CISO Update: What We Know About the Log4j Vulnerability
On December 10, 2021, Apache published details of the CVE-2021-44228 vulnerability in the Log4j utility. Here's what we know so far, and our suggestions.
![[LOGO] Corvus by Travelers](https://info.corvusinsurance.com/hubfs/Corvus%20by%20Travelers%20Logos/CORVUS-Travelers-SML-POS-RGB.svg "[LOGO] Corvus by Travelers")
Cybersecurity 101 (5)
Tech Companies: Beyond Cyber Risk, the Cost of Downstream Impact
After a breach, tech companies face potential legal action from customers. How do we determine the risk factors for litigation, and what are our findings?
A Guide to HTTP Security Headers
HTTP Security Headers establish rules for browsers connecting to a web page. Learn about best practices for more secure browsing in this short cyber blog.
Cyber Risk, IT Tools & Ransomware Trends: Pre-Pandemic to 2021
In the wake of remote work and the rise of ransomware, how did the use of security tools, management, and preparedness vary across sectors?
The 3 Keys to a Successful Cyber Incident Response Strategy
An effective cyber incident response strategy requires a well-executed plan before and after an incident. Here are the 3 key steps to success.
Graph Your Dependencies: Facebook Outage Proves 'Simple' Doesn’t Work
A faulty configuration change impacted 3.5 billion people. What can we learn about the systemic risks that occur due to reliance on third party providers?
The ABCs of 3-2-1 Backup Plans
We know ransomware is a major concern, and threat actors target backups to encrypt or delete them. Now what is a 3-2-1 backup plan, and how does it help?
Prioritize Patching with Risk-Based Vulnerability Management
What is a Risk-Based Vulnerability Management Approach, and how can it help your organization? Our CISO Jason Rebholz covers the topic in this blog.
5 High-Impact Cybersecurity Practices for Tech Companies
The threat of ransomware is persisting, and tech companies have unique risks. Here are five high-impact security practices to protect your organization.
Cyber Attack Analysis: The Latest on Kaseya and PrintNightmare
After a particularly busy week in the world of threat response, Corvus continues to monitor the Kaseya VSA situation and the PrintNightmare vulnerability.