Researchers published new information about the open-source code Polyfill leading to malicious attacks. Learn more about prevention.

SEO Poisoning Attacks Demand More Scrutiny from Search Engine Users

Threat actors are capitalizing on the trust we put in search engines by hiding malicious websites in plain sight using a tactic known as SEO poisoning.

Threat Actor Claims 100% Success With SIM-Swapping Extortion

SIM-swapping extortion attacks are on the rise due to self-service password resets, which help threat actors bypass interaction with their victims.

Not All Endpoint Security Solutions Are Created Equal

As more businesses adopt endpoint security solutions, a clear disconnect has emerged between how they’re marketed and how they truly function.

XZ Near Miss Sheds Light on Vulnerability, Patching Issues

The recent XZ Utils backdoor uncovered the potential risks associated with vulnerabilities in open-source systems.

Palo Alto Networks: Patch Available for PAN-OS Zero-day

A patch is now available for a command injection zero-day vulnerability impacting Palo Alto Networks PAN-OS. Learn what actions you need to take.

LockBit Ransomware Used in Exploitation of ConnectWise ScreenConnect

Coalition Incident Response has discovered a link between the LockBit ransomware gang and the ConnectWise ScreenConnect vulnerabilities.

MFA Bypass Attacks: Weak MFA Implementation Welcomes Intrusion

Threat actors are increasingly targeting multi-factor authentication (MFA). Learn the most effective types of MFA and how to avoid MFA bypass attacks.

Cyber Threat Index 2024: Scans, Honeypots, and CVEs

The Coalition Cyber Threat Index uses our data derived from internet scans, honeypots, and vulnerabilities to provide in-depth cyber insights for 2024.

FortiOS SSL VPN Vulnerability Actively Exploited in the Wild

Fortinet disclosed a critical remote code execution (RCE) vulnerability impacting FortiOS SSL VPN. Learn what actions you need to take.

SonicWall Firewall Devices Vulnerable to DoS Attacks

SonicWall NGFW series 6 and 7 devices are vulnerable to two critical CVEs that can lead to denial-of-service attacks. Learn what steps businesses should take.

Ivanti VPN Zero-Day Avoided with Device Isolation

Two zero-day vulnerabilities are impacting Ivanti VPN devices. Learn how proactive outreach to Coalition policyholders is helping mitigate the threat.

QR Codes Increasingly Used in Phishing Attacks

Threat actors are using QR codes in phishing attacks to gain access to business networks. Learn the risks and how to evaluate a QR code for legitimacy.

Guidance for Hosted End-Of-Life Microsoft IIS 8.5

Microsoft Internet Information Services (IIS) 8.5 went end-of-life (EOL) on October 10, 2023. Learn how to handle hosted IIS 8.5.

Coalition’s products are offered with the financial security of Allianz Global Corporate & Specialty SE (A.M. Best A+ rating) and Lloyd’s of London (A.M. Best A rating).

© 2024 Coalition, Inc.