Averlon

🚨CVE-2024-50623: What You Need to Know 🚨 A critical vulnerability in Cleo’s Harmony, VLTrader, and LexiCom products is actively being exploited, with multiple organizations already affected. While patching (v5.8.0.24) is crucial, effective protection requires a multi-pronged approach: 1️⃣ Prioritize High-Risk Systems: Use attack chain analysis to identify vulnerable targets. 2️⃣ Remediate: Apply patches in a controlled environment. 3️⃣ Mitigate: Restrict access, monitor for IoCs, and deploy compensating controls if patching is delayed. 4️⃣ Prepare: Update your incident response plan and join ISACs for collaborative defenses. 💡 Proactive action is key. With risks evolving daily, going beyond patching is essential to protect critical systems. Sunil Gottumukkala Vishal Agarwal Rajeev R. Matthias Luft Manish Varma Datla Averlon 🔗 Read more actionable strategies: https://lnkd.in/guHu8XdE

84% of boards view cybersecurity as a business risk, not just an IT issue. (Gartner) Are your board conversations bridging the gap between cybersecurity and business impact? Boards don’t need a status update—they need answers to critical questions: 🛡️ What’s at risk? Which assets or customer data are exposed right now? 📍 What are the active threats? What’s their blast radius—how could attackers exploit our environment? ⚡ What’s being done? How are we mitigating these risks, and how quickly? Traditional metrics like SLA percentages fall short—they present numbers, not a narrative. To lead strategically, start with a story. Stories break down complex challenges, connecting understanding to action. 🎯 Attack chains bring these stories to life by bridging the gap between vulnerabilities and business risk. They provide contextual and actionable insights, transforming technical updates into meaningful boardroom conversations. 🎥 Watch this 1-minute video featuring Sunil Gottumukkala as he explains how one organization reshaped their board discussions using attack chains: https://lnkd.in/gJ-aPm5h How are you transforming cybersecurity into a strategic conversation with your board? Let’s discuss below! Sunil Gottumukkala Scott Brammer Vishal Agarwal Averlon The Cyber Security Council #CyberSecurity #BoardReporting #AttackChains #CloudSecurity #Averlon

🚨 Security Alert: CVE-2024-50623 🚨 Threat actors are actively exploiting this critical vulnerability in Cleo Harmony, VLTrader, and LexiCom. Alarmingly, exploitation includes fully patched systems running 5.8.0.21, making this an even more significant threat. Take these steps now to secure your systems: 1. Understand your attack chain: Identify critical systems at risk to prioritize actions. 2. Move internet-exposed Cleo systems behind a firewall: Do this immediately until a new patch is released. 3. Review access controls: Restrict access to trusted sources and update firewall rules. 4. Check network traffic: Monitor for callbacks to unknown IPs and suspicious activity. 5. Prepare your incident response plan: Be ready to act swiftly if signs of compromise are detected. Special thanks to Huntress for identifying critical indicators of compromise and offering actionable guidance. Learn more from their advisory here: https://lnkd.in/gGCiXms5 Stay tuned for our upcoming blog, where we’ll explore the vulnerability's nature, impact, and what else you can do to stay secure. 👀 Sunil Gottumukkala Vishal Agarwal Matthias Luft Averlon #Cybersecurity #CVE202450623 #CloudSecurity #ThreatIntelligence

2024 is on track to shatter records, with CVEs piling up faster than ever. But here’s the catch: only 0.5% of vulnerabilities make it to the Known Exploited Vulnerabilities (KEV) list. Here’s how top vulnerability management teams are staying ahead of the CVE surge: 🛠️ Not all CVEs are created equal: Many are never exploited, meaning time spent patching them could be better allocated. Tracking exploitation trends helps focus on vulnerabilities that pose immediate danger. ⚖️ Sometimes slower is safer: Patching too quickly without testing can create instability or even new attack vectors. A strategic delay can sometimes reduce operational risks. 🎯 Focus where it counts: Not all assets are equally critical, nor are all vulnerabilities—context-driven prioritization ensures vulnerabilities on high-value targets get attention first. It's not about reducing the numbers—it’s about reclaiming control. 👉 Dive into the full blog here: https://lnkd.in/gXBBfBka What’s your biggest challenge in managing the CVE surge? Let’s discuss it below! Matthias Luft Sunil Gottumukkala Vishal Agarwal Manish Varma Datla Rajeev R. Paul McGowan #CyberSecurity #VulnerabilityManagement #CloudSecurity #KEVs #Averlon

🌟 Welcome to the Averlon team, Dinil Vamanan! 🌟 We’re thrilled to have you on board. Your skills and passion will be instrumental as we continue to innovate and lead in cloud security. We’re looking forward to achieving great things together! Here’s to an incredible journey ahead, Dinil! 🚀 Vishal Agarwal Sunil Gottumukkala #WelcomeToAverlon #CloudSecurity #Teamwork

Thanksgiving is a time to reflect and appreciate. I’m especially thankful for the incredible people I’ve had the chance to work with this year. Wishing everyone a joyful day filled with warmth, gratitude, and good company. Happy Thanksgiving!

This Thanksgiving, we’re grateful for the fruitful partnerships and bountiful support from our clients, partners, investors, and the Averlon team. Wishing everyone a harvest of happiness and a season filled with warmth. Sunil Gottumukkala Vishal Agarwal Averlon

From Chance to Change: Sunil’s Journey Sometimes, the most remarkable journeys begin unexpectedly. Sunil Gottumukkala, CEO and Co-Founder of Averlon, never imagined that a serendipitous assignment to Microsoft’s security team would launch him into a leadership role that shaped the cybersecurity landscape. From overseeing Microsoft’s operating system security to driving innovation at Averlon, Sunil’s story is proof that embracing the unexpected can unlock immense potential. 🚀 Watch this inspiring clip to learn more: https://lnkd.in/gJgnRazS 🎥 Dive deeper into his full conversation with The Cyber Security Council: https://lnkd.in/g7HYm9ZS What’s one unexpected opportunity that changed your path? Share your thoughts below. The Cyber Security Council Scott Brammer Manish Varma Datla Vishal Agarwal Rajeev R. #LeadershipJourney #CyberSecurityInnovation #Averlon #GrowthMindset #Cybersecurity

How can defenders truly stay ahead in an AI-driven cyber landscape? With 55% of cyber leaders acknowledging that attackers are gaining a significant edge by using Generative AI to scale operations—from sophisticated phishing attacks to exploiting cloud misconfigurations— defenders face mounting pressure to adapt. AI has the potential to shift the balance, enabling defenders to identify risks faster and focus on what truly matters to protect their environments. When leveraged effectively, Generative AI can provide the asymmetric advantage needed to stay ahead. Excited to see Averlon CEO and Co-Founder, Sunil Gottumukkala, share his vision on how defenders can turn AI into their strongest ally in this insightful conversation hosted by The Cyber Security Council, with interviewer Scott Brammer. 👉 Watch the full interview here: https://lnkd.in/g7HYm9ZS How is your team leveraging AI to uncover and prioritize threats? Paul McGowan Vishal Agarwal #CyberSecurityInnovation #AttackChains #AIforDefenders #CloudSecurity #Averlon

A warm welcome to our newest team member, Sirisha Pusapati! We’re so excited to have you on board and can’t wait to see the incredible contributions you’ll make to Averlon. Here’s to a great journey ahead!