Corvus Alerts - Explained
      Back to home
      1. Knowledge Nest
      2. For Policyholders
      3. Corvus Alerts - Explained

      What are Corvus Cybersecurity Alerts?

      Learn how our cybersecurity alerts work and what to expect if you receive one.

      Powered by the Corvus Scan, our alerts let you know about severe cybersecurity issues -- but only those that apply to your specific IT infrastructure. This helps separate signals from noise. We send alerts whenever we identify a cybersecurity issue during the policy period.

      Note that these alerts will not impact the premium or coverage of your current policy. They are meant to help you proactively identify and fix security issues and minimize your risk of experiencing a cyber incident. 

      Below is an example of the kind of alert you will receive by email when we identify an issue within your systems. This screen shot is a sample only - details may change. 

      Screen Shot 2020-09-30 at 5.28.04 PM

      If your insurance broker has invited you to the Corvus Policyholder Resource Dashboard, you will receive this alerts directly. Your broker will be CC'd. If you do not yet have access to the Policyholder Resource Dashboard, your broker will forward the alerts on to you. 

      RDP

      Our alerting criteria includes open/unsecured ports with remote desktop protocol (RDP). This is the most critical and most frequently exploited security gap we find today. The majority (roughly two thirds) of ransomware attacks now start with an exploit of an RDP port, so this is the alert you're mostly likely to encounter. Read more about RDP on the Corvus blog. 

      Additional Alerting Capabilities

      Our team is always developing new technology to better identify key cyber vulnerabilities in our clients' cyberinfrastructure, including those that have already been implemented. Learn about some of the key vulnerabilities you may see alert notifications for:

      BlueKeep Vulnerability

      SMB Vulnerability 

      Telnet Vulnerability

      FAQ: 

      Who is the invitation email going to come from?


      The email will come from services@corvusinsurance.com. Please ask your IT department to add this address to your corporate whitelist/approved sender list.

      What should I do after I receive an alert? 


      Each alert email include next steps that walk you through recommended actions to take based on the type of alert you received. Once you have investigated the issue identified, we request that you let Corvus know that the issue was mitigated, fixed, or investigated by emailing services@corvusinsurance.com. 

      Can I view my alerts in my Corvus account? 

      Yes! You can click through your alerts email to view all of your security alerts and recommendations in your Policyholder Resource Dashboard. 

      How do I get access to my Corvus account? 

      If you don't yet have a login to the Corvus platform, you should reach out to your broker to request access. They will be able to send you an invitation to claim your account. 

      Who can I reach out to if I have questions for Corvus?


      All policyholders can reach out to our Services team at services@corvusinsurance.com