Content Archive

UniPod META 2026

Dec 04, 2026

UniPod APAC 2026

Dec 03, 2026

UniPod UK 2026

Dec 02, 2026

UniPod LATAM 2026

Dec 01, 2026

UniPod India 2026

Nov 30, 2026

GCP, Azure & AWS Secure the Platform. Who's Securing Everything on Top of It?

Oct 28, 2026

CIA Annual Conference

Sep 23, 2026

Gartner 2026: Security & Risk Management Summit 

Aug 03, 2026

CVE-2026-31431: Hardening Linux Against Copy Fail - Patching, Containment, and Defense-in-Depth

Jun 29, 2026

AI Assisted CTF: Same Systems. Two Scans. Before and After Saner

What changed when AI tested the lab before and after Saner reduced the usable attack surface

Jun 26, 2026

From Emergence to Dominance: INC Ransomware Surpasses 830 Victims and Strengthens Its RaaS Operations

INC Ransomware has rapidly evolved into one of the most active ransomware-as-a-service (RaaS) operations in 2026, claiming responsibility for more than 830 victims worldwide since its emergence in August 2023. Security researchers attribute its growth to a combination of aggressive affiliate recruitment, opportunistic targeting, and the disruption of major ransomware groups such as ALPHV/BlackCat and LockBit, which created opportunities for newer actors to expand their influence within the cybercrime ecosystem.

Jun 26, 2026

Your Scanner Found 4000 Vulnerabilities. Now What?

Jun 25, 2026

Are Your Containers Secure, or Just Scanned?

Jun 25, 2026

FortiBleed: The Leak That Turned 73,000 Firewalls Into a Targeting Database

FortiBleed is a credential-exposure campaign targeting Fortinet firewalls, with over 86,000 devices compromised across 194 countries. No patch exists – attackers crack stolen password hashes and turn devices into listening posts for credential theft.

Jun 25, 2026

CVE-2026-41089: MITRE ATT&CK Mapping, SIEM Queries, and Domain Controller Hardening

Jun 24, 2026

CVE-2026-41089: Public PoC, Active Exploit Analysis, and Windows Netlogon Risk

Jun 24, 2026

CVE-2026-41089: Windows Netlogon Patch, IOCs, Detection, and Mitigation Guide

Jun 24, 2026

CVE-2026-41089: Windows Netlogon RCE - One-Packet CLDAP Attack, LSASS Crash, and Active Directory Risk

Jun 24, 2026

Three Zero-Days, 206 Flaws Fixed: Microsoft Delivers Record-Breaking June 2026 Patch Tuesday

The second Tuesday of June 2026 marked Microsoft's largest Patch Tuesday release on record, delivering security updates for a massive range of vulnerabilities affecting Windows, Microsoft Office, Azure, Exchange, Hyper-V, Active Directory, Remote Desktop, BitLocker, and numerous core operating system components.

Jun 24, 2026

CVE-2026-31431: From 732 Bytes to Root - Anatomy of a Modern Linux Privilege Escalation

Jun 24, 2026

CVE-2026-31431: The Nine-Year Kernel Bug Hiding in Plain Sight

Jun 24, 2026

Squidbleed: A 29-Year-Old Squid Proxy Flaw That Leaks Cleartext HTTP Requests

Jun 23, 2026

AryStinger Malware Leverages 4,300+ Legacy Routers to Establish Persistent Spy Infrastructure

AryStinger exploits decade-old vulnerabilities in unpatched routers and NAS devices to silently assemble a 4,300-node reconnaissance network, conducting distributed scanning and traffic interception while masking all activity behind residential IP addresses.

Jun 23, 2026

Qilin Ransomware and CVE-2026-50751: How Threat Actors Weaponized Check Point VPN Infrastructure

Jun 19, 2026

Breaking Down CVE-2026-25089: Unauthenticated Command Injection in FortiSandbox, FortiSandbox Cloud & FortiSandbox PaaS

Jun 19, 2026

Vulnerability backlog is not just a remediation problem

Jun 19, 2026

Why Enterprise IT Security Teams Need a Unified CNAPP Approach

Jun 19, 2026

HTTP/2 Bomb: How an AI Chained Two Decade-Old Techniques Into a Devastating Remote DoS

Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy. The vulnerability has been codenamed HTTP/2 Bomb.

Jun 19, 2026

Exposure Management Needs a Remediation Mandate

Exposure management must prove risk reduction, not just surface findings. CISOs need remediation accountability that prioritizes, validates, and reports what changed.

Jun 19, 2026

Enterprise guide to cyberattack prevention

How large enterprises can reduce attack surface across endpoints, networks, and cloud environments

Jun 18, 2026

The Remediation Race: GPT-5.5 Exposes the Gap, Saner Closes It Before It's Exploited.

Jun 18, 2026

What's New in Saner CVEM 6.6.1 ?

Jun 18, 2026

Role of Posture Anomaly Management in Cloud Security

Cloud posture is not static. Permissions expand, controls shift, and assets become exposed. Posture anomaly management helps teams detect abnormal changes, review risky drift, and reduce exposure faster.

Jun 18, 2026

The Missing Pieces in Cloud Security That Keep Risk Open

Cloud security teams can see more risk than ever, but visibility alone does not close exposure. Risk drops when teams can prioritize what matters, detect risky posture changes, and remediate faster.

Jun 18, 2026

Every Cloud and Endpoint Has Expected Posture. Saner CSPA and PA Know When It Breaks.

Jun 18, 2026

El análisis de vulnerabilidades ya no es suficiente

Jun 17, 2026

Megalodon Supply Chain Attack Compromises 5,500+ GitHub Repositories Through Malicious CI/CD Workflows

Jun 16, 2026

Key mistakes in endpoint and cloud exposure management

Jun 15, 2026

How CVEM can transform enterprise security posture

Jun 15, 2026

I Asked AI to Break Into My Lab Server. It Changed How I Think About Security.

Jun 12, 2026

Why Risk Remediation Is Critical to Attack Surface Reduction

Jun 12, 2026

Compliance-driven security or risk-based security

Jun 11, 2026

How to Prioritize Remediation at Scale: Fixing What Matters First

Learn how to prioritize remediation at scale by fixing reachable, exploitable, and business-critical risks first instead of relying on CVSS alone.

Jun 11, 2026

1,500 Devices and Growing: Meet the JDY Botnet

Jun 11, 2026

Same System. Two Scans: Here's What Mythos Found Before and After Saner

Jun 11, 2026

HTTP/2 Bomb: How an AI Chained Two Decade-Old Techniques Into a Devastating Remote DoS

Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerability has been codenamed HTTP/2 Bomb.

Jun 11, 2026

Tracking Gafgyt C0XMO: How a New Malware Variant Spreads Across Platforms

A newly identified Gafgyt botnet variant, C0XMO, is actively targeting internet-exposed devices through a combination of vulnerability exploitation, weak-credential attacks, and automated lateral movement. Unlike traditional Gafgyt campaigns, C0XMO separates its propagation logic into a dedicated Python-based scanner, enabling it to compromise a wider range of architectures and device types while scaling infections more efficiently.

Jun 11, 2026

Two Actors, One Flaw: Gamaredon and UAC-0226 Leverage Delayed WinRAR Patching

Two Russia-aligned threat groups, Gamaredon and UAC-0226, are actively exploiting CVE-2025-8088, a high-severity WinRAR path traversal vulnerability, against Ukrainian government, military, and critical infrastructure organizations. Nearly a year after a patch was made available, both groups continued to operate unimpeded.

Jun 11, 2026

Breaking Down the FortiClient Breach: CVE-2026-35616 and the Rise of EKZ Infostealer

Jun 09, 2026

Inside CVE-2026-0257: PAN-OS GlobalProtect Authentication Bypass Under Active Attack

A critical authentication bypass vulnerability, CVE-2026-0257, affects Palo Alto Networks PAN-OS GlobalProtect Portal and Gateway deployments. The vulnerability allows a remote, unauthenticated attacker to establish an unauthorized VPN connection by exploiting weaknesses in the handling of authentication override cookies.

Jun 08, 2026

Your IT vs Mythos: A Methodical AI Attacker Walks Through Your Blind Spots

Jun 04, 2026

CVE-2026-41940 Attacks, Examples, and Real-World Incidents

Jun 03, 2026

CVE-2026-41940 - Critical cPanel Vulnerability Exploited in Mr_Rot13 Backdoor campaign

Jun 03, 2026

CVE-2026-41940: The Complete Guide to the cPanel & WHM Authentication Bypass, Attack Chain, Detection, and Remediation

Jun 03, 2026

How Clean Is Your Security? Understanding the Cyber Hygiene Score

May 28, 2026

Deep Dive Technical Analysis of Linux Server Vulnerability CVE-2026-41940 (cPanel & WHM Auth Bypass)

May 27, 2026

Showboat Emerges as New Linux Threat in Middle East Cyber Attacks

May 24, 2026

What happens after Mythos finds a vulnerability?

AI-driven vulnerability discovery is getting attention because of Anthropic’s Project Glasswing and Claude Mythos Preview. This raises a practical question: once a model like Mythos finds a vulnerability, what happens next?

May 22, 2026

The Invisible Friction That Slows Down Enterprise Patching And Remediation

We looked at the gap between vulnerability discovery and enterprise action. Finding a vulnerability is important, but enterprise risk is reduced only when that vulnerability is understood, prioritized, remediated, and verified. That leads to the next question: if remediation is what reduces risk, why does it still move slowly in enterprises?

May 22, 2026

The Shrinking Window Between Discovery and Exploitation

What happens after a vulnerability becomes known? Finding vulnerabilities faster is important, but from an enterprise point of view, it is only the beginning. A vulnerability reduces enterprise risk only when it can be turned into action.

May 22, 2026

Zero-Day: The Forgotten Frontier : Why Edge Devices Have Become the New Battlefield

May 14, 2026

Security in Times of Uncertainty: Strengthening Cyber Resilience for Evolving Businesses

May 07, 2026

Cyber Security Workshop 04: Build Your Security Stack in 60 Minutes

Apr 30, 2026

SecureWorld Houston

Apr 29, 2026

SSVC vs CVSS - What are they?

CVSS and SSVC are two frameworks used to evaluate and prioritize vulnerabilities. CVSS measures the technical severity of a vulnerability using a numerical score, while SSVC adds real-world context like exposure, impact, and active exploitation to decide what action to take. Together, they help security teams move from severity-based assessment to smarter, risk-based prioritization and faster remediation.

Apr 29, 2026

Cyber-hygiene

Cyber hygiene refers to routine security practices like patching systems, managing configurations, and controlling user access to reduce vulnerabilities and prevent attacks. It is essential because many cyber incidents still stem from basic issues such as misconfigurations and delayed updates, especially in complex, distributed environments. By maintaining consistent monitoring, automation, and structured remediation processes, organizations can strengthen their overall security posture and minimize risk over time.

Apr 29, 2026

Compliance Benchmarks

Compliance benchmarks are standardized guidelines that help organizations securely configure systems and reduce risks from misconfigurations. They support regulatory compliance and improve overall security posture. With automation, teams can continuously monitor, detect, and fix configuration issues efficiently.

Apr 29, 2026

Prevention-First Cloud Security: Why Detection is No Longer is Enough

Apr 28, 2026

Mastering MTTR: Reducing Mean Time to Remediate Risk

Mean Time to Remediate (MTTR) is a critical metric for measuring how effectively organizations respond to security risks. It highlights the business impact of slow remediation and the key factors that increase MTTR. Finally, it provides practical strategies to reduce MTTR through automation, prioritization, and better collaboration.

Apr 28, 2026

Deep Dive into FIRESTARTER: Persistent Backdoor on Cisco ASA & Firepower Devices

Modern cyber-espionage campaigns are increasingly shifting away from loud exploitation techniques and toward stealth-focused, persistence-driven operations that abuse trusted infrastructure. Rather than relying on chains of zero-day vulnerabilities or commodity malware, advanced threat actors are no...

Apr 27, 2026

Prevention in the Age of AI Vulnerability Discovery

Anthropic’s Claude Mythos Preview (Project Glasswing) has pushed a new question into the center of security discussions. Anthropic says Mythos has already identified thousands of zero-day vulnerabilities across critical infrastructure, and that in testing it was able to identify and exploit zero-day...

Apr 27, 2026

Mirai Turns Unsupported D-Link Routers into DDoS Weapons Using CVE-2025-29635

Researchers have uncovered an active Mirai botnet campaign exploiting CVE-2025-29635, a command-injection vulnerability in legacy D-Link DIR-823X routers, to recruit internet-exposed devices into a distributed denial-of-service (DDoS) botnet. Attackers deploy a Mirai malware variant known as “tuxnok...

Apr 27, 2026

Stop Chasing Every CVE: A Practical Approach to Risk-Based Vulnerability Prioritization

Risk-based vulnerability prioritization focuses on fixing the vulnerabilities that truly matter by considering asset importance, exposure, and real-world exploitability instead of just CVSS scores. Saner CVEM enables this with unified data, contextual risk scoring, and structured actions (Act, Attend, Track), helping teams reduce risk efficiently and consistently.

Apr 24, 2026

Security Doesn’t Stop at the Office Door: Scanning Your Remote Workforce

Remote workforce scanning ensures visibility into endpoint security regardless of location, addressing gaps caused by devices operating outside corporate networks. Saner CVEM achieves this with agent-based data collection, continuous monitoring, and unified risk prioritization across both remote and on-premises systems.

Apr 24, 2026

Going Deeper: Why Authenticated Host Scanning Matters for Vulnerability Management

Authenticated host scanning provides deep, inside-the-system visibility, uncovering vulnerabilities, misconfigurations, and missing patches that external scans cannot detect. Saner CVEM enhances this by linking detailed scan results with asset context and risk prioritization, enabling accurate and actionable vulnerability management.

Apr 24, 2026

Coverage Without Complexity: The Case for Agentless Network Scanning

Agentless network scanning expands security coverage by identifying and assessing devices that can’t support agents, eliminating blind spots in complex environments. Saner CVEM combines agentless and agent-based data into a unified view, enabling consistent visibility, risk prioritization, and vulnerability management across all assets.

Apr 24, 2026

What Attackers See Before You Do: Discovering Your External Attack Surface

External attack surface discovery helps organizations identify all internet-facing assets and exposures before attackers can exploit them. Saner CVEM enables this by continuously detecting exposed systems, linking them to internal context, and prioritizing remediation based on real risk.

Apr 24, 2026

Not All Assets Are Equal: Why Asset Criticality Classification Changes Everything

Asset criticality classification helps security teams prioritize what matters most by aligning vulnerability management with business impact instead of treating all assets equally. Saner CVEM enables this by continuously classifying assets, linking criticality to risk prioritization, and focusing remediation on high-impact systems.

Apr 24, 2026

You Can’t Manage What You Can’t Measure: Mapping Your Software Inventory

Mapping software inventory provides a continuously updated view of all installed applications, helping teams quickly identify vulnerabilities, ensure compliance, and reduce security risks from unknown or outdated software. Saner CVEM enables this with unified discovery, instant search, and actionable insights, allowing teams to rapidly assess impact and respond to threats.

Apr 24, 2026

Running on Borrowed Time: The Risk of End-of-Life and End-of-Support Technology

End-of-life and end-of-support technologies create permanent security risks, as they no longer receive patches and are actively targeted by attackers. Saner CVEM helps by continuously identifying unsupported assets, providing context, and enabling teams to prioritize and plan remediation effectively.

Apr 24, 2026

The Hidden Threat: Unknown Assets Lurking in Your Network

Unknown assets on a network create critical security blind spots, as unmanaged and unpatched devices can become easy entry points for attackers. Saner CVEM addresses this with continuous discovery, instant context, and risk-based prioritization to quickly identify, assess, and bring unknown assets under control.

Apr 24, 2026

Building a Unified Asset Inventory

Building a unified asset inventory ensures complete, continuously updated visibility of all devices and systems, eliminating blind spots that weaken security and operations. Saner CVEM achieves this by combining discovery methods, adding rich context, and organizing assets to enable accurate tracking, prioritization, and control.

Apr 24, 2026

Cybersecurity for Manufacturing

Apr 23, 2026

Cybersecurity for Retail for Saner Security

Apr 22, 2026

Cybersecurity for Energy for Saner Security

Apr 21, 2026

Inside Nexcorium: How CVE-2024-3721 Fuels a New Wave of Mirai-Based DDoS Botnets

Researchers have uncovered an active IoT botnet campaign exploiting two known command-injection vulnerabilities to recruit surveillance cameras and home routers into a distributed denial-of-service (DDoS) army. Dubbed Nexcorium, this new Mirai variant uses CVE-2024-3721, an OS command-injection flaw...

Apr 19, 2026

Storm-1175 and Medusa Ransomware: Anatomy of a Rapid Multi-Exploit Intrusion

Threat actors are increasingly moving faster than ever in ransomware operations, shrinking the time between initial compromise and ransomware deployment to maximize impact before defenders can respond. Instead of relying on prolonged persistence, modern ransomware groups are rapidly exploiting newly...

Apr 15, 2026

Two Zero-Days, 167 Flaws Fixed: Microsoft Delivers a Major April 2026 Patch Tuesday

The second Tuesday of April 2026 marked another extensive security update release from Microsoft, addressing a broad range of vulnerabilities across its product ecosystem. This month’s Patch Tuesday resolved a notably high number of security flaws spanning Windows, Microsoft Office, Azure, Edge, SQL...

Apr 14, 2026

Forged Trust: Improper Certificate Validation in wolfSSL

CVE-2026-5194 is a critical vulnerability affecting the wolfSSL cryptographic library, a widely used TLS/SSL implementation deployed across embedded systems, IoT devices, networking equipment, and applications.

Apr 13, 2026

APT28 in 2026: Weaponizing Routers and Deploying PRISMEX Across Global Targets

The Russian state-linked threat actor APT28 (also known as Forest Blizzard and Pawn Storm) has intensified its cyber operations through two major campaigns: a large-scale DNS hijacking operation targeting SOHO routers and a spear-phishing campaign deploying the PRISMEX malware suite.

Apr 12, 2026

Deep Dive into CVE-2026-34621: Actively Exploited Flaw in Adobe Acrobat Reader

Adobe has released emergency security updates to address a critical vulnerability in Adobe Acrobat Reader, tracked as CVE-2026-34621. This flaw, with a CVSS score of 8.6, is actively exploited in the wild and allows attackers to execute arbitrary code on affected systems via specially crafted PDF fi...

Apr 12, 2026

Analyzing the TrueConf Zero-Day Exploit in Southeast Asian Cyber Attacks

Cybercriminals are increasingly exploiting trusted enterprise collaboration platforms through supply-chain style attacks, with a newly discovered zero-day vulnerability in the TrueConf video conferencing client actively weaponized in targeted campaigns against Southeast Asian government entities. Tr...

Apr 06, 2026

Critical Infrastructure Alert: Patch Cisco IMC and SSM On-Prem Now!

A pair of critical vulnerabilities in Cisco server and license-management technologies, CVE-2026-20093 and CVE-2026-20160. These flaws allow attackers to bypass authentication or execute commands at the highest privilege level. Both flaws have been assigned a CVSS score of 9.8. Exploitation could re...

Apr 02, 2026

UNC1069 and the Axios npm Attack: Google Reveals North Korean Attribution

Cybercriminal and nation-state threat actors are increasingly shifting toward developer-ecosystem compromise and software supply chain abuse as a reliable avenue for mass access. Rather than exploiting hardened enterprise perimeters directly, these actors target trusted package repositories, build p...

Apr 01, 2026

Critical Security Vulnerability in Google Chrome: Technical Analysis and Mitigation

The discovery of CVE-2026-5281 reveals critical vulnerability highlights a serious weakness in modern web browsers that can be leveraged by attackers to execute malicious code under specific conditions, posing a significant risk to users across different platforms. The issue originates from improper...

Mar 31, 2026

FortiClient EMS Under Fire: Critical CVE-2026-21643 Exploited in Real-World Attacks

A critical SQL injection vulnerability, CVE-2026-21643, has been identified in FortiClient Endpoint Management Server (EMS), a centralized management platform for FortiClient endpoint agents across multiple environments.

Mar 30, 2026

Node.js Security Bulletin: CVE-2026-21637 and Other Fixes Explained

The Node.js project has recently released a series of security updates to address multiple vulnerabilities across its active release lines. These updates span versions 20.x, 22.x, 24.x, and 25.x, and include fixes for issues ranging from high to low severity. Among the most critical is CVE-2026-2163...

Mar 26, 2026

Zero-Click AI Exploit: ShadowPrompt in Claude Chrome Extension

A significant vulnerability has been discovered in Anthropic’s Claude Google Chrome Extension, potentially allowing malicious actors to inject prompts into the AI assistant without any user interaction. This “zero-click” vulnerability, dubbed ShadowPrompt, could have allowed attackers to silently co...

Mar 26, 2026

Securing Multi-Cloud Environments: Best Practices for Cloud Posture Management

Mar 26, 2026

Partner Workshop 2: Risk-Based Prioritization Beyond CVSS: How to Sell and Deliver Smarter Remediation

Mar 25, 2026

Immediate Action Required: Critical NetScaler Vulnerability Exposes Sensitive Memory Data

Citrix has released a security advisory addressing two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical vulnerability tracked as CVE-2026-3055 (CVSS score: 9.3) and a high-severity vulnerability tracked as CVE-2026-4368 (CVSS score: 7.7).

Mar 24, 2026

CVE-2026-33017: Critical Langflow Vulnerability Exploited Within 20 Hours of Disclosure

The discovery of CVE-2026-33017 reveals a critical remote code execution vulnerability in Langflow that is being actively exploited in the wild within 20 hours of public disclosure. Successful exploitation could allow unauthenticated attackers to execute arbitrary code on affected servers, potential...

Mar 23, 2026

Oracle Identity Manager Under Threat: Analyzing CVE-2026-21992 Remote Code Execution Flaw

A critical vulnerability, tracked as CVE-2026-21992, has been identified in Oracle Identity Manager (OIM) and Oracle Web Services Manager (OWSM). This flaw enables unauthenticated remote code execution (RCE), posing a severe risk to organizations that rely on these platforms for identity and access ...

Mar 22, 2026

RSA Conference 2026

Mar 22, 2026

Operation GhostMail: Analysis of Russian APT Exploitation of Zimbra XSS

Operation GhostMail is a high-stakes cyber-espionage campaign attributed to the Russian threat actor APT28 (Fancy Bear). By exploiting a critical stored Cross-Site Scripting (XSS) vulnerability in Zimbra Collaboration software, the group has successfully targeted Ukrainian government agencies and cr...

Mar 19, 2026

Interlock’s Early Access: Cisco FMC Vulnerability Exploited Before Disclosure

Interlock group has been observed exploiting the critical vulnerability CVE-2026-20131 (CVSS 10.0) in Cisco Secure Firewall Management Center (FMC) since January 26, 2026, prior to its public disclosure. This vulnerability, caused by insecure Java deserialization in the FMC web interface, enables un...

Mar 19, 2026

SecureWorld Charlotte

Mar 17, 2026

Microsoft Issues Out-of-Band Security Update for Windows 11 RRAS Vulnerabilities

Microsoft has deployed an emergency out-of-band update (KB5084597) to fix critical vulnerabilities in the Windows Routing and Remote Access Service (RRAS). The patch applies to Windows 11 Enterprise environments utilizing hotpatch functionality. If left unpatched, these issues could be exploited to ...

Mar 16, 2026

Chrome Security Update: Google Fixes Another Actively Exploited Vulnerability

In a race against active threats, Google Chrome has released another emergency update to patch two critical zero-day vulnerabilities, CVE-2026-3909 and CVE-2026-3910. These flaws were already being actively exploited in the wild, prompting urgent action from Google to protect users.

Mar 15, 2026

Backup Infrastructure at Risk: Critical RCE Flaws Patched in Veeam Backup & Replication

Veeam has fixed several critical vulnerabilities in its Backup & Replication platform that could allow remote code execution and privilege escalation if exploited. Given the platform’s widespread adoption, especially among large enterprises, these flaws present a significant security risk. Ransomwar...

Mar 12, 2026

From Detection to Remediation: Rethinking Vulnerability Management for Modern Enterprises

Mar 12, 2026

84 Flaws Patched, Including Two Publicly Disclosed Vulnerabilities: Microsoft’s March 2026 Patch Tuesday Update

The second Tuesday of March 2026 delivered another significant security update cycle from Microsoft. This month’s Patch Tuesday addressed a substantial number of vulnerabilities across Windows, Office, Azure, SQL Server, Hyper-V, Edge, and several other Microsoft components.

Mar 10, 2026

AI-Driven Security: OpenAI Codex Reveals High-Impact Vulnerabilities in Open-Source Projects

OpenAI has recently launched Codex Security, an AI-powered security agent designed to identify, validate, and propose fixes for software vulnerabilities. This tool, an evolution of Aardvark, has already made a significant impact by scanning over 1.2 million commits and uncovering thousands of high-s...

Mar 09, 2026

Critical Nginx UI Flaw Exposes Server Backups and Encryption Keys.

A critical vulnerability in Nginx UI, tracked as CVE-2026-27944, allows unauthenticated attackers to download and decrypt full server backups. The flaw has been assigned a CVSS score of 9.8 (Critical) and affects instances where the Nginx UI management interface is accessible. Exploitation of this v...

Mar 09, 2026

Her Journey, Her Voice

International Women’s Day often highlights achievements, leadership titles, and industry milestones. Yet behind every milestone lies something far more powerful: a personal journey shaped by choices, mentors, communities, and quiet moments of courage.

Mar 07, 2026

Introducing Google Cloud support in Saner Cloud with CIEM visibility

Cloud adoption rarely happens in a neat straight line. Teams add projects, hand off ownership, build new services, and revisit access later. Over time, permissions tend to spread across people, groups, and service accounts, and it becomes harder to answer basic questions about access with confidence...

Mar 04, 2026

Silent Rendering, Stolen Secrets: APT28’s MSHTML Espionage Campaign

A Russia-linked advanced persistent threat group, APT28 (also known as Fancy Bear and Forest Blizzard), has been observed exploiting a previously unknown Microsoft Windows vulnerability, CVE-2026-21513, in targeted cyber-espionage campaigns. The zero-day flaw resides in Microsoft’s MSHTML browser en...

Mar 03, 2026

Ongoing Web Shell Attacks Hit 900+ FreePBX Systems: INJ3CTOR3 Behind EncystPHP Deployment

Cybercriminals continue to exploit misconfigurations and unpatched VoIP infrastructure, with over 900 Sangoma FreePBX systems confirmed compromised following widespread deployment of EncystPHP, a malicious PHP-based web shell. These intrusions have been attributed to threat activity leveraging a pos...

Mar 01, 2026

Zero-Day Unleashed: How Hackers Are Creeping Into Cisco SD-WAN Networks

A critical zero-day vulnerability in Cisco Catalyst SD-WAN Manager, tracked as CVE-2026-20127, has been actively exploited by the group UAT-8616 to maintain covert access to enterprise edge infrastructure. The vulnerability stems from an improper authorization flaw in the management application’s RE...

Feb 25, 2026

Serv-U Vulnerabilities Expose Systems to Root Compromise

SolarWinds has released updates to address four critical security flaws in its Serv-U file transfer software that, if successfully exploited, could result in remote code execution. These vulnerabilities affect SolarWinds Serv-U version 15.5 and have been addressed in version 15.5.4.

Feb 25, 2026

Security Advisory: VMware Aria Operations Vulnerabilities May Lead to Remote Compromise

Broadcom has released security updates to address multiple vulnerabilities in VMware Aria Operations, an IT operations management platform that monitors and optimizes virtual, cloud, and hybrid environments. The solution provides performance monitoring, capacity planning, automated alerting, and cos...

Feb 24, 2026

Security Advisory - Breaking down modern exploit chains: Memory Corruption, Privilege Escalation & Unauthenticated RCE

Feb 24, 2026

SecPod Partner Empowerment Series: Practical PCI Use Cases to Minimize MTTR

Feb 24, 2026

Inbox at Risk: Critical Roundcube Webmail Flaws Actively Exploited

Roundcube Webmail, a widely-used web-based email client, is facing increased scrutiny as threat actors actively exploit several vulnerabilities. The Cybersecurity and Infrastructure Security Agency (CISA) has recently flagged two Roundcube Webmail vulnerabilities, CVE-2025-49113 and CVE-2025-68461, ...

Feb 23, 2026

Weaponizing CVE-2026-1731: VShell and SparkRAT in Real-World BeyondTrust Breaches

On February 6, 2026, BeyondTrust disclosed a critical pre-authentication remote code execution vulnerability, CVE-2026-1731, affecting its Remote Support and Privileged Remote Access products. The flaw, assigned a CVSS v4 score of 9.9, enables unauthenticated attackers to execute arbitrary operating...

Feb 22, 2026

Supply Chain Risk: Critical Flaws Identified in Popular VS Code Extensions

In the modern software development ecosystem, Integrated Development Environments (IDEs) such as Microsoft Visual Studio Code have become foundational to daily engineering workflows. To extend functionality and streamline development tasks, teams frequently rely on third-party extensions from the ma...

Feb 18, 2026

Cyber Security Workshop 03: Ransomware Resilience, Building a Multi-Layered Defense Strategy

Feb 18, 2026

Backdoor in Backup: UNC6201 Exploits RecoverPoint Zero-Day to Deploy GRIMBOLT

A critical zero-day vulnerability in Dell RecoverPoint for Virtual Machines, tracked as CVE-2026-22769, has been actively exploited by the China-nexus threat cluster UNC6201 to deploy persistent backdoors and maintain covert access to enterprise infrastructure. The vulnerability stems from hard-code...

Feb 17, 2026

Google Addresses Actively Exploited Chrome Vulnerability CVE-2026-2441

The discovery of CVE-2026-2441 reveals a critical zero-day vulnerability in Google Chrome that is actively being exploited in the wild. Successful exploitation could allow remote attackers to execute arbitrary code within Chrome’s sandbox environment, putting millions of users across Windows, macOS,...

Feb 16, 2026

7,000 Servers and Counting: The Rise of the SSHStalker Linux Botnet

Cybercriminal groups and opportunistic botnet operators continue to shift toward scale-first, persistence-driven operations that rely heavily on misconfigurations, weak authentication, and long-tail vulnerabilities rather than sophisticated zero-days. Recent analyses by Flare and other cybersecurity...

Feb 11, 2026

Microsoft’s February 2026 Patch Tuesday: Six Zero-Days, 58 flaws Patched Amid Growing Exploit Activity

The second Tuesday of the month has arrived, bringing another significant wave of Microsoft security updates. In February 2026, Microsoft issued patches for 58 vulnerabilities, including six actively exploited zero-day flaws and five rated Critical.

Feb 10, 2026

Deep Dive: Inside the Warlock Ransomware Breach of SmarterTools

In a significant security incident, SmarterTools, the developer of the popular SmarterMail collaboration platform, fell victim to a ransomware attack orchestrated by the Warlock ransomware group. The breach was made possible by a critical vulnerability in SmarterTools’ own software, specifically an ...

Feb 09, 2026

The Silent Compromise: Inside the Notepad++ Supply Chain Attack

Feb 09, 2026

Fancy Bear: Russia-Linked APT Exploits Microsoft Office Zero-Day

A targeted cyber-espionage campaign conducted by the Russia-linked advanced persistent threat (APT) group Fancy Bear (APT28) has been observed exploiting a recently patched Microsoft Office vulnerability to compromise government, diplomatic, and defense-aligned organizations across Eastern Europe an...

Feb 03, 2026

Story of Cyberattack: 16 Billion Leaked Credentials: “The Mega Leak”

What if the password you used years ago is still giving attackers access to your accounts today? What if a huge list of 16 billion leaked credentials containing usernames and passwords, covering Google, Apple, Facebook, GitHub, and even government portals, landed in hackers’ laps?

Jan 29, 2026

SolarWinds Implements Security Updates to Address Critical Web Help Desk Vulnerabilities

SolarWinds has released important security updates to address several critical vulnerabilities impacting its Web Help Desk (WHD) product. These issues include remote code execution (RCE) and authentication bypass flaws that put organizations at significant risk. Given WHD’s extensive use across ente...

Jan 28, 2026

From SSO to SOS: How CVE-2026-24858 Gave Hackers the Keys to Your Fortinet Gear

Fortinet has addressed a critical authentication bypass vulnerability, CVE-2026-24858, affecting FortiOS, FortiManager, FortiAnalyzer, FortiWeb and FortiProxy. The vulnerability, with a CVSS score of 9.4, is actively exploited in the wild, making it crucial for organizations to apply the necessary p...

Jan 28, 2026

Key Security Lesson from 2025: The Urgent Need for Security Automation

Jan 28, 2026

Microsoft patches actively exploited Office zero-day vulnerability

In a swift response to escalating cyber threats, Microsoft has issued an emergency security update to remediate a high-severity zero-day vulnerability affecting several versions of Microsoft Office. Tracked as CVE-2026-21509, this security feature bypass flaw impacts Microsoft Office 2016, 2019, LTS...

Jan 27, 2026

Critical GNU InetUtils Telnetd Vulnerability Allows Authentication Bypass and Root Access

The discovery of CVE-2026-24061 exposes a long-standing critical weakness in the GNU InetUtils telnet daemon (telnetd). Exploitation of this vulnerability enables remote authentication bypass and full root compromise, putting legacy and misconfigured systems at severe risk. The flaw remained undetec...

Jan 26, 2026

Hackers Turn AWS Buckets into LastPass Phishing Lures to Steal Vault Credentials

An ongoing phishing campaign is impersonating LastPass and abusing Amazon S3–hosted URLs as the first redirect hop to a fake LastPass domain, attempting to harvest victims’ master passwords and vault access. The operation—active since Jan 19, 2026 (US holiday weekend)—pushes emails urging recipients...

Jan 21, 2026

Cisco Unified CM and Webex Security Alert: Active Zero-Day CVE-2026-20045 Fixed

Cisco has recently issued security updates to fix a critical vulnerability impacting several Unified Communications Manager (CM) products and Webex Calling Dedicated Instance. Tracked as CVE-2026-20045, the flaw has been actively exploited as a zero-day in real-world attacks, creating a serious risk...

Jan 21, 2026

AI in Cybersecurity: From Hype to Real-World Defense

Jan 21, 2026

Unmasking UAT-8837: The Zero-Day Exploit That Could Ruin Your Year

A sophisticated China-linked threat actor, identified as UAT-8837, has been observed exploiting a critical zero-day vulnerability in the Sitecore platform. Tracked as CVE-2025-53690, this insecure deserialization flaw allows attackers to bypass authentication and execute remote code (RCE). The prima...

Jan 18, 2026

Three Zero-Days, 114 Flaws Fixed: Microsoft Kicks Off 2026 with a Major Patch Tuesday

This month’s Patch Tuesday marks a significant start to the year, with Microsoft delivering a heavy volume of updates to address 114 vulnerabilities. This includes 3 zero-day flaws, one of which is actively exploited.

Jan 13, 2026

Silent Scan, Stolen Secrets: Kimsuky’s QR-Code Phishing Campaign

A sustained quishing (QR-code phishing) campaign conducted by the North Korea–linked APT group Kimsuky (aka Larva-24005) has been actively targeting government, defense, and critical infrastructure organizations. According to a recent FBI warning, Kimsuky operators embed malicious QR codes in emails...

Jan 12, 2026

Severe Veeam Backup Vulnerability Could Lead to Code Execution

Veeam, a prominent provider of data protection and disaster recovery solutions, has recently addressed multiple security vulnerabilities in its Backup & Replication software. These flaws could potentially allow attackers to perform remote code execution (RCE) and gain unauthorized access to systems....

Jan 08, 2026

Public PoC Released for Cisco ISE Information Disclosure Flaw

Cisco has recently addressed a medium-severity security vulnerability in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC). The vulnerability, identified as CVE-2026-20029, has a public proof-of-concept (PoC) exploit available, prompting a swift response from the networ...

Jan 08, 2026

Deploying VSOCKpuppet: Unmasking how Chinese Threat Actors Exploited ESXi Zero-Days Before Disclosure

Network virtualization infrastructure continues to be a high-value target for well-resourced threat actors. Recent analysis has revealed a sophisticated intrusion campaign in which Chinese-speaking attackers leveraged undeclared zero-day vulnerabilities in VMware ESXi hypervisor environments, possib...

Jan 08, 2026

Active Exploitation Alert: Critical RCE Vulnerability in HPE OneView

The cybersecurity landscape is ever-evolving, and recent reports indicate that a previously patched vulnerability in HPE OneView is now being actively exploited in the wild. This Remote Code Execution (RCE) vulnerability, identified as CVE-2025-37164, poses a significant risk to organizations utiliz...

Jan 08, 2026

Mass Exploitation Campaign Targeting Adobe ColdFusion Servers Detected During Christmas Holiday

A coordinated exploitation campaign targeted Adobe ColdFusion servers across the globe during the Christmas 2025 holiday period, generating 5,940 malicious requests that probed 10+ ColdFusion CVEs disclosed between 2023 and 2024. Telemetry indicates 68% of the activity occurred on December 25, sugge...

Jan 05, 2026

Legacy FortiOS Bug Exploited to Bypass Authentication

In the realm of cybersecurity, vulnerabilities are a constant concern, and the repercussions of neglecting older flaws can be significant. A recent example of this is the active exploitation of a five-year-old vulnerability in Fortinet’s FortiOS SSL VPN, identified as CVE-2020-12812. This flaw allow...

Dec 25, 2025

MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847) and how to remediate it

A high-severity vulnerability known as MongoBleed (CVE-2025-14847), was recently identified and patched in MongoDB, the widely used open-source NoSQL database. The issue, named for its ability to “bleed” uninitialized memory from the server, stems from improper handling of zlib-compressed wire proto...

Dec 25, 2025

Cyber Security Workshop 2.5 : CIS CompliancThe 10 Vulnerabilities and Misconfigurations That Defined 2025e Simplified

Dec 23, 2025

Zero-Day Crisis: CVE-2025-20393 Unpatched on Cisco Email Gateways, Exploited by China-Linked Hackers

Network edge devices continue to be a primary target for sophisticated state-sponsored actors aiming to bypass traditional perimeter defenses. Recent disclosures reveal a critical zero-day vulnerability in Cisco’s Secure Email Gateway (SEG) and Secure Web Manager (SMA) appliances is being actively e...

Dec 22, 2025

SonicWall Disclosure: Active Attacks Target SMA 100, CVE-2025-40602 Patched

SonicWall has released security updates to remediate an actively exploited local privilege escalation vulnerability, tracked as CVE-2025-40602, affecting Secure Mobile Access (SMA) 100 series appliances. The flaw exists in the Appliance Management Console (AMC) and has been confirmed to be exploited...

Dec 18, 2025

AWS Intelligence Report: GRU-Linked Hackers Behind Sustained Infrastructure Attacks

Cybercriminals and nation-state advanced persistent threat (APT) groups are increasingly adopting stealth-driven, persistence-focused operational models that rely less on zero-day exploits and more on abusing misconfigurations, credential replay, and trusted infrastructure. Recent disclosures from A...

Dec 18, 2025

No Credentials Required: FortiGate SAML SSO Exploit Path Explained

Two maximum severity vulnerabilities have been identified in a range of Fortinet products, including the widely deployed FortiGate firewalls. These vulnerabilities, designated as CVE-2025-59718 and CVE-2025-59719, carry a CVSS score of 9.8, indicating their critical impact. The flaws allow for an u...

Dec 16, 2025

Preparing Your IT for the 2025 December Holiday Season: A practical guide with SecPod Saner platform

Dec 10, 2025

Three Zero-Days and 57 Fixes: A Critical Year-End Patch Tuesday from Microsoft

This month’s Patch Tuesday delivers a modest-sized update, but with high-impact fixes. Microsoft has patched 57 vulnerabilities, including 3 zero-day flaws (one actively exploited and two publicly disclosed) along with several critical-severity bugs.

Dec 09, 2025

CVE-2025-55182: Immediate Operationalization of React2Shell by China-Nexus Threat Actors

Within hours of the public disclosure of CVE-2025-55182 (React2Shell) on December 3, 2025, security researchers observed active exploitation attempts from several China-nexus cyber threat groups, including Earth Lamia and Jackpot Panda. This critical unauthenticated remote code execution vulnerabili...

Dec 08, 2025

Understanding CVE-2025-66516: Critical XXE Exposure in Apache Tika

A maximum severity vulnerability has been identified in Apache Tika, a widely used open-source content analysis toolkit. This vulnerability, designated as CVE-2025-66516, has a CVSS score of 10.0, indicating its critical impact. The flaw allows XML External Entity (XXE) injection attacks, potentiall...

Dec 08, 2025

Stealth Fix: Microsoft Patches Exploited LNK Security Hole

In a move that highlights the ongoing cat-and-mouse game between software vendors and threat actors, Microsoft has recently addressed a high-severity vulnerability in Windows LNK files. Tracked as CVE-2025-9491, this flaw has been actively exploited in the wild by a multitude of state-sponsored and ...

Dec 07, 2025

AISURU Botnet: Inside the 29.7 Tbps Mega-Scale DDoS Weapon

AISURU is one of the most powerful and rapidly expanding botnets observed in recent years. With an estimated 300,000 compromised routers, DVRs, gateways, and IoT devices, it has played a central role in the unprecedented surge of global DDoS attack peaks in 2025, reaching up to 29.7 Tbps. AISURU’s t...

Dec 03, 2025

DSCI - AISS

Dec 02, 2025

Story of Cyberattack: Salesforce Supply Chain Breach

The Salesforce ecosystem just got a harsh reminder that the weakest link rarely lives inside the core platform. It often hides in a trusted third-party app with broad permissions and quietly forgotten tokens.

Nov 26, 2025

ShadowPad’s Silent Invasion: Crafting Persistence Through WSUS Exploitation

The ShadowPad malware campaign represents an urgent and advanced cybersecurity threat, exploiting a critical vulnerability in Microsoft’s WSUS service to gain full system access. This highly modular backdoor is being actively leveraged by state-aligned threat actors to target key sectors globally, e...

Nov 26, 2025

One Key to Rule Them All: Apache Syncope Flaw Leaves Passwords Wide Open

A critical vulnerability, identified as CVE-2025-65998, has been discovered in Apache Syncope, a widely-used open-source identity management system, potentially exposing sensitive password information. This flaw highlights the risks associated with hard-coded encryption keys and the importance of pr...

Nov 25, 2025

Seguridad sincronizada: donde se alinean el cumplimiento, los parches y la gestión de vulnerabilidades

Nov 25, 2025

Grafana Vulnerability Disclosure: SCIM Flaw Could Lead to Privilege Escalation

The discovery of CVE-2025-41115 exposes a critical security weakness in the Grafana Enterprise SCIM (System for Cross-domain Identity Management) component, enabling attackers to escalate privileges or impersonate existing users under specific configuration conditions. This flaw poses a significant ...

Nov 23, 2025

Critical Security Update: SolarWinds Remediates Multiple Serv-U Vulnerabilities

SolarWinds has issued an urgent security update for its Serv-U file transfer software, patching three critical remote code execution (RCE) vulnerabilities, each rated CVSS 9.1. These flaws could allow attackers with administrative access to execute arbitrary code and compromise vulnerable systems. T...

Nov 23, 2025

APT24’s BADAUDIO: A Deep Dive into China-Nexus Espionage Against Taiwan

A China-nexus threat actor has been conducting a sophisticated, multi-year espionage campaign using a custom malware downloader, compromising regional infrastructure and reaching over 1,000 global domains through strategic supply chain attacks. At the core of this operation is BADAUDIO, a highly obf...

Nov 23, 2025

7-Zip Users at Risk: Symbolic Link Vulnerability Triggers RCE Attacks

A security vulnerability in the widely used 7-Zip file archiver has recently come under active exploitation. The flaw, identified as CVE-2025-11001, poses a significant risk as it allows for remote code execution. This issue has prompted warnings from cybersecurity entities, including NHS England Di...

Nov 19, 2025

WrtHug Abuse of ASUS WRT Vulnerabilities Exposes Thousands of EoL Routers

Operation WrtHug refers to a widespread compromise of end-of-life (EoL) ASUS routers, where attackers exploit previously disclosed vulnerabilities to gain control over large numbers of unsupported devices. The activity has impacted tens of thousands of systems, with most cases identified in Taiwan, ...

Nov 19, 2025

CVE-2025-13223: The Chrome Vulnerability You Can’t Afford to Ignore

Heads up, Chrome users! An actively exploited zero-day vulnerability, CVE-2025-13223, has been identified in Google Chrome’s V8 JavaScript and WebAssembly engine. This vulnerability could allow attackers to execute arbitrary code or cause program crashes. Google has already released security updates...

Nov 19, 2025

SecPod Expands Global Presence with New Engineering Center in Saigon, Vietnam

Nov 19, 2025

Zero-Day Vulnerability: How Dangerous Are They?

Zero-day vulnerabilities sit at the center of many high-profile cyberattacks. Security teams race to defend their environments, while attackers exploit these flaws before a patch exists. The result is a threat that often hits without warning and spreads faster than defenders can respond.

Nov 18, 2025

Bugs Caught in the FortiWeb: Active Attacks Target FortiWeb Zero-Days

Fortinet has recently addressed two actively exploited zero-days in its FortiWeb web application firewall (WAF). These flaws, a command injection vulnerability (CVE-2025-58034) and a path traversal vulnerability (CVE-2025-64446), could allow attackers to execute unauthorized code and gain administra...

Nov 18, 2025

FortiWeb at Risk: Unauthenticated Attackers Gaining Full WAF Control via Admin Creation

A critical authentication bypass vulnerability in Fortinet’s FortiWeb web application firewalls (WAF), identified as CVE-2025-64446 with a CVSS score of 9.8, is being actively and indiscriminately exploited in the wild. The flaw allows unauthenticated attackers to execute administrative commands and...

Nov 16, 2025

RondoDox Botnet Expansion: Threat Actors Weaponize Critical XWiki Vulnerability

The discovery of widespread exploitation of a critical XWiki vulnerability CVE-2025-24893 reveals a severe threat to organizations running unpatched instances. Active threat activity shows that attackers—most notably the RondoDox botnet—are abusing this flaw to execute arbitrary code, compromise ser...

Nov 16, 2025

Severe Dell Data Lakehouse Security Bug Enables Remote Privilege Escalation

A critical vulnerability, tracked as CVE-2025-46608, has been disclosed in the Dell Data Lakehouse platform, enabling remote attackers to escalate privileges within affected environments. Successful exploitation could allow adversaries to gain elevated access and compromise both data and system inte...

Nov 13, 2025

Archive Terror: Dissecting the WinRAR CVE-2025-6218 Exploit & APT-C-08’s Stealth Move

A targeted cyber-espionage campaign attributed to the threat group APT-C-08 is actively exploiting a high severity directory traversal vulnerability, CVE-2025-6218, in older versions of WinRAR. The campaign focuses on government organizations in South Asia, using phishing emails with malicious RAR a...

Nov 13, 2025

SAP Urges Immediate Updates as CVE-2025-42887 Enables Full System Compromise

A critical security vulnerability, tracked as CVE-2025-42887, has been identified in SAP systems, prompting an urgent need for organizations to apply the latest patches. With a near-maximum severity score of 9.9, the flaw poses a significant risk as it could allow attackers to gain full control over...

Nov 13, 2025

SecPod’s Path-Defining Innovation: Shaping the Future of Cybersecurity

For nearly two decades, SecPod has challenged conventions and introduced new ways of thinking about cybersecurity – ways that move the industry forward and reshape how organizations protect themselves. Our innovations, philosophies, and frameworks have always been rooted in one principle: security m...

Nov 13, 2025

Critical Palo Alto Firewall Bug Allows Remote Reboot Through Packet Injection

A critical denial-of-service vulnerability in Palo Alto Networks PAN-OS allows unauthenticated attackers to remotely reboot firewalls by sending specially crafted packets through the data plane. Security researchers warn that repeated exploitation can push affected devices into maintenance mode, eff...

Nov 13, 2025

Pre-Auth and Persistent: How a Sophisticated APT Targeted Cisco ISE and Citrix Gateways

Amazon’s security teams have made a critical discovery, revealing a sophisticated Advanced Persistent Threat (APT) campaign actively exploiting zero-day vulnerabilities in two widely deployed enterprise solutions: Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC/Gateway products. This fi...

Nov 12, 2025

RelayState Ruse: Exploiting Reflected XSS in Citrix NetScaler

In the realm of cybersecurity, it’s not uncommon to stumble upon vulnerabilities while dissecting a system during the pursuit of reproducing an N-day. Security researchers at watchTowr Labs recently encountered such a scenario while analyzing CitrixBleed2 (CVE?2025?5777), which affected Citrix NetSc...

Nov 12, 2025

Rethinking Cloud Security Through Intelligent Risk Prioritization

Nov 12, 2025

Microsoft Tackles 1 Zero-Day and 63 Fixes in November 2025 Patch Tuesday

It’s that time again – Patch Tuesday is here. This November, Microsoft rolled out fixes for 63 security flaws, featuring one actively exploited zero-day and four Critical vulnerabilities.

Nov 11, 2025

SAP November Patch Roundup: Critical Flaws Demand Immediate Action

SAP has recently rolled out its November security updates, aiming to resolve a spectrum of vulnerabilities across its enterprise software suite. These updates address critical issues, emphasizing the need for organizations to promptly review and apply the necessary patches to safeguard their SAP env...

Nov 11, 2025

Active Campaign Against Triofox: How Attackers Bypassed Setup and Gained SYSTEM Execution

A cyber-espionage group, identified as UNC6485, is actively exploiting a critical vulnerability in Gladinet’s Triofox file-sharing platform. This campaign aims to gain initial network access, steal data, and establish long-term persistence. Attackers are bypassing authentication to create administra...

Nov 11, 2025

CYSEC OMAN

Nov 11, 2025

Critical NPM Package Vulnerability Puts AI and NLP Applications at Risk of Exploitation

The discovery of CVE-2025-12735 reveals a critical remote code execution (RCE) weakness in the popular JavaScript expression-evaluation library expr-eval. Exploitation allows an attacker who can supply crafted input to influence the parser’s evaluation context and execute arbitrary system-level comm...

Nov 10, 2025

Watch Your Cloud Hygiene Evolve: Trend Analysis in Saner Cloud CHS

Cloud environments are dynamic!New resources are spun up in seconds, configurations change constantly, and threats evolve even faster. In such a complex landscape, cloud security hygiene isn’t a one-time check, but a continuous journey. To help organizations track this journey, Saner Cloud introduce...

Nov 09, 2025

Burning Down the Firewall: Cisco ASA and FTD Under Active Exploitation

Cisco has issued a warning regarding a new wave of attacks targeting their Secure Firewall Adaptive Security Appliance (ASA) and Firewall Threat Defense (FTD) software. This new attack variant exploits vulnerabilities CVE-2025-20333 and CVE-2025-20362, potentially leading to denial-of-service (DoS) ...

Nov 06, 2025

Reject, Repeat, Restart: RADIUS Bug Triggers Cisco ISE DoS

A vulnerability in Cisco Identity Services Engine (ISE) could allow remote attackers to trigger unexpected system restarts, leading to a denial-of-service (DoS) condition. The vulnerability stems from how ISE handles repeated authentication failures, and organizations relying on ISE for network acce...

Nov 06, 2025

Critical Chrome Vulnerabilities Patched: WebGPU and V8 Flaws Fixed in Latest Release

Google has urgently released a security update for Chrome, addressing multiple vulnerabilities that could allow attackers to execute code remotely on affected systems. The update, version 142.0.7444.134 and 142.0.7444.135, is rolling out across Windows, Mac, and Linux, while Android users will recei...

Nov 06, 2025

Beyond CVSS: Using MITRE ATT&CK for smarter prioritization

Cloud teams face more findings than available hours. The gap is not detection, it is deciding what deserves action now. A decision-first approach ranks cloud risks using clear outcome levels that turn scattered alerts into a plan shared by operators and leadership. Saner Cloud Security Risk Prioriti...

Nov 06, 2025

Cyber Security Workshop 02: CIS Compliance Simplified

Nov 06, 2025

Control Web Panel Breached: Critical RCE Exploited in the Wild

A critical vulnerability has been identified in Control Web Panel (CWP), a widely used web hosting control panel also known as CentOS Web Panel, which is now under active exploitation. The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding this vulnerability, ident...

Nov 05, 2025

Chrome 142 Released: High-Severity V8 Flaws Fixed, $100K in Rewards Paid

Google has released Chrome 142, addressing a total of 20 security flaws, including two high-severity vulnerabilities affecting the V8 JavaScript engine. The company awarded a total of $100,000 in bug bounties to researchers who reported these critical issues.

Nov 04, 2025

Under UNC6384’s LNK: CVE-2025-9491 Powers PlugX Espionage Attacks

A Windows LNK (shortcut) UI-misrepresentation vulnerability (CVE-2025-9491, ZDI-CAN-25373) is being actively exploited by a China-linked threat actor tracked as UNC6384 to deliver the PlugX Remote Access Trojan (RAT) against European diplomatic and government targets. The flaw enables malicious .LNK...

Nov 04, 2025

RDSEED Vulnerability in AMD Zen 5: A Threat to Hardware Randomness Integrity

AMD has confirmed a significant flaw in the RDSEED instruction used for hardware-level random number generation on Zen 5 CPUs. The vulnerability, cataloged as AMD-SB-7055 and assigned CVE-2025-62626, can cause the 16-bit and 32-bit RDSEED variants to return zero instead of genuine entropy, which sof...

Nov 03, 2025

BadCandy: Stealth Implant Converts IOS XE into a Persistent Surveillance Node

Cybercriminals and advanced persistent threat (APT) actors continue to evolve toward stealthier, persistence-focused, and profit-driven operations. Recent intelligence reports reveal a coordinated exploitation campaign combining high-severity vulnerabilities—the Cisco IOS XE privilege escalation fla...

Nov 03, 2025

360° Cybersecurity: Unifying Cloud and Endpoints with Automation

Oct 29, 2025

Breaking the Kernel: How Hackers Can Gain Root Access on Ubuntu

A critical vulnerability has been discovered in Ubuntu’s Linux kernel, potentially allowing local attackers to escalate their privileges and gain root access on vulnerable systems. This flaw stems from a reference count imbalance within the af_unix subsystem, leading to a use-after-free (UAF) condit...

Oct 28, 2025

Critical XWiki Vulnerability Abused in the Wild for Cryptocurrency Mining

A critical remote code execution (RCE) vulnerability (CVE-2025-24893) in XWiki, a widely-used open-source wiki platform, is being actively exploited in the wild. This exploitation leads to the deployment of cryptocurrency mining malware on compromised servers. The vulnerability allows unauthenticate...

Oct 28, 2025

QNAP NetBak Exposed: Critical ASP.NET Core Bug Enables Security Bypass

A critical security vulnerability has been identified in QNAP’s NetBak PC Agent software, stemming from a flaw in Microsoft ASP.NET Core. Tracked as CVE-2025-55315, this vulnerability allows attackers to exploit HTTP Request Smuggling techniques, potentially bypassing essential security controls and...

Oct 28, 2025

Patch Now! Apache Tomcat Vulnerabilities Expose Servers to RCE Risk

The Apache Software Foundation recently addressed two security vulnerabilities affecting multiple versions of Apache Tomcat, a widely-used open-source Java servlet container. These vulnerabilities, identified as CVE-2025-55752 and CVE-2025-55754, impact versions 9, 10, and 11 of Apache Tomcat and hi...

Oct 28, 2025

Chrome Zero-Day Exploited to Deliver Italian Memento Labs’ LeetAgent Spyware

A zero-day vulnerability in Google Chrome, identified as CVE-2025-2783, was recently exploited in the wild to deliver the LeetAgent spyware. This spyware has been linked to the Italian vendor Memento Labs, previously known as Hacking Team. The vulnerability, a sandbox escape, allowed attackers to by...

Oct 28, 2025

Triple Threat: Dell Storage Manager Flaws Put Systems at Risk

On October 24, 2025, Dell Technologies addressed three critical vulnerabilities in its Storage Manager software. These vulnerabilities could allow an attacker to bypass authentication, expose sensitive data, and gain unauthorized system access.

Oct 27, 2025

Critical RCE Flaw Hits Motex LANSCOPE, CISA Issues Warning

The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-61932, a critical security flaw in Motex LANSCOPE Endpoint Manager, to its Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation in the wild. This vulnerability allows remote attackers to execute a...

Oct 27, 2025

Threat Analysis: Bitter APT Uses C# Implant “cayote.log” in Espionage Operations

A targeted phishing campaign is exploiting a security flaw, CVE-2025-8088, to attack government, military, and electric power sectors in China and Pakistan. The operation is attributed to the cyber-espionage group Bitter APT. Attackers use phishing emails containing malicious Microsoft Excel or RAR ...

Oct 27, 2025

InfoSec World

Oct 26, 2025

Urgent: Critical SessionTakeover Flaw (CVE-2025-54236) in Adobe Commerce & Magento

A critical vulnerability, CVE-2025-54236, dubbed SessionReaper, is currently under active exploitation in Adobe Commerce and Magento Open-Source platforms. The flaw arises from improper input validation and can lead to customer account takeover and remote code execution. Security firm Sansec has rep...

Oct 23, 2025

BIND 9 Cache Poisoning Flaws Pose High Risk to DNS Reliability — CVE-2025-40778, CVE-2025-40780

On October 22, 2025, the Internet Systems Consortium (ISC) disclosed multiple vulnerabilities in BIND 9, the world’s most widely used DNS software. Among these, CVE-2025-40778 and CVE-2025-40780 present high-severity cache poisoning risks, while CVE-2025-8677 introduces a high-severity denial-of-ser...

Oct 23, 2025

ProxyCommand Panic: CVE-2025-61984 Lets Attackers Hijack SSH Clients

A newly discovered vulnerability in OpenSSH’s ProxyCommand feature, identified as CVE-2025-61984, allows remote attackers to execute arbitrary code on client systems. This critical flaw stems from the insufficient filtering of control characters within usernames when the ProxyCommand string is expan...

Oct 22, 2025

ToolShell Unlocked: Chinese-Aligned Hackers Weaponize SharePoint Zero-Day for Global Espionage

A critical vulnerability in Microsoft-SharePoint-Server (tracked as CVE-2025-53770 and part of the “ToolShell” chain) has been actively exploited by multiple China-aligned threat actors including Linen-Typhoon, Violet-Typhoon, and Storm-2603. The flaw enables unauthenticated remote code execution an...

Oct 22, 2025

Adobe AEM’s Debug Doorway: Critical RCE Under Active Exploitation

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw affecting Adobe Experience Manager (AEM) to its Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation. The vulnerability, CVE-2025-54253, has a CVSS score of 10.0, representing maxi...

Oct 20, 2025

Act Fast! SMB Vulnerability Lets Attackers Gain SYSTEM-Level Access

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a high-severity privilege escalation vulnerability in Windows Server Message Block (SMB) that is now being actively exploited in the wild. This vulnerability, tracked as CVE-2025-33073, could allow attackers t...

Oct 20, 2025

[Exclusive Launch] Experience the Future of Cloud Security with Saner RP

Oct 16, 2025

Double Zero-Day Trouble: Microsoft Races to Contain Active Windows Exploits

In the ever-evolving landscape of cybersecurity, staying ahead of emerging threats is paramount. This October, Microsoft’s Patch Tuesday addressed a staggering 183 security flaws, a clear indication of the persistent challenges faced by software vendors in safeguarding their products. Among these fi...

Oct 15, 2025

RondoDox Rampage: A Multivendor “Exploit-Shotgun” Botnet (Updated)

RondoDox is an emerging, multivector botnet that has been observed weaponizing 56 distinct vulnerabilities across 30+ device and vendor types (routers, DVRs/NVRs, CCTV, SOHO appliances, web servers, and more) to build large-scale DDoS-capable botnets and deploy secondary payloads (Mirai/Morte varian...

Oct 15, 2025

Operation Zero Disco: Exploitation of Cisco SNMP Vulnerability for Rootkit Deployment

Oct 15, 2025

Closing the Window of Risk: Endpoint and Cloud Remediation Simplified

Oct 15, 2025

Microsoft Tackles 6 Zero-Days and 172 Fixes in October 2025 Patch Tuesday

The second Tuesday of the month has arrived, and so has another major round of Microsoft security updates. For October 2025, Microsoft has released fixes for a total of 172 vulnerabilities, including 6 actively exploited zero-day flaws and 8 rated as Critical in severity.

Oct 14, 2025

CISO’s Thoughts: 1 Hour into a Cyberattack

“Why are my hands sweaty? Why is my head spinning? Why is this happening?”

Oct 13, 2025

CVE-2025-61884: Unauthenticated Data Exposure in Oracle E-Business Suite

Oracle has released an urgent Security Alert Advisory addressing a critical vulnerability in Oracle E-Business Suite, identified as CVE-2025-61884. This flaw enables remote attackers to access sensitive data or resources without requiring authentication.

Oct 12, 2025

IndoSec

Oct 12, 2025

GITEX GLOBAL

Oct 12, 2025

Patch Now: CVE-2021-43226 Windows Vulnerability Actively Exploited

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding the active exploitation of a privilege escalation vulnerability in Microsoft Windows, identified as CVE-2021-43226. This vulnerability resides within the Common Log File System (CLFS) driver and is being lever...

Oct 08, 2025

Under Medusa’s Gaze: GoAnywhere Zero-Day Powers Ransomware Attacks

A critical deserialization vulnerability in Fortra GoAnywhere MFT (CVE-2025-10035 , with a CVSS score of 10.0) has been actively exploited by a Medusa ransomware affiliate tracked as Storm-1175 to gain unauthenticated remote code execution against internet-exposed Admin Consoles. Operators exploited...

Oct 07, 2025

CVE-2025-61882: Why Clop’s Latest Oracle EBS Strike Should Scare You

Oracle E-Business Suite (EBS), a comprehensive suite of enterprise resource planning (ERP) applications, is integral to managing core business operations for numerous organizations worldwide. It handles critical functions across finance, HR, and supply chain management.

Oct 07, 2025

Patch Smarter, Not Harder: Automating Security at Scale

Oct 07, 2025

Zimbra Zero-Day Exploitation Vector: Malicious ICS Files Targeting Brazil’s Military

The discovery and exploitation of CVE-2025-27915, a stored cross-site scripting (XSS) vulnerability in Zimbra Collaboration Suite (ZCS), underscores the persistent threat posed by input sanitization flaws in widely used enterprise software. This now-patched zero-day vulnerability was actively exploi...

Oct 06, 2025

China-Linked APT Exploits VMware Zero-Day Vulnerability Active Since October 2024

A newly discovered and actively exploited local privilege escalation vulnerability in VMware Tools and Aria Operations, tracked as CVE-2025-41244, has been leveraged as a zero-day since mid-October 2024. The exploitation has been attributed to UNC5174, a China-linked advanced persistent threat (APT)...

Oct 06, 2025

it-sa Expo&Congress 2025

Oct 06, 2025

Driving Revenue Through Strategic Cybersecurity Partnerships

Every day, businesses are facing new cybersecurity threats. With tight budgets and growing security challenges, end customers are becoming more selective, demanding solutions that simplify operations while focusing on security. For cybersecurity partners, this shift represents a tremendous revenue o...

Oct 02, 2025

Secure World, Dallas

Oct 01, 2025

Practical Ways to Secure Sports Betting Platforms from Cyber Attacks

Sep 29, 2025

Technical Breakdown: How the ArcaneDoor Group Leverages Multiple Cisco Zero-Days for Stealthy Infiltration

A sophisticated, state-sponsored threat actor tracked as ArcaneDoor is actively exploiting two new zero-day vulnerabilities in Cisco firewalls. The campaign deploys a dangerous malware cocktail to conduct espionage against government networks.

Sep 28, 2025

CISA Issues Emergency Directive as Cisco ASA Zero-Day Exploited in the Wild

Cisco has issued an urgent security advisory, urging customers to patch two critical zero-day vulnerabilities affecting the VPN web server components of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software. These flaws are actively ...

Sep 25, 2025

Versa Director Zero-Day Under Siege: Volt Typhoon and Bronze Silhouette Campaign

Cybercriminal groups and nation aligned advanced persistent threats (APTs) are increasingly converging on stealth first, persistence focused, and monetization driven operations. Recent reporting shows both financially motivated actors and suspected state aligned groups actively exploiting a critical...

Sep 25, 2025

Inside UNC5221’s BRICKSTORM: Unmasking a Stealthy Espionage Backdoor

Since at least early 2025, a suspected China-nexus cluster, tracked as UNC5221, has deployed the BRICKSTORM backdoor using the vulnerabilities CVE-2023-46805 and CVE-2024-21887 to establish long-term, stealthy access to high-value targets, notably legal services, SaaS providers, BPOs, and technology...

Sep 25, 2025

How to Choose the Right CSPM Vendor

Cloud misconfigurations keep causing outages, exposure, and compliance headaches. Security teams need a clear way to evaluate cloud security posture management (CSPM) vendors without falling for checkbox features.

Sep 25, 2025

Stopping Fire Ant Hackers: SecPod’s Unified Defense for VMware Hypervisors

Sep 24, 2025

Cisco Issues Urgent Warning on Exploited IOS Zero-Day Vulnerability

The disclosure of a high-severity zero-day vulnerability in Cisco IOS and IOS XE Software exposes a critical weakness in the Simple Network Management Protocol (SNMP) subsystem. Tracked as CVE-2025-20352, the flaw is already being actively exploited in the wild, placing countless organizations at im...

Sep 24, 2025

Building a Winning Cybersecurity GTM Plan – 3 Mistakes Partners Must Avoid

Most partners don’t lose deals because the tech is bad. They lose them to avoidable GTM mistakes – building offers around tools instead of prevention outcomes, overlooking the economics of a fragmented stack, and showing weak proof of value. Fix those three, and your pipeline, margins, and renewals ...

Sep 23, 2025

CVE-2025-26399: SolarWinds Patches Critical Remote Code Execution Vulnerability

SolarWinds has issued hotfixes to patch a critical Web Help Desk security vulnerability that could enable remote attackers to execute arbitrary commands on impacted systems.

Sep 23, 2025

From License to Root: Critical Flaw in Fortra GoAnywhere MFT

A critical vulnerability has been identified in Fortra’s GoAnywhere Managed File Transfer (MFT) platform, posing a significant risk to organizations that rely on this software for secure file exchange. The flaw, identified as CVE-2025-10035, has been assigned a CVSS score of 10.0, the highest possib...

Sep 21, 2025

Automating Endpoint Management: Best Practices for IT Teams

Every organization in the world relies on laptops, mobile devices, servers, and IoT equipment. Each device provides business applications and but also might hold sensitive data, which can pose a potential risk if left unmanaged. Manually checking and managing these endpoints is practically impossibl...

Sep 21, 2025

Firewall on Fire: Critical CVE-2025-9242 Hits WatchGuard Firebox

WatchGuard has issued urgent security updates to address a critical vulnerability, CVE-2025-9242, affecting its Firebox firewalls. This high-severity flaw could allow a remote, unauthenticated attacker to execute arbitrary code on vulnerable devices, potentially leading to complete system compromise...

Sep 21, 2025

Remediation Rollback in Saner Cloud Makes Prevention Practical

Security teams move fast when they know a change is reversible. Remediation Rollback in SecPod’s Saner Cloud gives your team that safety net, so you can fix risky configurations without hesitation, keep production steady, and block attack paths before they’re exploited. Pair that with continuous vis...

Sep 21, 2025

How the TP-Link 0-Day Bypasses ASLR: A Technical Post-Mortem

A critical zero-day remote code execution (RCE) vulnerability, identified as CVE-2025-9961, with CVSS and EPSS scores of 8.6 and 0.10% respectively, has been discovered in TP-Link routers. Security researchers have released a proof-of-concept (PoC) exploit, demonstrating how attackers can bypass Add...

Sep 18, 2025

Patch Management for Partners: How to Capitalize on Rising Demand

Patch management plays a crucial role in keeping business operations running smoothly, but do organizations treat it as a business priority? No, it is not.

Sep 18, 2025

Organization Report Views Built Your Way

Organization-level report views bring reporting into one shared space where teams work from the same numbers, follow the same structure, and move faster. Create unlimited custom views for Multi-cloud, AWS, or Azure, share them with the right people, and keep everything current with quick refreshes f...

Sep 18, 2025

TA558: AI-Powered Attacks Target Hospitality Sector

A persistent cybercriminal group tracked as TA558, also known by aliases such as RevengeHotels, has been actively targeting hospitality, hotel, and travel organizations since at least 2015. This group, primarily financially motivated, has evolved its tactics, techniques, and procedures (TTPs) to inc...

Sep 17, 2025

Worm in the Code: npm Supply Chain Attack Compromises 40+ Packages

A major supply chain attack has been uncovered in the npm ecosystem, where more than 40 widely used packages were found compromised. The campaign, powered by a self-replicating malware dubbed “Shai-Hulud”, is actively spreading and exfiltrating sensitive credentials. Developers and organizations usi...

Sep 17, 2025

Strengthening Cloud Security with Cyber Hygiene Score in Saner Cloud

Cloud adoption has become an integral part of modern organizations. From small startups to large enterprises, everyone is shifting workloads to the cloud to gain flexibility, scalability, and cost efficiency. But as cloud usage grows, so does the complexity of managing security across multiple accou...

Sep 17, 2025

Saner Cloud Updates: Cyber Hygiene Scoring for a Stronger Posture

Sep 17, 2025

Deserialization Derailment: Dassault’s DELMIA Flaw Goes Live

DELMIA Apriso is utilized in production processes for digitalization and monitoring, with widespread deployment in automotive, aerospace, electronics, high-tech, and industrial machinery divisions. It supports various functions, including production scheduling, quality management, resource allocatio...

Sep 15, 2025

Linux CUPS: Remote DoS and Authentication Bypass Exploit

The discovery of CVE-2025-58364 and CVE-2025-58060 reveals two critical weaknesses in the Linux Common Unix Printing System (CUPS). Exploiting these vulnerabilities could enable remote denial-of-service and authentication bypass attacks, endangering millions of systems that rely on CUPS as a fundame...

Sep 15, 2025

“MadeYouReset” HTTP/2 Attack (CVE-2024-45288) How It Puts Revenue, Customers, and Business Continuity at Risk

A new cyberattack called MadeYouReset can crash websites and apps that rely on the HTTP/2 protocol.

Sep 14, 2025

CVE-2025-26633 “MSC EvilTwin”: The One-Click Windows Exploit That Can Lead to Data Theft, Downtime, and Ransom Demands

A new Windows weakness in Microsoft Management Console (MMC), tracked as CVE-2025-26633 and nicknamed “MSC EvilTwin,” is being used by an advanced threat group Water Gamayun (also known as EncryptHub/LARVA-208 to bypass security checks and run malicious code.

Sep 14, 2025

Why Teams Miss Critical Risks – Anatomy of a Prioritization Failure

In cybersecurity, breaches don’t usually stem from a lack of tools. Most organizations already own an alphabet soup of platforms – EDR, CSPM, SIEM, IAM, vulnerability scanners, and more. They also don’t usually stem from a lack of alerts. In fact, the average SOC processes thousands of alerts per da...

Sep 11, 2025

WeepSteel Rises: Attackers Exploit Critical Sitecore Deserialization Bug

A critical zero-day vulnerability in Sitecore, tracked as CVE-2025-53690, has been exploited in the wild to deploy the WeepSteel backdoor. This flaw, an insecure deserialization issue, allows attackers to craft malicious ViewState payloads using default or sample ASP.NET machineKey values. Exploitat...

Sep 11, 2025

Saner Cloud – Your Ticket to Enter the Cloud Security Conversation with Enterprise Buyers

Cloud is no longer a side note in enterprise IT. It is the enterprise. Business-critical applications, customer data, and digital infrastructure now live in AWS and Azure, managed by fast-moving DevOps and cloud teams.

Sep 11, 2025

Built for Partners – The Unified Security Platform You Can Rely On – Saner Platform

In the enterprise cybersecurity market that has been getting increaasingly complex, partners today face a dilemma. Enterprises are spending more than ever on security, yet breaches, misconfigurations, and compliance failures keep making headlines. Budgets are fragmented across point solutions, but e...

Sep 11, 2025

Critical SessionReaper Flaw in Adobe Commerce Puts Customer Accounts at Risk

A critical vulnerability, CVE-2025-54236, dubbed “SessionReaper,” has been identified in Adobe Commerce and Magento Open Source platforms, potentially allowing attackers to seize control of customer accounts. The severity of this flaw has prompted Adobe to release an emergency patch outside of its r...

Sep 09, 2025

Critical Chrome Security Update Patches Remote Code Execution Flaws

Google has released an urgent security update for the Chrome browser across Windows, Mac, and Linux platforms to address critical vulnerabilities that could enable remote attackers to execute arbitrary code. Chrome users are strongly encouraged to update their browsers immediately to safeguard again...

Sep 09, 2025

81 Flaws Fixed, Two Zero Days In Microsoft’s September 2025 Patch Tuesday

The biggest day of the month is here! This Patch Tuesday, Microsoft has released patches for 81 flaws, including 9 critical bugs and 2 zero-days.

Sep 09, 2025

FortiDDoS Appliances Vulnerable to OS Command Injection, Urges Immediate Patching

Fortinet has recently addressed a medium-severity OS command injection vulnerability, CVE-2024-45325, in its FortiDDoS-F appliances. This flaw could allow a privileged attacker to execute unauthorized commands via the command-line interface (CLI). Given the critical role FortiDDoS-F appliances play ...

Sep 09, 2025

Monitoring Events & Actions, Essential Elements, and Top Highlights

Event logs capture security-related events, including details such as the user or service that initiated an action, the resources affected by the activity, the timing of the action, and the actions taken along with their impact. These logs can be utilized to identify potential security breaches or u...

Sep 08, 2025

ImageMagick RCE Vulnerability: A Hacker’s Magic Wand

A high-severity security vulnerability, CVE-2025-57803, has been identified in ImageMagick, a widely used open-source image processing software. This flaw could allow remote attackers to execute arbitrary code on vulnerable systems. The vulnerability stems from a 32-bit integer overflow within the B...

Sep 02, 2025

Saner Cloud Product Updates That Speed Outcomes and Raise Confidence

Recent updates focus on faster time to value, safer reversals, and clearer paths from insight to action.

Sep 01, 2025

Meet Cloud Cyber Hygiene Score as Your Single Measure for Risk

Security teams juggle many findings and dashboards across accounts. A single, consistent score helps decide what to fix first, then shows progress with less debate. That is the purpose of Cloud Cyber Hygiene Score.

Sep 01, 2025

FreePBX Rings Red: Zero-Day Lets Attackers Dial in as Root

FreePBX administrators are facing urgent calls to secure their systems against an actively exploited zero-day vulnerability in the commercial Endpoint Manager module. The Security Team has confirmed that this critical flaw, identified as CVE-2025-57819, allows attackers to execute code remotely on v...

Aug 31, 2025

Cloud Sprawl: The Hidden Risk Lurking in Your IT Environment

Cloud adoption has skyrocketed in the past decade, transforming how businesses operate. Organizations now enjoy the benefits of scalability, flexibility, and cost savings by moving workloads to the cloud. However, rapid adoption without governance has also given rise to a major challenge: cloud spra...

Aug 28, 2025

Risks, Trigger Points, Alert Types, Purpose, and Action Plans for Cloud Security Alerts

As businesses start to expand their cloud environments, protecting dynamic infrastructure becomes more crucial. In this situation, cloud security alerts can be used to handle important security issues. As soon as a deviation occurs from the expected behavior, these alerts notify the DevOps and secur...

Aug 28, 2025

Critical Chrome Update: Patch CVE-2025-9478 Before Attackers Strike

A critical security update has been released for the Chrome Stable channel to address a use-after-free vulnerability in the ANGLE graphics library. This flaw, identified as CVE-2025-9478, could allow attackers to execute arbitrary code on vulnerable systems.

Aug 28, 2025

Solving the Regional Compliance Struggle

Compliance has become the entry point for many sales conversations, but it is also the point where deals stall. Each region now has its own rules, deadlines, and penalties, forcing organizations to juggle overlapping requirements while staying ahead of fast-moving cyber threats. For security leaders...

Aug 28, 2025

Stealth in the Storm! Breaking Down Salt Typhoon’s Global Cyber Campaign

Salt Typhoon, a China-linked advanced persistent threat (APT) group, has been conducting a persistent cyber-espionage campaign since at least 2019. The group targets telecommunications providers, government agencies, transportation, lodging, and military infrastructure worldwide, exploiting vulnerab...

Aug 28, 2025

Secure by Default! Everytime with SecPod Default Compliance Benchmarks

Security isn’t a one-time activity — it’s a continuous commitment.With SecPod Default Compliance Benchmarks, make “Secure by Default” not just a goal, but your standard.

Aug 28, 2025

5 Signs You Have a Visibility Gap – And Why A Prevention-First Philosophy Is The Only Remedy

The cybersecurity industry of today has matured tools for discovery and detection – what it has not institutionalized at scale is closure. Modern security programs can show long lists of vulnerabilities, misconfigurations, policy violations and alerts – and still be vulnerable. Attackers succeed not...

Aug 28, 2025

Transforming the Cybersecurity Posture of Financial Services using Saner CVEM

Aug 28, 2025

Security Advisory: Citrix Addresses Three NetScaler Vulnerabilities Including Actively Exploited CVE-2025-7775

On August 26, 2025, Citrix released a security bulletin addressing three newly disclosed vulnerabilities in NetScaler ADC and NetScaler Gateway appliances. One of these, CVE-2025-7775, has already been confirmed as actively exploited in the wild as a zero-day vulnerability.

Aug 27, 2025

Code Red: How to Shield Hospitals from the Next Ransomware Attack

Aug 26, 2025

Growing Together – 17 Years of Building SecPod’s Culture

Seventeen years is a long time in technology. Startups rise, buzzwords come and go, and entire industries transform in less time. At SecPod, these years have been more than a journey of building products – they’ve been about building a culture.

Aug 25, 2025

Gayfemboy Malware Emerges: Next-Gen Mirai Variant Targets Cisco and TP-Link Routers

FortiGuard Labs has uncovered a new malware strain dubbed Gayfemboy, a Mirai successor that aggressively targets routers and critical networking gear from Cisco, TP-Link, DrayTek, and Raisecom. The campaign exploits multiple CVEs to compromise infrastructure devices, establish long-term persistence,...

Aug 25, 2025

PolarEdge, Gayfemboy, and EAGLEDOOR: Botnets and APTs Exploit GeoServer Vulnerability

Cybercriminals and advanced persistent threat (APT) actors are increasingly converging on a stealth-first, profit-driven, and persistence-focused model of operations. Recent discoveries highlight how both financially motivated threat groups and nation-state-backed APTs are exploiting known vulnerabi...

Aug 24, 2025

What Is Containers-as-a-Service (CaaS)?

Modern software teams are increasingly adopting container technology to deploy applications more efficiently. However, running hundreds of containers at scale and managing the underlying infrastructure can become complicated. This is where Containers-as-a-Service (CaaS) comes in as a cloud-based sol...

Aug 21, 2025

Prevention is Not Optional – Redefining Cybersecurity Beyond Detection

Cybersecurity today is trapped in a paradox. Organizations are investing more than ever in security tools, analysts, and compliance frameworks. Dashboards are brighter, alerts louder, and budgets bigger. Yet breaches are not slowing – they are accelerating.

Aug 21, 2025

Cloud Workload Protection: Safeguarding the Backbone of Modern Enterprises

The cloud has become the backbone of modern enterprises. From running critical business applications to storing sensitive data, organizations are relying heavily on cloud workloads to stay agile, innovative, and competitive. But with this shift comes a stark reality: cloud workloads are among the mo...

Aug 21, 2025

Data poisoning risks and defenses for AI teams

Attackers no longer need direct access to production systems when they can taint training sets and push models off course. Data poisoning refers to corrupting or crafting samples in training data, so models internalize harmful patterns, misclassify targets, or behave differently when a hidden trigge...

Aug 21, 2025

Apple Fixes CVE-2025-43300 Zero-Day: Protect Your iOS, iPadOS & macOS Now

A firmware-level security nightmare is unfolding across millions of Apple devices worldwide. Trusted by governments, cybersecurity professionals, and enterprise organizations to protect sensitive data, these systems are now exposed to a sophisticated attack vector that bypasses the critical code-sig...

Aug 21, 2025

Paper Werewolf Group Exploits WinRAR Zero-Day to Spread Malware

The cyber-espionage group Paper Werewolf (also identified as GOFFEE) is exploiting a zero-day flaw in WinRAR to target Russian entities. The campaign relies on phishing emails and weaponized archive files to evade defenses and deliver malware, underscoring the need for timely patching and proactive ...

Aug 21, 2025

SUDO Vulnerabilities put Data, Operations, and Compliance at risk

Two recent SUDO vulnerabilities (CVE-2025-32462, CVE-2025-32463) let a local user gain root-level access and gain full control of the machine. Apply the vendor patches immediately and reduce SUDO privileges on critical systems to avoid data loss, operational downtime, and regulatory risks.

Aug 20, 2025

Exploitation in Progress: Apache ActiveMQ Vulnerability Used to Deliver DripDropper Malware

A critical remote code execution (RCE) vulnerability in Apache ActiveMQ is being actively exploited to deliver DripDropper, a sophisticated malware designed for persistent access and stealthy operations on cloud systems. The vulnerability, identified as CVE-2023-46604, allows unauthenticated attacke...

Aug 20, 2025

Cloud Security as the New Revenue Frontier

The shift toward cloud security has reshaped how organizations manage IT, and it offers partners new ways to create value. Hardware resale and short-term consulting are giving way to ongoing services that promise steadier returns. Businesses now expect help managing risks, compliance, and visibility...

Aug 20, 2025

Inside the Exploit Chain: How Cybercriminals Weaponize Windows CLFS to Deploy PipeMagic Ransomware

A critical security flaw in Microsoft Windows, tracked as CVE-2025-29824, has recently been weaponized in targeted ransomware campaigns, leveraging a sophisticated privilege escalation vulnerability in the Windows Common Log File System (CLFS). This zero-day vulnerability has allowed threat actors—m...

Aug 19, 2025

Partner Opportunity in Securing the Rise of Cloud Workloads

Cloud adoption is accelerating across industries, where many organizations now run about half of their workloads in public cloud environments, with most using more than one provider. This trend delivers scalability and flexibility but also creates security complexity. Nearly all companies use at lea...

Aug 19, 2025

What Is Cyber Resilience, Why Does It Matter, and How to Achieve It

Cyber resilience has emerged as a foundational strategy for organizations facing an onslaught of cyber threats. High-profile data breaches, ransomware attacks, and IT outages have made it clear that preventing attacks alone is not enough. Companies must also be able to withstand incidents and keep o...

Aug 19, 2025

Bridging IT and Cloud for Holistic Risk Prevention

Walk into any enterprise today and you’ll hear the same story told in two different languages.

Aug 18, 2025

Inside the MSC EvilTwin Exploit Chain – How APTs Bypass MMC Security

A critical security feature bypass vulnerability in Microsoft Management Console (MMC), identified as CVE-2025-26633, has been weaponized in targeted attacks by Russian-aligned threat actors. This flaw, dubbed “MSC EvilTwin,” enables attackers to craft specially manipulated .msc files and provisioni...

Aug 17, 2025

New MadeYouReset Exploit Bypasses HTTP/2 DoS Protections

A novel attack technique named MadeYouReset has been discovered, targeting multiple implementations of the HTTP/2 protocol. This flaw, sitting at a comfortable 7.5 on the CVSS scale, allows attackers to bypass existing mitigations and launch significant denial-of-service (DoS) attacks. The vulnerabi...

Aug 17, 2025

Filter, Visualize, Automate, and Distribute Report Views for Cloud Data Analysis

Report Views provide a structured, customizable, and interactive way to explore and interpret data related to asset exposure, posture anomalies, patch management, entitlement management, and posture management. Whether you need a high-level compliance summary or a detailed analysis of specific misco...

Aug 17, 2025

Act Now: Cisco FMC RADIUS Flaw Allows Unauthenticated Remote Code Execution

Cisco has recently addressed a critical security vulnerability, CVE-2025-20265, in its Secure Firewall Management Center (FMC) Software. With a maximum CVSS score of 10.0, this flaw poses a significant risk, potentially allowing unauthenticated, remote attackers to execute arbitrary shell commands o...

Aug 17, 2025

Data Leakage: How It Happens, What It Costs, and How to Stop It

Sensitive information continues to slip out of companies in ways that don’t involve sophisticated breaches or nation-state actors. Files, credentials, and communications are often exposed due to everyday mistakes or quiet misuse. These incidents rarely generate headlines, yet they cost companies mil...

Aug 13, 2025

Top 5 Ways Partners Make Recurring Revenue in Cybersecurity

Cybersecurity is no longer a one-time project; it’s an everyday necessity. For partners in the industry, that means the real opportunity isn’t just in landing big deals, but in building steady, reliable income that keeps growing over time. Recurring revenue is the key. It smooths out the ups and dow...

Aug 13, 2025

FortiSIEM Vulnerability CVE-2025-25256: Unauthenticated OS Command Injection Now Active

Fortinet has issued a critical security advisory regarding a high-severity vulnerability in its FortiSIEM platform, identified as CVE-2025-25256. This flaw, which has a CVSS score of 9.8, is a remote, unauthenticated command injection vulnerability that can allow attackers to execute unauthorized co...

Aug 13, 2025

Zero Trust Under Fire: Critical Flaws Expose Check Point, Zscaler, and Netskope Users

Security researchers have uncovered critical vulnerabilities in leading Zero Trust Network Access (ZTNA) solutions from major cybersecurity vendors, including Zscaler, Netskope, and Check Point. These findings, presented at DEF CON 33 in Las Vegas, highlight potential authentication bypasses, privil...

Aug 12, 2025

107 Flaws Fixed, One Zero Day In Microsoft’s August 2025 Patch Tuesday

August’s Patch Tuesday has arrived! This month, Microsoft has released patches for 107 flaws, including 13 critical bugs and one zero-day.

Aug 12, 2025

WinRAR CVE-2025-8088: RomCom’s Doorway to Remote Code Execution

A critical vulnerability in WinRAR, identified as CVE-2025-8088, was exploited as a zero-day in targeted phishing attacks to deploy RomCom backdoors. This flaw, a directory traversal vulnerability, allows attackers to craft malicious archives that place executable files in Windows Startup folders, e...

Aug 11, 2025

15000 Jenkins Servers Exposed to Unauthenticated RCE Attack

A recently identified command injection vulnerability, CVE-2025-53652, in the Jenkins Git Parameter plugin puts approximately 15,000 Jenkins servers at risk of remote code execution (RCE). This flaw could allow attackers to compromise unauthenticated Jenkins servers, potentially leading to significa...

Aug 10, 2025

Retbleed Reloaded: New Exploit Pierces CPU Memory Defenses

Security researchers have recently demonstrated a significantly improved exploit for the Retbleed CPU vulnerability, highlighting the ongoing risks posed by speculative execution flaws in modern processors. This exploit allows attackers to read arbitrary memory from affected systems, bypassing secur...

Aug 10, 2025

Dangerous Linux Kernel Exploit Targets Chrome Users for Full Control

Executive SummaryA critical vulnerability in the Linux kernel, identified as CVE-2025-38236, enables attackers to escalate privileges from the Chrome renderer sandbox to full kernel-level control on affected Linux systems. Immediate patching is essential, as successful exploitation grants attackers...

Aug 10, 2025

Ghost Calls: Stealthy C2 Attack Exploits Zoom, Teams, and Meet

A novel attack technique dubbed “Ghost Calls” has emerged, exploiting web conferencing platforms like Zoom, Microsoft Teams, and Google Meet to create covert command and control (C2) channels. This sophisticated method allows attackers to bypass traditional network security measures, making it a sig...

Aug 10, 2025

Global Regulations and Best Practices for Data Compliance in 2025

Data compliance has become a top concern for organizations worldwide. With governments enacting new data protection laws across the globe, businesses must handle personal and sensitive information more carefully than ever. In fact, by the end of 2024, 144 countries implemented national data privacy ...

Aug 10, 2025

HTTP/1.1 Vulnerability: A Looming Threat to Millions of Websites

A fundamental vulnerability within the HTTP/1.1 protocol poses a significant threat to millions of websites, potentially allowing attackers to execute hostile takeovers through sophisticated request smuggling attacks. This flaw, rooted in the protocol’s design, creates ambiguity in request boundarie...

Aug 07, 2025

UAC-0099’s New Weapon: The WinRAR Exploit You Can’t Ignore

A critical vulnerability in WinRAR, identified as CVE-2023-38831, is being actively exploited by threat actors to execute arbitrary code on a victim’s machine. This flaw allows attackers to craft malicious ZIP archives that can deliver malware when a user attempts to view a seemingly benign file. Th...

Aug 07, 2025

DoS Attacks: The Silent Threat That Can Take Down Any System

One minute, your website is working perfectly. Customers are browsing, logging in, placing orders. Then out of nowhere, it all stops. Pages won’t load. Nothing works. And your support inbox is blowing up with complaints.

Aug 07, 2025

Approach, Focuspoint, and Essentials for Effective Watchlists

In complex cloud environments, maintaining a strong security posture begins with understanding what is important. Watchlists provide a strategic approach to monitoring critical infrastructure, allowing security teams to concentrate their efforts on the most sensitive and high-impact assets.

Aug 06, 2025

Critical Trend Micro Apex One Bugs (CVE-2025-54948, CVE-2025-54987) Now Actively Exploited

Trend Micro has warned that attackers target critical unauthenticated command injection vulnerabilities (CVE-2025-54948, CVE-2025-54987) in its on-premise Apex One endpoint security product.

Aug 06, 2025

New Microsoft Exchange Server Vulnerability Allows Privilege Escalation to Admin

A significant security flaw, CVE-2025-53786, has been discovered in Microsoft Exchange Server hybrid environments. This flaw could enable attackers with on-premises administrative privileges to escalate their access within connected cloud systems. Publicly disclosed on August 6, 2025, the vulnerabil...

Aug 06, 2025

Critical: Raspberry Robin Deploys CLFS Exploit to Escalate Privileges on Windows

The Raspberry Robin malware, a sophisticated and evolving threat, actively exploits a new vulnerability in Windows systems. First identified in 2021, this malware, also known as Roshtyak, has moved beyond its initial distribution via infected USB drives. It now incorporates a critical privilege esca...

Aug 05, 2025

Hackers Beware: Dell Laptop Firmware Vulnerabilities Put Credentials at Risk

A firmware-level security nightmare is unfolding across millions of Dell laptops worldwide. The devices trusted by government agencies, cybersecurity professionals, and enterprise organizations to protect their most sensitive data are now vulnerable to a sophisticated attack vector that could render...

Aug 05, 2025

Squid Proxy Under Threat: Critical Bug Enables Remote Code Execution

A critical vulnerability has been discovered in the Squid Web Proxy server, which could allow remote attackers to execute arbitrary code on affected systems. This vulnerability affects multiple versions and may impact many systems relying on Squid for caching and proxy functionality.

Aug 04, 2025

Espionage in Plain Sight: Telecoms Breached by CL-STA-0969 Group

China-nexus espionage group, tracked as CL-STA-0969 and overlapping with “Liminal Panda,” is actively targeting telecommunications organizations in Asia. This sophisticated campaign, observed between February and November 2024, leverages brute-force attacks for initial access, followed by the exploi...

Aug 03, 2025

Top Cloud CSPM Vendors in 2025: The Ultimate Guide

Cloud Security Posture Management (CSPM) tools are essential for organizations looking to secure their cloud infrastructure. With the rise in cloud adoption by companies of all sizes, managing cloud security has become increasingly complex. CSPM solutions are designed to continuously monitor and ide...

Jul 31, 2025

What is Malware? Understanding the Threat Lurking Behind the Screen

In today’s hyper-connected digital world, cyber threats have grown in complexity, scale, and destructiveness. At the heart of many of these threats lies one potent tool: malware. Short for “malicious software,” malware refers to any software intentionally designed to cause damage to a computer, serv...

Jul 31, 2025

The 10 Years Club – With Maneesh, The Calm in Our Core Systems

Some engineers build software. Some build systems. A few rare ones quietly build the stage everyone else performs on – and never ask for the spotlight.

Jul 31, 2025

What makes cloud firewalls worth paying attention to

Cloud infrastructure has become the backbone of modern business operations. As more workloads shift to public and hybrid cloud environments, organizations face new types of traffic exposure that traditional perimeter tools weren’t designed to handle. Internal traffic between workloads, east-west com...

Jul 31, 2025

Top CWPP Vendors in 2025: The Ultimate Guide

Here’s a fun fact. Cloud Workload Protection Platforms (CWPPs) are no longer optional but essential. As cloud-native architectures grow more complex and cyber threats become more sophisticated, organizations are turning to CWPP solutions to lock down workloads across public, private, and hybrid clou...

Jul 30, 2025

Joint Threat to Safari and Chrome Users – Patch CVE-2025-6558 Now

Apple has rolled out critical security updates across its platforms to address a high-severity vulnerability in the WebKit engine. This flaw, tracked as CVE-2025-6558, was exploited as a zero-day in Google Chrome and could potentially impact Safari and other Apple applications relying on WebKit. The...

Jul 30, 2025

Automating Patch and Compliance Updates Safely with Test and Deploy for Automation

Rolling out patches and configuration fixes across hundreds or thousands of systems is a constant balancing act. IT and security teams need to act quickly to remediate vulnerabilities and enforce policies, but rushing an untested update can lead to unexpected outages or compliance drift. Traditional...

Jul 30, 2025

Cyber Security Workshop 01 : Crafting an Effective Patch Management Plan

Jul 30, 2025

Leading the Prevention First Revolution: Joining Forces with SecPod for Unified, Scalable Security

Jul 30, 2025

Auto-Color Backdoor Weaponizes SAP Flaw for Stealthy Access

A critical zero-day vulnerability in SAP NetWeaver, CVE-2025-31324, is being exploited to deliver “Auto-Color,” a stealthy Linux backdoor. The vulnerability allows for unauthenticated remote code execution (RCE), enabling attackers to achieve full system compromise. Multiple threat actors, including...

Jul 29, 2025

Microsoft Uncovers Sploitlight: How a Spotlight Plugin Flaw Evades macOS TCC Protections

Microsoft Threat Intelligence recently disclosed a serious macOS vulnerability dubbed Sploitlight. It tracked as CVE-2025-31199 that leverages Spotlight importer plugins to bypass Apple’s Transparency, Consent, and Control (TCC) framework and exfiltrate files normally off-limits, including Apple Int...

Jul 28, 2025

Privileged Path Hijack: Eye Security Exposes Root-Level Vulnerability in Copilot Enterprise

SummaryOn April 18, 2025, Eye Security researchers identified a critical privilege escalation issue in Microsoft Copilot Enterprise’s live Python sandbox (Jupyter Notebook–based). A misconfigured entrypoint script (keepAliveJupyterSvc.sh) ran pgrep without using a full path. Because the $PATH Priori...

Jul 28, 2025

What You Can’t See Will Breach You

In cybersecurity, visibility is everything. And yet, most organizations operate in the dark far more than they realize.

Jul 27, 2025

Virtual Environments Under Fire: Fire Ant Campaign Breaches VMware Systems

A threat actor, codenamed Fire Ant, has targeted virtualization and networking infrastructure as part of a prolonged cyber-espionage campaign uncovered in 2025. The attackers focused on exploiting vulnerabilities and abusing trusted management tools to gain persistent, hypervisor-level access across...

Jul 27, 2025

DDoS Attack – Everything You Need to Know

Imagine your business website grinding to a halt. But it’s not the usual suspects, a technical glitch or human error, but because thousands of hijacked devices are hammering it with traffic, second after second. Not a single request is legitimate, yet your servers are overwhelmed and your customers ...

Jul 24, 2025

Hackers Weaponize SharePoint 0-Day: Widespread Exploitation Ongoing

A critical zero-day vulnerability chain, called “ToolShell,” is actively exploited in Microsoft SharePoint Server on-premises environments. This sophisticated attack vector leverages vulnerabilities to achieve unauthenticated remote code execution (RCE), bypass multi-factor authentication, and enabl...

Jul 24, 2025

SonicWall Fixes Actively Exploited SMA 100 Vulnerability Used in Overstep Attacks

A critical zero-day flaw in SonicWall SMA 100 VPN appliances is being leveraged in the wild to distribute Overstep, a stealth malware capable of maintaining persistent access, stealing credentials, and executing lateral attacks. The vulnerability allows remote code execution without authentication, ...

Jul 24, 2025

Streamline Endpoint Security and Compliance at Scale

Security service providers are under increasing pressure to do more with less time. Clients expect faster response, tighter control, and measurable outcomes, but the expanding number of tools required to deliver those results often leads to the opposite. Managing a fragmented stack across multiple e...

Jul 24, 2025

Patch Now: SonicWall Addresses Critical CVE-2025-40599 in SMA Appliances Amid Exploit Risk

SonicWall has released a patch for a critical vulnerability, CVE-2025-40599, affecting its Secure Mobile Access (SMA) 100 series appliances and is urging customers to apply the update as soon as possible. While there is no current evidence of active exploitation of this specific vulnerability in the...

Jul 24, 2025

Red Team vs Blue Team in Cybersecurity

In the ever-evolving battlefield of cybersecurity, organizations adopt military-inspired strategies to test, strengthen, and evolve their defenses. Two key players dominate this simulated war zone: the Red Team and the Blue Team.

Jul 23, 2025

Faster Delivery of Vulnerability Scanning for Security Platforms

Vulnerability detection is becoming a baseline expectation in security product evaluations. Buyers want tools that go beyond runtime signals to identify known software flaws across managed systems. They ask how exposures are linked to assets, how often the data is updated, and whether those results ...

Jul 23, 2025

Why the CIS Benchmarks are the Gold Standard for Secure Configurations

Misconfigured network infrastructure continues to be one of the biggest cybersecurity concerns for organizations everywhere. In one study, 82% of enterprises experienced security incidents due to cloud misconfigurations. Organizations clearly need a reliable way to lock down systems and prevent such...

Jul 23, 2025

Data leak: the key business risk posed by CVE-2017-8529

Information disclosure vulnerabilities are known to cause data confidentiality to be lost. One such vulnerability is CVE-2017-8529, found in Microsoft Internet Explorer can expose sensitive browser data.

Jul 23, 2025

Why Unified Security Intelligence Is Critical to Strengthen Your Security Posture

Jul 23, 2025

PhillSec 2026

Jul 21, 2025

Still Selling ‘Detect and Respond’? Why It’s Time for Partners to Move to Prevent and Protect

The cybersecurity industry has long centered its value on detection and response. The logic made sense at the time – if you could detect breaches faster and respond smarter, you could minimize the damage. It gave rise to the now-standard security stack –  SIEMs, EDRs, XDRs, and MDRs. And for years, ...

Jul 20, 2025

Prevent vs. React – The New Security Mindset Every CISO Needs in 2025

2025 is shaping up to be a turning point in cybersecurity. Not because threats are new – but because the old ways of dealing with them are breaking down. Faster attacks. Smarter attackers. Heavier regulatory pressure. Rising costs. And an overwhelming volume of security data that rarely translates i...

Jul 20, 2025

How to Package Prevention-First Cybersecurity for Large Enterprise Clients – A Guide for Partners

Large enterprises are not short on security tools – they’re short on meaningful risk reduction. The reality is this – vulnerability backlogs stretch into the thousands, misconfigurations are left unresolved, and security policies are inconsistently enforced across hybrid environments.

Jul 20, 2025

CNAPP vs CWPP: Too Many Acronyms, Not Enough Clarity

How many acronyms are too many? With a new category being created seemingly every other day in cybersecurity, keeping up with it all can be exhausting. Even in the cloud security market, CNAPP, CWPP, CSPM, and other acronyms might confuse you. In this blog, let’s dig deeper into CNAPP vs CWPP, the t...

Jul 17, 2025

Cybersquatting: The Overlooked Threat Behind Phishing and Fraud

Misleading domain names are fast becoming a preferred entry point for attackers. Cybersquatting, where malicious actors register web domains that resemble legitimate brands, is no longer limited to legal disputes or trademark violations. These deceptive domains now serve as delivery mechanisms for p...

Jul 17, 2025

Automating IT Tasks at Scale with Remote Scripting

In today’s complex IT environments, managing a growing network of endpoints across multiple platforms and locations is no small feat. As remote work becomes the norm and endpoint diversity increases, IT and security teams are under more pressure than ever to maintain control, troubleshoot quickly, a...

Jul 17, 2025

Signs, Impact, and Implementation Blueprint to Detect Cloud Misconfigurations

Cloud misconfigurations are one of the typical and yet often overlooked threats in cloud environments. They can result in data breaches, compliance violations, and operational disruptions. This article examines the signs of misconfigurations, including unexpected public access, unusual traffic patte...

Jul 17, 2025

The Hidden Limits of AWS Cloud Security

AWS cloud security plays a foundational role in enterprise infrastructure, but its effectiveness declines when organizations adopt multicloud or hybrid-cloud strategies. A 2024 State of the Cloud Report shows that 89% of enterprises now operate in multicloud environments, spanning AWS, Azure, and Go...

Jul 17, 2025

What's New in Saner CVEM 6.5?

Jul 17, 2025

Remote Code Execution Risks Found in VMware ESXi and Workstation

Broadcom has recently addressed multiple critical vulnerabilities affecting VMware ESXi, Workstation, Fusion, and Tools. These vulnerabilities could allow attackers to execute malicious code on host systems, potentially leading to complete system compromise. The vulnerabilities, CVE-2025-41236, CVE-...

Jul 16, 2025

Top 5 Cloud Computing Misconceptions and Myths

Cloud computing has transformed how organizations build, deploy, and manage applications and services. Yet, myths rooted in yesterday’s realities can obscure today’s possibilities. In this blog, we unpack five pervasive misunderstandings, show why each no longer applies, and point you to up-to-date ...

Jul 16, 2025

3 Sales Triggers to Pitch Vulnerability Management to Your Customers

Crafting a compelling pitch around vulnerability management starts with knowing exactly when your customers are most receptive. As a partner alliance manager for MSPs, your role is to spot those moments and guide prospects to recognize how proactive risk reduction pays off in the form of lowered inc...

Jul 16, 2025

Google Chrome Zero-day Vulnerability Actively Exploited in the Wild

Google has urgently released a security update for its Chrome browser to address a zero-day vulnerability, CVE-2025-6558, which is currently being exploited in the wild. This update also includes patches for two additional high-severity flaws CVE-2025-7656 and CVE-2025-7657 making immediate action e...

Jul 15, 2025

Wing FTP Under Siege: Critical Vulnerability Actively Exploited

A critical vulnerability, CVE-2025-47812, in Wing FTP Server is under active exploitation, allowing unauthenticated remote code execution with root or SYSTEM privileges. This flaw has a CVSS score of 10.0, marking it highly severe.

Jul 15, 2025

Security-as-a-Service Checklist: Are You Offering the Right Features?

Security-as-a-Service (SECaaS) has emerged as a vital business opportunity for MSPs, MSSPs, and IT service providers. As cybersecurity challenges grow in complexity, more enterprises are turning to trusted partners for efficient, scalable, and cost-effective protection. But with the rapid evolution ...

Jul 15, 2025

Token Based SQLi in FortiWeb: Users Urged to Patch this Critical Flaw

A critical security vulnerability, CVE-2025-25257, has been discovered in FortiWeb web application firewalls, potentially allowing unauthenticated attackers to execute unauthorized SQL commands. This vulnerability, classified as CWE-89 (Improper Neutralization of Special Elements used in an SQL Comm...

Jul 13, 2025

The Story of Cyberattack: MOVEitTransfer

In countless organizations worldwide, from bustling universities to national healthcare systems, the MOVEit Transfer tool developed by Progress Software quietly fulfills a vital mission: secure file transfer.

Jul 10, 2025

Scaling AI Too Fast: The Cybersecurity Blind Spots No One Talks About

Scaling AI across enterprises is moving faster than most security teams can adapt. IBM’s 2025 X-Force Threat Intelligence Index reported an 84% rise in phishing emails delivering infostealers in 2024, often powered by generative AI to mimic human behavior and scale attacks.

Jul 10, 2025

Inside Cloud Security in 2025: Key Findings from SecPod’s Discovery Survey

Hybrid complexity. Misconfiguration risks. Tool fatigue. Our 2025 Cloud Security Discovery Report reveals a cloud security landscape that is still struggling to catch up with the pace of digital transformation.

Jul 10, 2025

Buffer Busted: FortiOS Users Urged to Patch Buffer Overflow Vulnerability

Fortinet disclosed a critical security vulnerability in its FortiOS operating system, which is CVE-2025-24477. The flaw is classified as CWE-122, a heap-based buffer overflow, and affects the cw_stad daemon, a core component responsible for wireless station management. This vulnerability enables exp...

Jul 08, 2025

137 Flaws Fixed, One Zero Day In Microsoft’s July 2025 Patch Tuesday

It’s time for another Patch Tuesday! This month, Microsoft has released patches for 137 flaws, including 14 critical bugs and one zero-day.

Jul 08, 2025

NTLM Hijack: DNN Users Urged to Patch Critical Unicode Flaw

DotNetNuke (DNN), a widely used open-source content management system (CMS) built on the .NET framework, has a critical vulnerability. This flaw, CVE-2025-52488, allows attackers to hijack NTLM through a Unicode normalization bypass. This can lead to the theft of sensitive credentials, potentially c...

Jul 08, 2025

CISA Issues Warning: Ongoing Attacks Exploiting Ruby on Rails Path Traversal Bug

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning about an actively exploited path traversal vulnerability in the Ruby on Rails framework. Tracked as CVE-2019-5418, this flaw allows attackers to access arbitrary files on target servers. Given the active exploi...

Jul 08, 2025

How to Shrink Your Cloud Attack Surface Without Adding Another Tool

Too many tools, not enough time. In cloud security, complexity is the enemy of prevention.

Jul 08, 2025

Ivanti EPM Under Fire: How Attackers Can Steal Credentials and Access Your Data

Ivanti has recently addressed three high-severity vulnerabilities in its Endpoint Manager (EPM) software. These flaws could allow attackers to decrypt other users’ passwords or access sensitive database information if exploited. This blog post provides a detailed overview of these vulnerabilities an...

Jul 08, 2025

Bypassing Secure Boot: A Linux Initramfs Vulnerability (CVE-2016-4484)

Modern Linux systems implement layers of security, including Secure Boot, full-disk encryption, and bootloader passwords. However, a long-standing vulnerability in the Linux boot process—CVE-2016-4484—exposes a critical gap that allows attackers to bypass these protections by abusing the initramfs (...

Jul 07, 2025

We Don’t Hang Culture on Walls. We Build It.

At SecPod, culture isn’t a slide deck, a slogan, or a poster in the break room. It’s not something we recite in meetings or showcase in onboarding documents.

Jul 06, 2025

The Great Misconfiguration Mirage: Why Visibility Isn’t Enough

Cloud security today is obsessed with visibility.

Jul 06, 2025

Cisco Warns of Hardcoded Root SSH Credentials in Unified CM

A critical security vulnerability has been discovered in Cisco Unified Communications Manager (Unified CM), presenting a serious threat to organizations running impacted versions. Tracked as CVE-2025-20309 and carrying a maximum CVSS score of 10.0, the issue arises from hardcoded root credentials. T...

Jul 03, 2025

Vulnerability Management vs. Exposure Management: What’s the Difference

In the world of cybersecurity, there’s always a new buzzword, but some trends are more than just hype. Over the last couple of years, “exposure management” has been quietly gaining traction. While most organizations still rely on traditional vulnerability management to keep threats at bay, the reali...

Jul 03, 2025

What Might Be a Phishing Message?

Phishing remains one of the most common and dangerous cybersecurity threats facing individuals and organizations today. It’s often the entry point for more serious attacks, including ransomware, data theft, and business email compromise.

Jul 03, 2025

The Five Capabilities That Separate Real Cloud Security Providers from the Rest

Cloud infrastructure has become foundational for modern operations, but it also continues to be one of the most targeted environments for attackers. The risks are no longer theoretical, misconfigurations, excessive permissions, and unmonitored identities regularly lead to data exposure. According to...

Jul 03, 2025

Top 10 Cloud Misconfigurations to Avoid

Cloud misconfigurations remain one of the most exploited weaknesses in enterprise infrastructure. According to the IBM X-Force Threat Intelligence Index 2024, misconfigured cloud services were involved in nearly 25% of cloud security incidents, second only to stolen credentials. These are not advanc...

Jul 02, 2025

More Than Just Charts

Managing expenses related to compute, storage, AI, and networking services can become complex, especially when costs accumulate across different teams and projects without clear visibility. To effectively navigate this dynamic environment, it’s important to have a detailed understanding of where cos...

Jul 02, 2025

Sudo LPE Vulnerabilities Resolved: What You Need to Know About CVE-2025-32462 and CVE-2025-32463

The Sudo utility has been identified as having two local privilege escalation vulnerabilities, CVE-2025-32462 and CVE-2025-32463. To mitigate these risks, it is recommended that Sudo be updated on Linux and macOS systems.

Jul 01, 2025

Predicted CVEs Likely to be Exploited – July 02, 2025

Welcome to your daily forecast of potential cyber threats. As part of our continuous effort to equip defenders with foresight, we present a list of Common Vulnerability Enumerations (CVEs) that our threat prediction models indicate are likely to be exploited in the near future.

Jul 01, 2025

Proactive Cybersecurity: How to Prevent Cyber Attacks Before They Happen

As we have seen, cyber-attacks can be highly damaging and disruptive. With their insatiable desire to gain power and dominance, attackers can unleash their intent in a stealthy and subtle manner to achieve their goals with precisely targeted and calibrated campaigns on a scale.

Jul 01, 2025

Google Issues Emergency Fix for Actively Exploited Chrome Zero-Day – CVE-2025-6554

Jul 01, 2025

17 Years of SecPod – Year 2, Phase IV

Everyone has stories to tell from the past. Why is the past always interesting while the present is not intriguing? The same past we glorify was present once. As we pause to reflect on 17 years of SecPod, we’re not just celebrating milestones – we’re reminding ourselves that the story we’ll tell tom...

Jun 30, 2025

From Detection to Prevention, Rethinking OT and IoT Security in a Hyperconnected Era

In an age where everything from turbines to toasters is connected to the internet, the convergence of Operational Technology (OT) and the Internet of Things (IoT) has revolutionized both industry and everyday life. Yet with that convergence comes a darker reality: cyber attackers no longer need to b...

Jun 26, 2025

Why Prevention-First Security is the Future of Cyber Defense, and How Saner Can Help You Achieve It

The cybersecurity status quo is no longer enough.

Jun 26, 2025

Resource Categorization is Not Just Labelling

Managing cloud environments can become overwhelming with 1000+ resource types and around 200+ AWS services. To control costs, mitigate risks, and reduce operational complexity, it becomes essential to organize resources into meaningful categories. Cloud Security Asset Exposure categories provide a s...

Jun 26, 2025

Cloud Remediation Secrets Unveiled: Dive into Effective Strategies

Jun 26, 2025

CitrixBleed2: Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543

Citrix has urgently released security updates to address a critical memory overflow vulnerability, CVE-2025-6543, affecting NetScaler ADC and NetScaler Gateway. With a CVSS score of 9.2, this flaw is actively exploited in the wild, making immediate patching essential to prevent potential denial-of-s...

Jun 25, 2025

Compliance Management in Cloud Computing

The rapid adoption of cloud services has shifted how organizations manage regulatory oversight, compliance audits, and governance processes. Migrating workloads to public, private, or hybrid cloud environments introduces a complex web of legal, technical, and operational obligations. From the Europe...

Jun 22, 2025

Generative AI and the New Cybersecurity Crossroads

The past year has redefined how AI in cybersecurity influences scale and speed. Generative models now bring a level of automation and linguistic precision that both attackers and defenders are rapidly absorbing into their workflows. Language models now analyze vulnerabilities, rewrite exploits, and ...

Jun 22, 2025

Apache Traffic Server Vulnerability: DoS Attacks via Memory Exhaustion

A newly identified vulnerability in Apache Traffic Server (ATS) allows attackers to initiate denial-of-service (DoS) attacks by exhausting server memory. The vulnerability, CVE-2025-49763, affects the Edge Side Includes (ESI) plugin and could lead to significant disruptions for enterprise users and ...

Jun 19, 2025

Veeam Patches CVE-2025-23121: Critical RCE Bug in Backup & Replication

Veeam, a prominent data backup and disaster recovery solution provider, has recently addressed a critical security vulnerability in its Backup and Replication software. The flaw, CVE-2025-23121, poses a significant risk as it could allow remote code execution (RCE) on affected systems. With a near-m...

Jun 19, 2025

Integrating Security and ITSM: SecPod x ServiceNow

In today’s hybrid, hyper-connected IT landscape, the speed at which vulnerabilities are discovered and exploited has never been faster. Security teams are flooded with new threats, while IT teams are tasked with maintaining uptime, delivering services, and ensuring compliance.

Jun 19, 2025

Unifying ITSM and Cybersecurity: Why the SecPod x Freshservice Integration Is a Game Changer

In today’s fast-moving digital world, organizations face a complex balancing act: delivering seamless IT services while staying ahead of increasingly sophisticated cyber threats. While both goals are critical, they’re often managed in silos: IT teams handling tickets, assets, and change management o...

Jun 19, 2025

ClamAV 1.4.3 and 1.0.9 Released: Addressing Critical RCE Vulnerability

The ClamAV team has released versions 1.4.3 and 1.0.9, critical security patches that address CVE-2025-20260 vulnerabilities that could compromise system security. These releases address a severe buffer overflow vulnerability and other significant issues. Let’s explore the details of these updates a...

Jun 19, 2025

Critical Flaws in NetScaler ADC & Gateway: CVE-2025-5349 and CVE-2025-5777

Two critical vulnerabilities have been identified in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway), posing significant risks to enterprise networks. Let’s dive into the details of CVE-2025-5349 and CVE-2025-5777 and the necessary steps for remediation.

Jun 19, 2025

Surface Protection Fails in the Cloud: Why Deep Workload Defense Is Now Mandatory

Many cloud security tools still focus on scanning images, enforcing perimeter controls, or detecting simple misconfigurations. Attackers bypass these defenses by exploiting deep workload issues — stale dependencies, excessive permissions, or unpatched runtime services. IBM’s XForce Threat Intelligen...

Jun 19, 2025

Shadow IT in the Cloud: Risks and Mitigation Strategies

Cloud services have accelerated innovation by letting teams spin up new tools instantly. Yet when users bypass IT governance and adopt unsanctioned services, they introduce shadow IT. That hidden usage widens the gap between a “threat vs. vulnerability” approach. A threat is an actor or event that c...

Jun 18, 2025

Vulnerabilities & the Road Ahead: Cybersecurity Trends for 2025

Jun 18, 2025

Why PREVENT Is the Future of Cybersecurity

Cybersecurity Doesn’t Have a Visibility Problem. It Has an Execution Problem.

Jun 17, 2025

CISA Issues Warning on Active Exploitation of TP-Link Vulnerability CVE-2023-33538

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added CVE-2023-33538, a high-severity vulnerability affecting certain TP-Link wireless routers, to its Known Exploited Vulnerabilities (KEV) catalog. This critical flaw is under active exploitation, prompting immediate action f...

Jun 17, 2025

Predicted CVEs Likely to be Exploited – June 18, 2025

Jun 17, 2025

Building a Prevention-First Cybersecurity Framework

Jun 17, 2025

Lessons from Recent Cloud Breaches (2023–2024)

Cloud environments today face an ever-shifting risk landscape. In 2023–2024, attackers exploited software flaws, stolen credentials, and misconfigurations to infiltrate high-value targets. These breaches throw light on the fact that defensive measures must go beyond detection. They serve as lessons ...

Jun 12, 2025

Managing Multicloud Security with Strategies That Actually Work

Over 79 percent of cloud buyers reported using multicloud providers in the third quarter of 2024. As cloud adoption scales, organizations are spreading infrastructure across AWS, Azure, GCP, and others to meet uptime, performance, and vendor diversification goals. But what begins as a strategic adva...

Jun 12, 2025

Role of AI in Vulnerability Risk Management

In a messy age of cyber-attacks and growing number of vulnerabilities, IT and security teams are as busy as the stakes are high. As attacker dynamics shift, security strategies often adjust reactively. The resulting turmoil gives experienced professionals trouble keeping up with these weaknesses and...

Jun 11, 2025

Securing Cloud Access with Identity Controls That Actually Work

Cloud breaches increasingly originate from compromised identities, whether through misconfigured roles, unused service accounts, or incomplete multifactor authentication (MFA) coverage. Once attackers gain a foothold, they often rely on existing access to escalate privileges or move laterally inside...

Jun 09, 2025

Addressing the Gap in Cloud Security Skills & Training for Developers

Rapid cloud adoption has transformed application delivery and infrastructure management. Despite efficiency gains, organizations face mounting cloud security challenges as they migrate workloads to public and hybrid platforms. Among the top concerns, the lack of skilled personnel stands out as one o...

Jun 08, 2025

What is Exposure Management?

Every organization today depends on a wide range of digital assets, such as laptops, servers, cloud instances, and applications. These assets make business possible, but they also open doors to potential risks. If not managed properly, these risks become security exposures: opportunities for attacke...

Jun 04, 2025

Google Releases Emergency Patch For New Actively Exploited Chrome Zero-Day

Google has recently released an out-of-band security patch to address a high-severity zero-day vulnerability in its Chrome browser. This vulnerability, tracked as CVE-2025-5419, is actively being exploited in the wild, posing a significant risk to Chrome users. The vulnerability is an out-of-bounds ...

Jun 03, 2025

What are Cloud Security Standards?

Cloud security standards define formalized policies, procedures, and controls designed to protect data, applications, and infrastructure across cloud environments. These standards are developed by regulatory bodies and industry alliances to bring consistency to security expectations across providers...

Jun 01, 2025

Cloud Security Best Practices: Safeguarding Your IT in the Cloud Era

May 28, 2025

What Does Your Security Posture Talk About Your Security?

In March 2024, a major US-based healthcare provider fell victim to a ransomware attack that compromised the personal data of over 2 million patients. The entry point? An unpatched vulnerability in an outdated system that had been flagged months prior but never resolved.

May 27, 2025

The ‘Oh No’ Moments CNAPP Could Have Stopped

And How Saner Cloud Turns Panic into Prevention.

May 21, 2025

The 10 Years Club: A Decade of Dedication at SecPod

At SecPod, we believe great companies are built by great people and even more so, by people who choose to stay, grow, and lead with us through the years. That’s why we’re thrilled to introduce the “10 Years Club”, a special shoutout to those who have spent a decade (or more!) shaping the SecPod stor...

May 20, 2025

The Ultimate Cloud Security Checklist

Cloud environments encompassing virtual machines, container orchestration, serverless functions and managed services at scale introduce distinct security challenges across dynamic workloads. Identity misconfigurations and overly permissive network rules frequently evade manual inspections, resulting...

May 19, 2025

Swiper, No Swiping! Mozilla Patches Two Firefox Zero Days

Mozilla released emergency Firefox patches to combat two critical zero days discovered during the hacking contest Pwn2own. CVE-2025-4918, credited to Edouard Bochin and Tao Yan from Palo Alto Networks, and CVE-2025-4919, credited to Manfred Paul, could potentially be exploited to access sensitive da...

May 19, 2025

The Journey of a Cyberattack

Global cybersecurity reports all point to one clear message: Threats are rising, and data breaches are more expensive than ever. According to IBM, the worldwide average cost of a data breach in 2024 reached about $4.88 million, the highest on record. Cisco notes that attackers often enter through un...

May 18, 2025

Saner Cloud: A Guided Onboarding Series

May 15, 2025

FortiFlaw: Critical Stack-Based Buffer Overflow in Multiple Fortinet Products

A critical zero-day vulnerability, tracked as CVE-2025-32756 and assigned a CVSS score of 9.8, has been discovered in several Fortinet products, including FortiVoice, FortiMail, FortiNDR, FortiRecorder, and FortiCamera. This flaw allows remote, unauthenticated attackers to execute arbitrary code or ...

May 14, 2025

SecPod Announces Global Partnership with Inspira Enterprise to Deliver Advanced Infrastructure and Cloud Security Solutions

May 14, 2025

Microsoft Patches 72 Flaws, 5 Zero Days in May 2025 Patch Tuesday

Microsoft has released its May 2025 Patch Tuesday updates, addressing many vulnerabilities across its product lineup. This month’s release tackles 72 flaws, focusing on five zero-day vulnerabilities that are reportedly actively exploited in the wild. Additionally, two other vulnerabilities were publ...

May 13, 2025

What Cyber-Attackers Look for in Your Environment?

And How to Stay One Step Ahead

May 08, 2025

Cisco Security Alert: Cisco IOS XE users Urged to Patch Critical Security Flaw

A critical security vulnerability, identified as CVE-2025-20188 and rated with a maximum CVSS score of 10.0, has been discovered in the Cisco IOS XE Wireless Controller. This flaw allows unauthenticated remote attackers to upload arbitrary files to affected systems.

May 08, 2025

Top 5 Cloud Security Threats in 2025

Cloud investments are projected to surpass traditional IT spending within the next few years. Although many organizations have scaled their cloud initiatives, the returns often fall short of expectations. A major factor behind this shortfall is the frequent presence of misconfigurations, which leave...

May 08, 2025

Scaling Cloud Efficiency with Saner Cloud

Organizations overseeing sprawling cloud environments often juggle a patchwork of point solutions, wrestling with slow incident response and ballooning costs. Saner Cloud reimagines cloud security around a prevention-first philosophy, fusing AI-driven insights with automated controls in a unified CN...

May 08, 2025

Top Cloud CNAPP Vendors in 2025: The Ultimate Guide

The Great Cloud Migration started in the early 2010s, and now a significant amount of the world’s infrastructure involves cloud instances, making it one of the most vital components of IT that must be secured. Enter Cloud-Native Application Protection Platforms (CNAPPs) and CNAPP vendors, an all-in-...

May 08, 2025

10 Attack Vectors You Can Block Right Now

Cyberattacks are no longer a question of if, but when. From phishing emails to vulnerable endpoints, attackers constantly scan for cracks in your armor. The good news? Many of these common attack vectors are surprisingly easy to block — if you know where to look.

May 08, 2025

Why Linux Reports More Vulnerabilities & What It Means

Are higher numbers of CVEs an indicator of the “cyber-safety” of a particular piece of software? Or does it mean something else? New vulnerability discoveries are some of the most important pointers security professionals must follow, as they are key indicators of a platform’s security posture.

May 07, 2025

Why Prevention-First Security Is the Only Solution to Ransomware

In 2025, ransomware escalated from a disruptive nuisance to a global economic crisis. Cybersecurity Ventures projects that ransomware damages will reach $57 billion this year, translating to $156 million per day or $109,000 per minute. Reactive cybersecurity tools fail to contain this scale of damag...

May 06, 2025

Building a Solid Cloud Security Strategy

83% of companies experienced at least one cloud-related security incident in the past year!

Apr 29, 2025

The ‘Too Many Tools’ Trap: How Cybersecurity Overload Creates More Risks

Organizations worldwide are investing heavily in cybersecurity tools to defend against increasing threats. But here’s the irony, the more tools they use, the more vulnerable they often become.

Apr 27, 2025

RSA Conference 2025

Apr 27, 2025

Untangle the Relationships in Your Cloud Infrastructure

Saner Cloud helps you make sense of your AWS environment by mapping out the complex relationships between Users, Groups, Policies, and Roles.

Apr 24, 2025

Whitelist Wonderland: Where Security Findings Go to Vacation Forever

In cloud-native environments, infrastructure is often transient, rapidly changing, and complex. Misconfigurations can happen quickly and on a large scale. In this context, carelessly whitelisting findings can lead to several issues, including:

Apr 24, 2025

What's New in Saner CVEM 6.4.1?

Apr 24, 2025

Keep it clear, keep it modular, keep it useful

No matter how hard you try, you can never achieve an equal measure when sketching an elephant on a canvas. Similarly, the world of cybersecurity is vast and cannot be easily quantified. Ultimately, grand claims often reveal the undeniable truth: Cybersecurity is indeed immeasurable.

Apr 23, 2025

A CFO’s Guide to Unmasking Cyber Threats in Finance

Cybersecurity in financial services has become a strategic imperative. Banks, investment firms, credit unions, and fintech platforms are frequent targets due to the sensitive financial data they handle — ranging from high-value transactions and customer account details to proprietary algorithms and ...

Apr 23, 2025

CISO Dashboarding for Cost-effective Vulnerability Management

Apr 22, 2025

Error in lang: Erlang Users Urged to Patch Critical Security Flaw

A critical security flaw, tracked as CVE-2025-32433 and rated with a CVSS score of 10.0, has been found in the SSH implementation of the Erlang/Open Telecom Platform (OTP). This vulnerability could allow an unauthenticated attacker to run arbitrary code, but only under specific conditions.

Apr 20, 2025

What is Cloud Risk Management?

Cloud risk management focuses on identifying, evaluating, and addressing risks specific to cloud environments. It recognizes that the cloud introduces a different set of challenges compared to traditional on-premises setups, where boundaries are clearer, systems are fully controlled, and changes ten...

Apr 20, 2025

378 Vulnerabilities Fixed in Oracle’s Latest Critical Patch Update

Oracle’s quarterly critical patch update made its entrance with a bang this April, fixing 378 vulnerabilities in both Oracle and third-party product families. Oracle Communications accounted for the highest number of flaws, totaling 103, with Oracle MySQL and Oracle Communications Applications trail...

Apr 16, 2025

CSPM vs. CWPP: Knowing the Difference to Achieve True Cloud Security

For businesses to achieve their full potential in the current digital-first era, they need to know the difference between CSPM vs. CWPP before adopting a cloud- or hybrid-based operational workflow. However, traditional security approaches are falling short in the face of threats posed by expanding ...

Apr 10, 2025

A Flip in the FortiSwitch: FortiSwitch Users Urged to Patch Critical Security Flaw

CVE-2024-48887 is a critical vulnerability affecting the Fortinet FortiSwitch web interface, with a CVSS score of 9.8. It stems from improper access control, allowing remote attackers to change administrator passwords without authentication, potentially leading to full system compromise.

Apr 09, 2025

Microsoft Fixes 137 Flaws, 1 Zero Days in April 2025 Patch Tuesday

It’s that time of the month again! The second Tuesday of April 2025 has arrived, bringing Microsoft’s latest batch of security updates and non-security improvements for its suite of products.

Apr 08, 2025

Vulcon 2025

Apr 06, 2025

CrushFTP Security Alert: Actively Exploited Authentication Bypass Vulnerability! Patch Now!

CrushFTP users beware!! A severe authentication bypass vulnerability is exploited, endangering sensitive data and entire systems. This security flaw grants unauthorized access to CrushFTP servers, requiring urgent attention and immediate action. If you depend on CrushFTP for file transfers, recogniz...

Apr 01, 2025

Eliminating Healthcare’s Cloud Security Gaps with Saner Cloud

Healthcare organizations rely on cloud environments to store and manage patient data, but security challenges and compliance requirements make protection a top priority. Misconfigurations, unpatched vulnerabilities, and excessive user permissions create serious risks — threats that attackers exploit...

Mar 30, 2025

Hook, Line, and Sinker: Chrome Patches Zero-Day Used in Phishing Attacks

In mid-March 2025, a deluge of personalized phishing emails took Russia by storm. When analyzed, the underlying vulnerability had researchers swimming in uncharted waters; they had found a new Chrome zero-day!

Mar 27, 2025

IT vs Security: The Ultimate Showdown (or Alliance)?

Mar 27, 2025

Ingress NGINX Remote Code Execution Vulnerabilities Discovered – Patch Now!

Critical security vulnerabilities have been discovered in the Ingress-NGINX Controller for Kubernetes. CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974—collectively known as ‘IngressNightmare’—allow attackers to gain unauthorized access to secrets across all namespaces. This results i...

Mar 24, 2025

Next Blunder: Next.js Users Urged to Patch Critical Security Flaw

A severe vulnerability tracked as CVE-2025-29927, with a CVSS score of 9.1, has been identified in the Next.js React framework. If exploited, it could result in an authentication bypass under specific conditions.

Mar 24, 2025

Implementing Zero Trust Security in Healthcare Cloud Environments

Think about the sheer volume of data exchanged in a hospital every second — from electronic health records to real-time updates from connected medical devices. Now imagine trying to manage who gets access to what, where, and when, without leaving gaps for hackers to exploit. It’s a delicate balance,...

Mar 20, 2025

Transform Your Cloud Security with Saner Cloud: A Prevention First Approach

Mar 18, 2025

Navigating the Shared Responsibility Model in Cloud Security

The shared responsibility model is fundamental to cloud security, defining how security obligations are divided between cloud service providers and their customers. As organizations increasingly adopt cloud services to drive innovation and efficiency, understanding these responsibilities is essentia...

Mar 17, 2025

Git Wrecked: GitLab Users Urged to Patch Critical Security Flaws

GitLab has released patches to address nine vulnerabilities affecting various installations of the Community Edition (CE) and Enterprise Edition (EE). Two of these have been classified as critical and are tracked as CVE-2025-25291 and CVE-2025-25292, each with a CVSS score of 8.8. These vulnerabilit...

Mar 13, 2025

Home Run! Out-Of-Bounds Write Discovered In FreeType

The FreeType font rendering library is vulnerable! CVE-2025-27363, which boasts a CVSS score of 8.1, could result in a developer’s worst nightmare: arbitrary code execution by a remote, unauthenticated attacker. The vendor has acknowledged that this out-of-bounds write flaw may have been actively ex...

Mar 13, 2025

Advancing Cloud Security in Healthcare for Resilient Data Protection

Sensitive patient data is highly valuable on the black market, subjecting the healthcare sector to frequent cyberattacks. That’s why bolstering cloud security in healthcare should be on top of healthcare IT’s (HIT) priority list. Data breaches, operational disruptions, and ransomware attacks can sev...

Mar 12, 2025

Microsoft Patches 57 Flaws, 7 Zero Days in March 2025 Patch Tuesday

Microsoft’s March 2025 Patch Tuesday has arrived, delivering new security updates and enhancements. This month’s release addresses 57 vulnerabilities, including seven that are classified as zero-day vulnerabilities. Additionally, six “Critical” vulnerabilities involving remote code execution have al...

Mar 11, 2025

Celebrating Women Who Shaped Technology

On this International Women’s Day, we take a moment to celebrate the women who have transformed the world of technology. From pioneering scientists and engineers to modern innovators shaping the future of AI, cybersecurity, and software development, women have played a vital role in driving progress...

Mar 07, 2025

Story of Cyberattack – Facebook Data Leak

In April 2021, the cybersecurity world was shaken by the revelation that personal data from 533 million Facebook users had been leaked online. The breach exposed sensitive information such as phone numbers, full names, locations, email addresses, and more. While Facebook claimed this data was scrape...

Mar 06, 2025

Elastic Fixes Critical Kibana RCE Vulnerability (CVE-2025-25015) – Patch Now!

A critical security vulnerability has been uncovered in Kibana. Tracked as CVE-2025-25015 (CVSS 9.9), the vulnerability arises from prototype pollution, which could allow attackers to execute arbitrary code on affected systems, thus posing a serious risk to businesses that employ Kibana for monitori...

Mar 06, 2025

Understanding CNAPP: The Only Guide You Need for Cloud-Native Security

A Cloud-Native Application Protection Platform (CNAPP) is a unified security solution that protects cloud-native applications from development to runtime. Cloud computing has transformed application deployment and management for the better, but it also brings unique security complexities, particular...

Mar 06, 2025

Key Security Flaws That Make Enterprises Vulnerable to LockBit Ransomware

LockBit remains one of the most aggressive ransomware groups, continuously adapting its tactics to target organizations worldwide. Despite law enforcement crackdowns — such as international takedown efforts, infrastructure seizures, and arrests of affiliates — LockBit persists by refining its techni...

Mar 05, 2025

The Need for a Paradigm Shift in Cybersecurity: Why Prevention-First is the Only Way Forward

For far too long, the cybersecurity industry has been playing a losing game, defined by a reactive approach. The prevailing mindset has always been “detect and respond” — an approach built on the assumption that breaches are inevitable, forcing organizations to focus on damage control after an attac...

Mar 05, 2025

Announcement: SecPod Renews SOC 2 Type 2 Certification

Mar 05, 2025

Zero-Day Chaos: VMware Users Urged to Patch Critical Security Flaws

Broadcom has rolled out critical security updates to patch three actively exploited zero-day vulnerabilities in VMware products, and if you’re running ESXi, Workstation, Fusion, Cloud Foundation, or Telco Cloud Platform. These aren’t just any bugs; they’re serious flaws that attackers are already us...

Mar 04, 2025

Mphasis and SecPod Announce Strategic Security Partnership

Mar 04, 2025

New Feature Update: Service Level Agreement (SLA)

Imagine this: you’re the head of IT security at an organization, and every day, new vulnerabilities pop up across your network. Some are minor; others are major risks to your company’s infrastructure. While you know you need to act fast, the question is: which vulnerabilities should be addressed fir...

Mar 02, 2025

Are EDRs Really Enough?

Here’s a story you might have heard before. Or you might have experienced it before. Alex is an IT Security administrator working for a mid-sized company. The company has invested in a robust Endpoint Detection and Response (EDR) solution to protect its endpoints. One day, Alex receives an alert fro...

Feb 25, 2025

Introducing Saner Cloud: Rewriting Cloud Security with AI’s Precision

Cloud environments are evolving rapidly, and with this growth comes the need for proactive, anticipatory security. Saner Cloud meets this demand by focusing on prevention, helping you stay one step ahead of today’s sophisticated threats. Rather than reacting to issues after they arise, it continuous...

Feb 23, 2025

PREVENT 2025 Puts India at the Center of Global Cybersecurity Innovation

Feb 23, 2025

Fed up with Zillions of Vulnerabilities? Near Zero-fy Them With Vulnerability Management Tools

Feb 20, 2025

Turn Your Employees into Your Strongest Cyber Defense

Cyber threats and attacks are always on the go. While business and enterprises invest heavily in firewall, endpoint protection, and vulnerability management tools, one critical security layer often gets overlooked, employees. Your employees can be your biggest cybersecurity weakness or your stronges...

Feb 19, 2025

Technology Licensing: Vulnerability & Exposure Management, How SecPod’s Prevention Technologies Go Beyond Reaction

Feb 19, 2025

New OpenSSH Vulnerabilities: MITM and DoS Threats Uncovered. Patch Now!

OpenSSH has once again found itself in the security spotlight. Just seven months after discovering the regreSSHion flaw, two new critical flaws have come to light. This time, the risks stem from Man-in-the-Middle (MITM) and Denial-of-Service (DoS) vulnerabilities—each with the potential to disrupt o...

Feb 18, 2025

What is Cloud Security?

Cloud security encompasses the technologies, policies, controls, and services that protect cloud-based systems, data, and infrastructure. It provides a framework of security measures designed to safeguard cloud environments against external and internal threats while helping IT teams maintain regula...

Feb 17, 2025

Culture Begins When : #WeLoveWhatWeDo

There’s a saying, ‘Do what you love, and you’ll never work a day in your life.’ But how many of us truly feel that way? Work is often seen as a routine, but for those who love what they do, it’s an adventure filled with learning, challenges, and growth.

Feb 13, 2025

The Hidden Costs of Cyberattacks

“A single cyber-attack costs businesses an average of $4.45 million, but that’s just the beginning. The hidden costs? They can last for years, crippling businesses from the inside out.”

Feb 13, 2025

SecPod Partner Journey: Navigating the SecPod Partner Experience

At SecPod, partnerships are more than just transactions – they are built on collaboration, shared growth, and long-term success. Whether you’re an established organization or an emerging player, we ensure that our structured partner journey equips you with everything needed to succeed in cybersecuri...

Feb 13, 2025

SecPod launches Saner Cloud: A Revolutionary CNAPP For Preventive Cybersecurity

Feb 12, 2025

Microsoft Fixes 55 Flaws, 4 Zero Days in February 2025 Patch Tuesday

Valentine’s Day is just around the corner, and Microsoft has already brought us the perfect gift – a personalized hamper of 55 fixed vulnerabilities on Patch Tuesday.

Feb 11, 2025

Cysec Kuwait

Feb 11, 2025

Advancing Cloud Security with a Prevention-Centric CNAPP Approach

While cloud-native application protection platforms (CNAPPs) have been widely adopted as a baseline for securing cloud environments, their inherent dependence on alerting and remediation creates gaps in protection. Zero-day vulnerabilities, misconfigurations, and supply-chain attacks are examples of...

Feb 10, 2025

Inside the GigaOm Radar: How SecPod Earned the Leader Badge in Patch Management

Feb 06, 2025

CVE-2025-23114: Critical Vulnerability in Veeam Backup Products

A critical security vulnerability identified as CVE-2025-23114 affects multiple Veeam backup products. This vulnerability resides within the Veeam Updater component and allows attackers to execute arbitrary code on the affected server through a Man-in-the-Middle (MitM) attack. The issue arises from ...

Feb 05, 2025

Outsmart, Outpace, and Outlast Threats in Multicloud Environments

In a multicloud reality, coming up with a thoroughly satisfying answer to the question of security has created a host of problems for those IT pros who attempt to find the ideal solutions. Their attempts alone create a fragmented approach to cloud security which simply goes against the main objectiv...

Feb 05, 2025

SECPOD PREVENT 2025: India’s leadership in cybersecurity innovation and the launch of Saner Cloud

Feb 05, 2025

SecPod PREVENT 2025: The First Prevention-Focused Cybersecurity Conference Unveils the Most Advanced CNAPP ever

Feb 04, 2025

Cysec Doha

Feb 03, 2025

Protect Your Systems: VMware Avi Load Balancer Hit by High-Risk SQL Injection Flaw

Introduction

Jan 30, 2025

The Cybersecurity Landscape of 2024: Key Insights from the Annual Vulnerability Report

The 2024 Annual Vulnerability Report from SecPod reveals a staggering increase in global vulnerabilities, highlighting the ever-evolving nature of cyber threats. With 40,704 vulnerabilities identified in 2024—a 30% increase compared to the previous year—this report serves as a critical resource for ...

Jan 29, 2025

Cyber Hygiene Checklist for 2025

The digital world has become an inseparable part of our lives and so have the threats that come with it. Cyberattacks are getting smarter, faster, and harder to detect. In 2025, businesses and individuals alike must treat cybersecurity like personal hygiene, a regular routine to stay safe.

Jan 29, 2025

A Thorn in your Security: RCE Flaws discovered in Cacti

Cacti is an open-source network monitoring and graphing tool that helps visualize and track network performance, server health, and device availability. It leverages Round Robin Database Tool (RRD Tool) to store data and generate real-time graphs, making it popular for IT infrastructure monitoring.

Jan 28, 2025

Tunnel Trouble: 4.2 Million Hosts, VPNs, and Routers Vulnerable

“Attackers? Good luck getting past my VPN wall!”. Maybe it’s time to reconsider that. New research just uncovered security vulnerabilities in multiple tunneling protocols that could allow attackers to perform a wide range of attacks in your  “private” network.

Jan 26, 2025

Vulnerability Management & Cybersecurity Trends to Look For in 2025

Phew. What a year 2024 was. High-profile attacks, rapid digital transformation, and the elephant in the room, AI, of course. These events have changed the cybersecurity world and will have longstanding ramifications! But what about cybersecurity trends in 2025?

Jan 26, 2025

Urgent: Patch Now! Critical Zero-Day CVE-2025-23006 Targets SonicWall SMA Appliances

CVE-2025-23006 is a critical zero-day vulnerability affecting SonicWall Secure Mobile Access (SMA) 1000 series appliances. This vulnerability, categorized as a deserialization of untrusted data flaws, resides within the Appliance Management Console (AMC) and Central Management Console (CMC). Exploit...

Jan 24, 2025

Oracle Releases Critical Security Updates January 2025 – Patch Now!

Oracle has released its Critical Patch Update (CPU) for January 2025, addressing 318 new security patches across various product families, including Oracle Database Server, Oracle MySQL, Oracle Communications, Oracle E-Business Suite, Oracle Fusion Middleware, and more. This update mitigates vulnera...

Jan 24, 2025

Critical Code Execution Vulnerability (CVE-2025-0411) Detected in 7-Zip

A critical security vulnerability identified as CVE-2025-0411 has been detected in 7-Zip, a widely used file archiver. With a CVSS score of 7.0, this vulnerability allows attackers to bypass the Windows “Mark-of-the-Web” (MotW) security feature. If exploited, it could lead to the execution of malici...

Jan 22, 2025

Reducing R&D Costs and Speeding Up Time-to-Market – How Integrating SecPod Can Help Businesses

When it comes to product development, Technology Vendors are under immense pressure to innovate rapidly, reduce costs, and maintain end-to-end security. This trifecta of challenges often strains resources, delays launches and impacts customer satisfaction. However, integrating SecPod’s advanced tech...

Jan 22, 2025

How to Accelerate Product Development with Integrated Security

In a hyper-competitive landscape today, OEMs must innovate quickly to stay ahead. However, the race to market often overlooks a critical factor: security. Neglecting security in product development can lead to costly breaches, compliance issues, and damage to customer trust. Integrated security offe...

Jan 22, 2025

Critical Path Traversal Vulnerabilities (CVE-2024-10811, CVE-2024-13161, CVE-2024-13160, and CVE-2024-13159) in Ivanti Endpoint Manager

Ivanti, an IT management solutions, has identified and addressed four critical vulnerabilities in its Endpoint Manager (EPM) software. These vulnerabilities, identified as CVE-2024-10811, CVE-2024-13161, CVE-2024-13160, and CVE-2024-13159, have been assigned a CVSS score of 9.8, indicating their hig...

Jan 16, 2025

Cloud Security Best Practices That Every User Should Implement

The cloud has become a foundational element of modern business operations due to its far-reaching scalability, adaptability, and cost-effectiveness. However, as more companies adopt cloud computing, they should also implement cloud security best practices to avoid the increasing dangers of modern cy...

Jan 16, 2025

Microsoft Patches 159 Flaws, 8 Zero Days in January 2025 Patch Tuesday

2025 is upon us! We’re ringing in the new year with – you guessed it – another Patch Tuesday.

Jan 15, 2025

Cyber Security Risk Landscape in 2024: Key Lessons and What’s Next

Jan 15, 2025

Monthly Live Demo:- Stopping High-Fidelity Attacks with Preventive Risk Remediation

Jan 09, 2025

Critical Vulnerability Uncovered: CVE-2025-0282 Puts Ivanti Systems at Risk

Ivanti has disclosed a critical vulnerability identified as CVE-2025-0282, affecting several of its products, including Ivanti Connect Secure, Policy Secure, and Neurons for ZTA gateways. With a CVSS Score of 9.0, this stack-based buffer overflow vulnerability allows remote, unauthenticated attacker...

Jan 08, 2025

How New Year Traffic Stresses Your Cloud Security (And What to Do About It)

The New Year is here — a time for fresh beginnings, renewed goals, and ambitious business plans. However, it’s also a period where cybercriminals remain active, exploiting vulnerabilities that arise during high-traffic events and transitions into the new calendar year.

Dec 30, 2024

Cloud Security Resolutions for a Threat-Free 2025

As the New Year begins, most people are busy crafting their resolutions; promises to hit the gym, learn a new skill, or break an old habit. Businesses navigating the complex digital landscape, on the other hand, face an evolving challenge of critical significance. Fortifying cloud security emerges a...

Dec 30, 2024

Palo Alto PAN-OS Severe Vulnerability (CVE-2024-3393) Exploited

Palo Alto announced a critical security vulnerability affecting its PAN-OS software. PAN-OS is the operating system developed by Palo Alto Networks for its network security devices, which is used to provide advanced security features.The vulnerability tracked as CVE-2024-3393 can cause a denial of s...

Dec 30, 2024

Critical Dell SupportAssist Vulnerability (CVE-2024-52535) Exploited

Dell announced a critical security vulnerability affecting its SupportAssist software, widely used for system diagnostics and updates on Dell PCs. Identified as CVE-2024-52535, this flaw poses significant risks to cybersecurity experts and end-users.

Dec 26, 2024

Understanding DDoS Attacks: A Comprehensive Guide

Businesses and services rely heavily on online presence, the threat of cyberattacks looms large. Among these threats, Distributed Denial of Service (DDoS) attacks stand out due to their ability to paralyze websites and online services. A DDoS attack occurs when multiple compromised systems target a ...

Dec 26, 2024

AI in Cybersecurity: Combatting the Evolving Threat Landscape - SecPod AI

In an era dominated by digital transformation, cybersecurity is no longer just a necessity — it is a strategic imperative. As businesses, governments, and individuals increasingly rely on digital systems, the volume and complexity of cyber threats continue to rise. Traditional security measures, whi...

Dec 26, 2024

The A-Z of Ubuntu Patch Management

Did you know the Ubuntu operating system takes up 2.2% of all the devices in the world?  Linux and, consequentially, Ubuntu are some of the most popular OS organizations around the world use. So, securing the devices that run Ubuntu might be a little different when compared to your run-of-the-mill W...

Dec 25, 2024

Security Alert: Critical Remote Code Execution Vulnerability Discovered in Sophos Firewall

Sophos has addressed three security flaws in Sophos Firewall products that could enable remote, unauthenticated attackers to execute SQL injection and remote code execution, as well as gain privileged SSH access to affected devices.

Dec 23, 2024

Critical Security Fixes: Sophos Firewall Vulnerabilities CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729

Sophos addressed three critical vulnerabilities in its Firewall product: CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729. These vulnerabilities posed significant security risks, including remote code execution and unauthorized system access.

Dec 22, 2024

CVE-2023-34990: Critical Path Traversal Flaw Found in Fortinet FortiWLM

On 12 May 2023, Horizon3 researcher Zach Hanley found an unauthenticated limited file read vulnerability in FortiWLM that he promptly disclosed to Fortinet. On 18 December 2024, it was given a name—CVE-2023-34990—and Fortinet released an advisory warning users of its severity.

Dec 19, 2024

CVE-2024-50379: Apache Tomcat Remote Code Execution Vulnerability

Apache Tomcat, one of the most widely used open-source application servers for running Java applications, has long been trusted by organizations around the world. However, as with all widely used software, vulnerabilities can pose significant risks if not addressed promptly.

Dec 19, 2024

Security Alert: Critical Apache Struts Vulnerability Under Active Exploitation

Apache has revealed a critical vulnerability in Apache Struts, a widely utilized Java-based web application framework. The vulnerability tracked as CVE-2024-53677 has a CVSS Score of 9.5 out of 10, indicating critical severity.Struts is a key component in many enterprise environments, valued for its...

Dec 18, 2024

Apple Security Updates in December 2024

The Apple Security Update December 2024 addresses flaws in Safari, macOS Sonoma, macOS Ventura, and macOS Sequoia. These flaws might allow attackers to execute arbitrary code, access sensitive data, or gain elevated privileges. The updates address issues in components like AppleMobileFileIntegrity, ...

Dec 13, 2024

Story of Cyberattack: Petya

The Petya cyberattack, also known as NotPetya, was one of the most devastating cyberattacks in recent history. First discovered in June 2017, it caused widespread damage across the globe, affecting major enterprises and governments. Initially believed to be a ransomware attack, it was later determin...

Dec 11, 2024

Microsoft Patches 71 Flaws, 1 Zero Day in December 2024 Patch Tuesday

2024 is finally coming to a close, and what better way to wrap it up than with a Microsoft Patch Tuesday?

Dec 10, 2024

CVE-2014-2120: Ten-year-old Cisco ASA Flaw Exploited In The Wild

First discovered in 2014 by researcher Jonathan Claudius, CVE-2014-2120 is a vulnerability caused by insufficient input validation in the WebVPN login page of Cisco Adaptive Security Appliance (ASA) Software. This flaw could allow an unauthenticated remote attacker to execute an XSS attack against a...

Dec 04, 2024

The Only OS Patch Management Software You Will Need!

Keeping your operating systems up to date is no longer just a best practice, it is a necessity in today’s world. With the increasing frequency of cyberattacks and the complexity of IT environments, effective OS patch management has become critical for enterprises of all sizes. This blog will explore...

Dec 02, 2024

How to Drive More Value From Your CNAPP Solution?

A cloud-native application protection platform (CNAPP) has become a fundamental element of how organizations approach cloud security. But before getting into its increased importance in recent times, we need to understand a few things about the current threat landscape.

Dec 02, 2024

SecPod’s Vision for AI-Driven Automation and Intelligence in Cybersecurity Posture Management

In an increasingly complex digital landscape, managing cybersecurity vulnerabilities and ensuring compliance require a level of sophistication and scale that is difficult to achieve manually. With the rapid evolution of cyber threats, organizations are struggling to keep up with ever-increasing vuln...

Dec 02, 2024

Story of a Cyberattack – OPM breach

In 2015, the world was stunned by one of the largest and most devastating data breaches in history. The scale of the attack left enterprises scrambling to patch their systems, as did the type of sensitive information that was stolen.

Nov 28, 2024

When CVE Met CVE: RomCom Hackers Exploit Firefox and Windows Zero-Days

The Russian cybercrime group RomCom has been linked to a series of cyberattacks launched across the world. The notorious hackers are chaining two Firefox and Windows flaws to deliver a backdoor and compromise vulnerable systems.

Nov 27, 2024

The Hidden Risks of Third-Party Resources and How to Avoid Them

Businesses today increasingly depend on a wide variety of third-party resources to meet their cloud computing requirements, which range from customer service and analytics to data security and storage. Although this interconnected ecosystem drives operational efficiency and workforce productivity, i...

Nov 27, 2024

VMware Patches Multiple Vulnerabilities That Can Potentially Lead To Privilege Escalation and XSS Attacks

Nov 27, 2024

Mastering IT Patch Management: Your Shield Against Cyber Threats

IT Patch Management isn’t the most glamorous topic in the tech world, but it’s a silent hero shielding system from attacks, plugging vulnerabilities, and keeping software in peak condition. In a world where cyber threats grow by the second, staying patched and protected can make all the difference b...

Nov 26, 2024

15 Cloud Security Challenges Every InfoSec Professional Should Know About

Cloud adoption can feel like navigating uncharted territory — brimming with potential but fraught with hidden dangers. Cloud security challenges such as vulnerabilities in APIs and configuration missteps can turn the cloud’s openness into a double-edged sword. As cloud adoption accelerates, so do th...

Nov 25, 2024

Ivanti Patch Management vs SanerNow and others

It’s a call no IT or security manager would want to take: “Our systems are down, and we can’t figure out the cause.”  After hours of going through and fro the IT security, the answer starts becoming clear: an unpatched vulnerability was exploited, bringing operations to a halt!Every unpatched system...

Nov 20, 2024

Unlocking Cybersecurity Success: Why Your Scanning Report is the Key to Protection

Staying a step ahead of potential threats is key to preventing devastating cyberattacks. One of the most effective ways to maintain this edge is through regular scanning reports. A scanning report is a snapshot of your enterprise’s vulnerabilities and risks at a given point in time. Cybersecurity is...

Nov 18, 2024

Transformer – A Marvelous Deep Neural Network - SecPod AI

In an earlier blog we traced the development of transformer from NLP evolution in the historical perspective.  Inspired by the concept of self-attention, information theory and signal processing, transformer became the building block of well-known LLMs developed by OpenAI, Google and Meta. The simpl...

Nov 18, 2024

Enhancing Safety in Government Enterprises

As government agencies and public institutions increasingly rely on digital systems to deliver services, manage resources, and store sensitive information, the importance of cybersecurity has never been more pronounced.Cyber threats—whether from individual hackers, organized cybercriminals, or natio...

Nov 17, 2024

Story of Cyberattack – Earnest Health

Here’s an alarming figure. More than 1500 cyberattacks occur in the healthcare industry every week. Further research suggests each breach costs more than 10 million $! One of the biggest cyberattacks of 2024 was the Earnest Health attack, impacting the patient data of more than 100,000 patients.

Nov 17, 2024

Reflections on the NVIDIA AI Summit: October 24-25 in Bombay - SecPod AI

NVIDIA AI Summit is a conference that we eagerly looked forward to. We expected a lot of important NVIDIA announcements to be made. A lot of stakeholders from Governments, Corporations, Academia will come together to discuss current adoption of AI and how it has empowered them. We booked our reserva...

Nov 17, 2024

Microsoft’s November 2024 Patch Tuesday Resolves 88 Flaws, Including 4 Zero Days

This month, Microsoft released security updates addressing 88 vulnerabilities, four of which were zero-days and four critical. Two of the zero-days are known to have been actively exploited, and three have been publicly disclosed. The chart below offers some insight into the types of vulnerabilities...

Nov 12, 2024

Cybersecurity in Healthcare: Protecting Patient Data and Trust

Healthcare has taken center stage in cybercriminals’ crosshairs. Hospitals, clinics, and health systems are brimming with sensitive patient data that’s not just personal, it’s priceless. From patient records to medical devices, healthcare’s digital assets are targeted by hackers, costing billions an...

Oct 30, 2024

Microsoft Defender Vulnerability Management vs SanerNow and Others

Person 1: “Hey, our operations and manufacturing have stopped.

Oct 28, 2024

A Step-by-step Guide to Creating a Patch Management Policy

Let me ask you a question. How many applications exist in your network infrastructure on average? The number probably ranges from more than 300 to even thousands! So, how do you practically manage all these applications in your network without security issues, downtime, and business discontinuity? P...

Oct 28, 2024

Cybersecurity Best Practices to Keep your Enterprise Protected

As we are in the AI era, cybersecurity remains a top concern for enterprises, especially as the holiday season approaches. With an increase in online shopping and digital transactions, cybercriminals are more active than ever, looking to exploit vulnerabilities in systems.

Oct 27, 2024

Cisco ASA and FTD Are Being Actively Exploited, Urgent Patch Released for CVE-2024-20481

Cisco is warning users of a new flaw in the Remote Access VPN (RAVPN) service of its Adaptive Security Appliance and Firepower Threat Defense Software. CVE-2024-20481 has a CVSS score of 5.8, which can lead to a denial-of-service (DoS) condition. An unauthenticated, remote attacker could exploit thi...

Oct 24, 2024

Best Practices to Strengthen Security in Education

In today’s digital age, education has embraced technology like never before. While this transformation has brought countless benefits, it has also exposed educational institutions to cybersecurity threats.

Oct 24, 2024

CVE-2024-38812: VMWare Patches Critical RCE Flaw In vCenter Server

Broadcom has released security updates addressing CVE-2024-38812, a heap-overflow vulnerability in VMWare vCenter Server. With a CVSS score of 9.8, this critical vulnerability is present in implementing the DCE/RPC protocol and could lead to RCE. An attacker with network access to the vCenter Server...

Oct 22, 2024

Best Patch Management Software for 2024

Patch management is the process of applying patches. So how hard could it be? Very, very hard. Ask any IT administrator who maintains and deploys patches, and they will shake their head talking about patch management. That’s where patch management tools come into play. Patch management tools simplif...

Oct 22, 2024

Llama Guard: Ensuring Safe AI Interactions with Large Language Models - SecPod AI

Llama Guard is an AI safeguard model designed to classify risks in Human-AI conversations, using a safety risk taxonomy for prompt and response evaluation. Built on the Llama2-7b model, it’s instruction-tuned on a specialized dataset and outperforms top content moderation tools. With customizable ta...

Oct 22, 2024

A Glimpse into Evolution of LLM based on NLP perspective - SecPod AI

Recent breakthroughs in AI and large language models (LLMs) have attracted significant attention lately. LLMs excel at rapidly mimicking human-like reasoning by processing vast amounts of corporate data, which has fueled a surge in AI-powered enterprise solutions. The advancement of cutting-edge LLM...

Oct 21, 2024

OWASP’s Top 10 Vulnerabilities in ML Security - SecPod AI

Machine learning (ML) systems are the cornerstone to analyze organizational data driving both innovation and informed decision-making. There is virtually no industry that is not touched by ML. It has been widely adopted and greatly embellished manufacturing, retail, healthcare and life sciences, tra...

Oct 21, 2024

F5 fixed a high-severity elevation of privilege vulnerability in BIG-IP

In the constantly changing world of cybersecurity, keeping abreast of vulnerabilities is essential for preserving the integrity of your systems. Recently, F5 has disclosed two significant vulnerabilities:  CVE-2024-47139, related to BIG-IQ and CVE-2024-45844 affecting BIG-IP. This blog post will go ...

Oct 20, 2024

The Role of Vulnerability Assessment in Achieving Cyber Resilience for U.S. Enterprises

According to reports, the US ranks the top-most among other countries on the list of being a target for attackers. It faces almost 65% of cyberattacks compared to all the other industries in a year. As one of the world’s largest economies, it hosts numerous multinational corporations and critical in...

Oct 17, 2024

CVE-2024-9487: GitHub Patches Major Security Flaw in Enterprise Server. Patch Now!

A new critical vulnerability has been found in the GitHub Enterprise Server! CVE-2024-9487, with a staggering CVSS score of 9.5, is a cryptographic signature verification flaw that allows an attacker to gain unauthorized access to vulnerable instances.78io.-[

Oct 16, 2024

Oracle Releases Critical Security Updates October 2024 – Patch Now!

Oracle has released its Critical Patch Update (CPU) for October 2024, containing 334 new security patches across various product families, including Oracle Database Server, Oracle MySQL, Oracle Communications, Oracle E-Business Suite, Oracle Fusion Middleware, and more. This update addresses vulnera...

Oct 15, 2024

Everything You Need to Know about Cybersecurity in Retail

Everybody shops online or in supermarkets and shops. The digital transformation has aided and simplified how we shop. But every change comes with a drawback, too. So, in the case of the retail industry, the drawback is the drastic rise in hackers targeting them over the last few years. So, what is t...

Oct 15, 2024

Story of Cyberattack – Change Healthcare

Even the most trusted healthcare providers aren’t immune to cyberattacks. One such victim was “Change Healthcare”, a major company in the healthcare industry, providing essential services such as data analytics, payment processing, and software for healthcare systems. Founded to streamline healthcar...

Oct 14, 2024

Breaking Down Large Text for LLMs: The Power of Recursive Character Text Splitter - SecPod AI

Ever tried reading a novel in one go? Neither have I! Just like our brains can only handle so much at once, Large Language Models (LLMs) like GPT-4 have limits on how much text they can process in one shot.

Oct 14, 2024

Understanding Context Length, Context Window and Token Size: Maximizing NLP Model Efficiency - SecPod AI

Let us look at the above image, we see there are two important terms mentioned

Oct 14, 2024

Critical Vulnerabilities in Windows, CERT-In Warns Users

Microsoft Windows, the world’s most widely used desktop OS, is at risk! The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity alert, warning Windows users in India of several vulnerabilities in Microsoft products and urging them to update their systems immediately.

Oct 10, 2024

Adobe Rolls Out Critical Security Updates Across Multiple Products – October 2024

In October 2024, Adobe issued security updates to fix several vulnerabilities in Adobe Substance 3D Painter, Adobe Commerce, Adobe Dimension, Adobe Animate, Adobe Lightroom, Adobe InCopy, Adobe InDesign, Adobe Substance 3D Stager, and Adobe FrameMaker. Cyber attackers could exploit these flaws to ga...

Oct 09, 2024

Microsoft Fixes 118 Flaws, 5 Zero Days in October 2024 Patch Tuesday

This month, Microsoft released security updates addressing 118 vulnerabilities, of which 5 were publicly disclosed zero days, and 3 were critical RCE flaws. Two of the zero days are known to have been actively exploited. The chart below offers some insight into the types of vulnerabilities found.

Oct 08, 2024

Unlocking MongoDB with Natural Language: Say It, Query It! - SecPod AI

In the ever-evolving world of databases, NoSQL is the cool kid on the block, bringing flexibility, speed, and a whole lot of awesome features. Let’s dive into why NoSQL databases paired with language models like LLMs (that’s short for Large Language Models, if you’re wondering) are a match made in d...

Oct 03, 2024

Zimbra Fixes Actively Exploited CVE-2024-45519 Flaw Allowing Unauthorised Code Execution

Zimbra has issued an advisory regarding a critical vulnerability identified as CVE-2024-45519, found in its postjournal service. This flaw has been classified  as having a high severity level, allowing unauthenticated users to execute arbitrary commands on vulnerable systems. The vulnerability was f...

Oct 02, 2024

EP 4: Story Behind a Cyberattack : WannaCry

Welcome back to another episode of “The Story Behind a Cyberattack.” In this episode, we will explore a ransomware attack that occurred in 2017.

Sep 30, 2024

A Cup Half Empty: Linux RCE Flaws Discovered In CUPS

It’s been a rough year for Linux! The XZ Utils bug caused tremors worldwide in March, and with the recent discovery of a potential chain attack on the CUPS open-source printing system, Linux seems to be caught in a veritable maelstrom of vulnerabilities.

Sep 30, 2024

How Generative AI is Shaping Cybersecurity - SecPod AI

In recent years, the rapid development of Generative AI (GenAI) has revolutionized various industries from art and music to writing and game design. This innovative technology is reshaping how we create and interact with content. Cybersecurity is no exception. While GenAI presents new opportunities ...

Sep 30, 2024

Guardrail protection of LLM against Prompt Injection. - SecPod AI

Large Language Models (LLMs) are a type of AI model trained on vast amounts of text data, enabling them to understand and generate human-like language. These models, like OpenAI’s GPT or Google’s BERT, have revolutionized the way machines process language, making them capable of tasks ranging from s...

Sep 30, 2024

Guarding GenAI: Navigating OWASP’s Top 10 Vulnerabilities in LLM Applications - SecPod AI

The great advances in Artificial Intelligence, in general, ChatGPT-like Large Language models (LLM), in particular, have led to a profusion of Generative Artificial Intelligence (GenAI) applications. They promise AI-empowered performance and efficiency improvements besides providing a natural langua...

Sep 30, 2024

Vulnerability Management Framework: A 5-Step Blueprint for Cyber Defense

How can you consistently identify and patch security risks while improving your cybersecurity posture. The answer lies in strong vulnerability management framework. 50% of organizations around the world experienced a breach caused by unpatched vulnerabilities. Without a structured approach to manage...

Sep 29, 2024

What Does CVE Stand For? CVEs Explained!

Adam: “Hey did you patch that vulnerability that got detected recently?”

Sep 29, 2024

Securing AI Implementations: A Guide with Examples - SecPod AI

In today’s digital landscape, the integration of AI technologies has become ubiquitous across various industries. As we delve deeper into harnessing the power of AI, ensuring the security of these implementations becomes paramount. In this blog post, inspired by the insightful work of Omar Santos , ...

Sep 29, 2024

Revolutionizing Cybersecurity Analysis with AI-Powered Insights - SecPod AI

In the ever-evolving landscape of cybersecurity, organizations face an overwhelming amount of data from various security tools and reports. The challenge lies not just in collecting this data, but in quickly extracting meaningful insights to make informed decisions. This is where our latest AI Enabl...

Sep 29, 2024

AI in Cybersecurity: How SecPod's SanerNow is Shaping the Future - SecPod AI

In today’s fast-evolving digital landscape, the challenges of securing information, networks, and applications from sophisticated cyber threats have grown exponentially. At SecPod, we’re leveraging Artificial Intelligence (AI) to stay ahead of attackers, ensuring proactive and intelligent responses ...

Sep 29, 2024

Estimating the Impact of Vulnerability Debt

You can’t easily measure the impact of a vulnerability in your network. To add salt to the wound, the impact is multi-fold. Not just monetarily, risks in your network can damage everything else, too. To measure this impact, security leaders around the world are leveraging the concept of vulnerabilit...

Sep 26, 2024

Everything you Need to Know about Linux Patch Management

In today’s IT environment, the security of your Linux systems is paramount as they are heavily dependent OS by developers. With cyber threats constantly evolving, effective patch management for linux is your frontline defense; essential updates keep everything running smoothly and safely. Yet, navig...

Sep 26, 2024

Attack Surface Management v/s Vulnerability Management: Know the Difference!

Attack surface management and Vulnerability Management have always been mistaken. Knowing the difference between managing your attack surface and managing vulnerabilities is key. These two terms may sound familiar, but each tackles a different aspect of security. So, let’s dive into the world of att...

Sep 22, 2024

Seven (7) Key Principles to Prevent Cyberattacks

In today’s digital world, cyberattacks are becoming more frequent and sophisticated. Attackers are constantly refining their methods, and no organization—large or small—is completely immune to their reach. Many businesses struggle to protect their IT environments effectively, leading to breaches, fi...

Sep 22, 2024

SolarWinds Fixed Critical RCE (CVE-2024-28991) in Access Rights Manager. Patch Now!

SolarWinds has released critical updates to address two security vulnerabilities in its Access Rights Manager (ARM) software, including a severe flaw that could lead to remote code execution (RCE). These vulnerabilities pose significant security risks to organizations using ARM for managing access r...

Sep 17, 2024

Critical GitLab Pipeline Execution Vulnerability (CVE-2024-6678)

Recently, GitLab issued an urgent security advisory regarding a critical vulnerability, CVE-2024-6678, which impacts both GitLab Community Edition (CE) and Enterprise Edition (EE). This flaw, with a CVSS score of 9.9, allows attackers to execute pipeline jobs as arbitrary users, potentially leading ...

Sep 12, 2024

Adobe Critical Security Updates Sept 2024

In September 2024, Adobe has rolled out a series of crucial security updates for several of its major products. This release addresses multiple vulnerabilities across its software suite, including Adobe Media Encoder, Adobe Audition, Adobe After Effects, Adobe Premiere Pro, Adobe Illustrator, Adobe ...

Sep 11, 2024

Microsoft Addresses 79 Flaws, 4 Zero Days in September 2024 Patch Tuesday

September’s coming in hot! Out of the 79 vulnerabilities it has under its belt, 4 are zero-days, and each zero-day is known to have been actively exploited. Luckily, Microsoft has saved us from impending calamity once more and released patches for them all.

Sep 10, 2024

Best Practices to Strengthen Cybersecurity in Finance

According to reports, financial firms experienced a 39% increase in cyberattacks in 2023!

Sep 08, 2024

How North American SMBs Can Leverage Vulnerability Management to Stay Secure

Stopping cyberattacks isn’t easy, but preventing them can be if you properly implement vulnerability management. However, managing vulnerabilities can be daunting, and small and medium-sized businesses (SMBs) around the world and in the North American region in particular are struggling. But why?

Sep 05, 2024

Safeguarding the Factory Floor: “Cybersecurity in Manufacturing”

The world of manufacturing has always been about precision, efficiency, and innovation. But today, there’s a new element to consider “cybersecurity”. Manufacturing isn’t just about machines and assembly lines anymore, it’s also about protecting valuable digital assets from vulnerabilities. Cyber-cri...

Sep 05, 2024

Security Updates from Veeam: 18 Vulnerabilities Addressed, Including 5 Critical Threats

Sep 05, 2024

Zyxel Users Beware: Critical OS Command Injection Flaw Threatens Routers

Zyxel, a communications company, has released an advisory warning users of a critical input validation vulnerability impacting many of its router models. CVE-2024-7261, with a CVSS score of 9.8, could potentially allow unauthenticated attackers to perform OS command injection.

Sep 03, 2024

Risk vs. Vulnerability Assessment: Should we Compare Them?

With so much information/ data stored digitally or on the cloud, the risk it poses is unavoidable. Cyberattacks are rising, and attackers are getting sophisticated while planning an attack. The first step you take to overcome these attacks is to implement a strategy for risk reduction.

Aug 28, 2024

What is Vulnerability Debt?

We have a love-hate relationship with debt. But why am I talking about debt in a vulnerability management blog? Vulnerability debt is a new concept that has gained traction recently, and it is a great way to understand the impact vulnerabilities and security risks have on your network. So, lets dig ...

Aug 28, 2024

Proactive vs Reactive Cybersecurity

Organizations are constantly under threat from cyberattacks. Hackers are more creative than ever, and the threat landscape continues to grow. Every 39 seconds, a cyberattack occurs somewhere in the world. With the average cost of a data breach costing up to $ 4.45 million in 2023. The key to staying...

Aug 26, 2024

Everything You Need to Know about PCI Vulnerability Management

Running a business isn’t easy. You have a lot of things to keep in mind. But on top of the list should be safeguarding your customer’s data. And if your business handles credit card information, you must have heard of PCI and PCI vulnerability management.

Aug 24, 2024

Understanding Centralized Patch Management: One View for All Your Patches

Would you rather have different dashboards for each of your OS groups and jump through multiple hoops to get info and patch your devices? Or just a single one to do it all? The answer is obvious, right? Centralized patch management is the superior way of doing things, and you are missing out on a lo...

Aug 22, 2024

Google Chrome 128 Update Resolves Critical Security Vulnerabilities!

Google has released Chrome 128, a significant update that addresses multiple high-severity vulnerabilities that could potentially impact the security and integrity of the widely used web browser. This update is crucial for users protect their systems against emerging threats.

Aug 21, 2024

Building a Solid Patch Management Plan to Ward-Off Cyberattacks

Handling security in today’s cybersecurity landscape is definitely not easy!

Aug 21, 2024

Vulnerability Management Workflow

Vulnerability Management, the name itself says it all. We all know vulnerability management is crucial for companies and individuals to follow. But why is it important and what is the workflow each time we try to Kill a vulnerability? Everything we do, either has a ‘Yes’ or a ‘No’, right? The proces...

Aug 20, 2024

Microsoft’s August 2024 Patch Tuesday: Microsoft fixes 10 zero days; releases fix for 90 flaws.

Aug 14, 2024

Patch Management vs Vulnerability Management: Understand the Difference

To keep up with increasingly cunning hackers and safeguard your network, you need to detect risks and patch them. So, to protect your network, you need vulnerability and patch management to do the dirty work. Vulnerability management tool detects security risks, and patch management tool remediates ...

Aug 13, 2024

FreeBSD Issues Critical Patch for Severe OpenSSH Vulnerability

The maintainers of the FreeBSD Project have issued an urgent security update to address a high-severity vulnerability in OpenSSH. This flaw could allow attackers to remotely execute arbitrary code with elevated privileges, posing a serious risk to systems running the affected versions of FreeBSD.

Aug 12, 2024

In-depth Understanding of the Terms CVE vs CVSS

In cybersecurity, the terms CVE vs CVSS often create confusion for those trying to understand vulnerabilities and their severity. While they are definitely related, they serve distinct purposes in the process of assessing and prioritizing risks. Remediating such risks is simpler with a patch managem...

Aug 11, 2024

Critical Apache OFBiz Flaw Makes Waves Worldwide

Apache just patched a critical vulnerability (christened CVE-2024-38856) in OFBiz, their open-source ERP system. Discovered by SonicWall Capture Labs, this pre-authentication remote code execution flaw has a CVSS score of 9.8 and involves the exposure of critical endpoints to unauthenticated threat ...

Aug 06, 2024

The Art of Automating Vulnerability Management: The How and the Best Practices

Scale. One word we can use to define the cybersecurity world over the past few decades. Networks and devices in them have scaled up and so have the number of security risks in them. As a result, the number of cyberattacks has scaled up, too! With this gigantic increase, traditional vulnerability man...

Jul 31, 2024

Apple Security Updates in July 2024

Apple just rolled out its latest security updates for various products in the Apple Security Updates in July 2024. This new update promises to strengthen the security of Apple devices and address several critical vulnerabilities. Here’s a closer look at what these updates entail and why you should i...

Jul 31, 2024

The Story of Cyberattack – CISCO Breach

The technology company Cisco was hacked by a group called the Ynalouwang Ransomware Group in 2022. This breach showed that even big companies have weak spots in their security. In this blog, you will get to know who hacked, how , what’s the breach’s impact, and how SanerNow prevents such cyberattack...

Jul 30, 2024

Vulnerabilities vs Exposures: Know the Difference

The cybersecurity world is filled with many CVEs (common vulnerabilities and exposures). However, enterprises have been busy only focusing on vulnerabilities; exposures have taken backstage.

Jul 30, 2024

Guide to Enterprise Patch Management

Patch Management stands as a critical component of a robust cybersecurity strategy. It involves the timely updating of software to fix vulnerabilities, enhance functionality, and ensure overall security.

Jul 24, 2024

Critical Flaw in Cisco Smart Software Manager Allows Attackers to Control the Device

A critical vulnerability in the Cisco Smart Software Manager On-Prem (SSM On-prem) authentication system that allowed unauthenticated, remote attackers to change the password of any user, including that of administrators, has been fixed.

Jul 21, 2024

NIST Vulnerability Management

Cybersecurity is important. It’s a hard truth we all must accept. Cyber threats are constantly evolving, targeting individuals, businesses, and governments. As much as I hate to say it, protecting sensitive information and maintaining secure systems is crucial.

Jul 18, 2024

GeoServer Critical RCE Flaw Actively Exploited, Warns CISA

GeoServer, an open-source tool used to share and modify geospatial data, is under attack. CVE-2024-36401, which impacts the GeoTools plugin, has a severity rating of 9.8 and arises from the unsafe evaluation of property names as XPath expressions. The GeoTools library API exposes property and attrib...

Jul 17, 2024

Securing Every Angle – A Threat Model for an IoT Enabled Smart Parking System

Welcome to the second part of this two-part blog on IoT security! The first part explained how IoT-enabled self-driving cars work and how to secure communications between them. You can read the first part here.

Jul 16, 2024

Eyes, I Mean Sensors On the Road – Understanding and Safeguarding IoT in Cars

I recently started learning to drive. The first class left me panicked and overwhelmed. The Herculean task of turning, as well as having to remember that the car took up more space than just my seat, left me never wanting to drive again. Subsequent classes were less scary, but I still found myself w...

Jul 16, 2024

The Story of Mis-Tech: Ep 2: The Search for a Vulnerability Management Tool That Works!

A quick recap

Jul 14, 2024

Exim Mail Server Vulnerability: A Critical Threat Affecting Millions

A critical vulnerability (CVE-2024-39929) in the Exim mail transfer agent could enable attackers to deliver malicious attachments to users’ inboxes. The flaw, rated 9.1 out of 10 on the CVSS scale, affects versions up to 4.97.1 and has been fixed in version 4.98.

Jul 14, 2024

Microsoft’s July 2024 Patch Tuesday Fixes Four Zero Days; Releases Patches for 142 Vulnerabilities

Microsoft released its July edition of Patch Tuesday. In it, Microsoft addressed 142 flaws and patched four zero-day bugs.

Jul 09, 2024

Ghostscript Vulnerability Actively Exploited in the Wild

A severe remote code execution (RCE) vulnerability in the widely used Ghostscript library is being actively exploited. This vulnerability, identified as CVE-2024-29510, affects Ghostscript versions 10.03.0 and earlier. Ghostscript, a document conversion tool, is commonly found on Linux systems and i...

Jul 08, 2024

“A Language Perspective to Thinking and Processing - Past, Present and Future” - SecPod AI

Language has played a key role in the development and advancement of human civilizations since time immemorial. First and foremost, language is the primary means of expressing thoughts and feelings with clarity. Secondly, it is the basis of communication and understanding for both day-to-day interac...

Jul 05, 2024

Unveiling regreSSHion: Critical OpenSSH Flaw Found In Linux Systems

Linux users beware! OpenSSH flaw, a networking utility installed on every Unix and Linux system by default, is affected by a critical signal handler race condition vulnerability.

Jul 03, 2024

Juniper Networks Rolls Out Essential Security Patch for Router Flaw: CVE-2024-2973

Juniper Networks has issued an out-of-band security update to address a critical flaw that poses a significant security risk to its routers. The vulnerability CVE-2024-2973, boasts a CVSS score of 10.0, marking it as exceptionally severe.

Jul 03, 2024

Managing CISA Known Exploitable Vulnerabilities (KEVs) and Enhancing Cyber Resilience using Saner CVEM

Vulnerabilities and exploits are strange bedfellows. While vulnerabilities are unintended and often unavoidable, exploits are deliberately created to feast on these vulnerabilities.

Jul 01, 2024

16 Years of SecPod – Year 1, Phase IV

A stunning silence had erupted in a national bank. My brother, our finance person, and I sat in their office. A scream out of frustration from my brother ignited that silence. We walked off the building, and I told them we would close this loan in the next few months.

Jun 30, 2024

New MOVEit Transfer Vulnerability Under Attack – Urgent Patch Required

A critical security vulnerability in Progress Software’s MOVEit  Transfer has been discovered and is known to be under active exploitation. The flaw, identified as CVE-2024-5806, has a CVSS score of 9.1 and involves an authentication bypass affecting several versions of MOVEit Transfer.

Jun 27, 2024

Top Attack Surface Management Vendors 2024

Attack surface reduction is the single most important step to secure your organization from cyberattacks. But it can be lengthy, laborious, and challenging. However, attack surface management vendors can simplify the process!

Jun 27, 2024

Story of Cyberattack: ProxyLogon

In this episode of “Story behind a cyberattack”, let’s talk about a cyberattack that shook the cybersecurity landscape in 2021. The attack that exposed the potential risks of unpatched systems and highlighted the important of cybersecurity practices. Approximately, 60,000 organizations have been com...

Jun 27, 2024

What is Zero Trust Model?

In today’s world, trust is not taken for granted. Similarly, imagine a security model that questions every interaction, ensuring nothing is taken for granted for better security posture.

Jun 27, 2024

Overcoming the Myths of Vulnerability Management with CVEM

In recent times, there’s been a huge buzz about the increasing popularity of Continuous Threat and Exposure Management (CTEM).

Jun 27, 2024

Cyber Risk Exposure: Protecting Your Digital Space

In July 2021, Kaseya, a software company, experience a cyberattack that affected up to 1,500 businesses worldwide. This ransomware attack disrupted operations, caused financial losses, and highlighted the critical importance of cyber risk exposure. But what exactly is cyber risk exposure, and why sh...

Jun 27, 2024

EP 1: Story of Cyberattack Log4j

In our very first episode of “Story Behind a Cyberattack,” we are bringing in the most critical vulnerability that hampered the security posture of almost every enterprise– Log4j

Jun 20, 2024

Google Chrome 126 Update Resolves Critical Security Vulnerabilities!

Google has released Chrome 126, which addresses several high-severity vulnerabilities, including a notable flaw demonstrated at the TyphoonPWN 2024 hacking competition. This update is essential for maintaining the security and integrity of the widely-used web browser.

Jun 19, 2024

Critical Vulnerabilities Found in VMware vCenter Server and Cloud Foundation

A recent surge of critical remote code execution (RCE) vulnerabilities has been discovered in VMware vCenter Server and Cloud Foundation products. These vulnerabilities can be triggered by remote attackers who craft and send specific network packets to the vCenter Server via the DCERPC protocol. Suc...

Jun 18, 2024

Adobe Critical Security Updates June 2024

In June 2024, Adobe released security updates addressing 13 critical vulnerabilities in software like Experience Manager, Adobe Commerce, Photoshop, etc. In total, 168 security flaws were patched using a patch manager. These vulnerabilities could lead to various issues, such as arbitrary code execut...

Jun 14, 2024

The Story of Mis-Tech: Ep 1: Hit with a Cyberattack and Panic Ensues

The security room of Mis-Tech was silent.

Jun 13, 2024

Control+Alt+Defeat Vulnerabilities in 5 mins

The fight against vulnerabilities and threats is constant. The real race is between cyber-attackers and organizations constantly trying to stay ahead. Attackers give their all to penetrate enterprises’ cyber defense while enterprises defend their IT infrastructure.

Jun 13, 2024

Microsoft’s June 2024 Patch Tuesday: Microsoft patches 51 flaws and fixes one publicly disclosed zero-day.

Microsoft released its June edition of Patch Tuesday. Microsoft addressed 51 flaws in its June edition and patched one actively exploited zero-day.

Jun 11, 2024

ARM Mali GPU Drivers are prey to a Wildly exploited Zero-Day flaw!

The leading Processor Technology provider, ARM has announced a zero-day vulnerability in its Open Source Kernel Drivers: Mali GPU Drivers on 7th June 2024. This vulnerability is tracked as CVE-2024-4610 and is said to be exploited in the wild by attackers. Mali GPU Drivers, the widely used ARM GPU D...

Jun 10, 2024

RCE Flaw Discovered in PHP’s Windows Versions

The well-known open-source scripting language PHP (Hypertext Preprocessor) just had a critical RCE flaw patched and disclosed. Found and reported by security researcher Orange Tsai, CVE-2024-4577 affects the PHP-CGI module in the Windows version and impacts all releases post 5.x.

Jun 09, 2024

Top Six Vulnerability Management Vendors

Attack surface has increased by two folds recently. And so, the chance of a cyberattack.

May 30, 2024

Seven Strategies for Supersonic Attack Surface Reduction

Attack surface reduction is arguably the most important step in preventing cyberattacks. It is the fundamental step you must perfect to ensure you safeguard and secure your attack surface.

May 30, 2024

What is MITRE Att&ck Framework?

We all know that cyberattacks are rising daily! They have caused chaos in every organization, resulting in substantial financial losses.

May 29, 2024

Top Vulnerability Scanning Tools 2024

According to statistics, a new cyberattack was detected every 39 seconds in 2023! With this rise in number of attacks, protecting sensitive data becomes crucial and challenging.

May 21, 2024

Top Cybersecurity Companies in 2024!

Introduction

May 19, 2024

Microsoft’s May 2024 Patch Tuesday: Microsoft patches three zero-days under active exploit and 61 flaws.

Microsoft released its May edition of Patch Tuesday, in which 61 vulnerabilities and three actively exploited zero days were addressed. Of the 61 vulnerabilities, 59 fall under the Important severity, while one each in the Moderate and Critical severity.

May 14, 2024

Apple’s May 2024 Updates Addresses Multiple Security Vulnerabilities!

May 14, 2024

A Deep Dive into NIST Patch Management

Patch Management is one of the most critical components of the vulnerability management and cyberattack prevention process. It streamlines, regulates, and methodizes the application of patches for a smoother process. Following NIST patch management guidelines will strengthen your IT security and zer...

May 09, 2024

SecPod Partners with DataguardNXT to Distribute SanerNow in the GCC Region

May 07, 2024

SecPod Announces Partnership with Raya Information Technologies to Expand the Reach of SanerNow in the Egypt and Saudi Arabia Region

May 06, 2024

Patch Management Metrics to Look Out for in 2024

In today’s fast-paced world, it’s no more about keeping devices up-to-date; it’s about strengthening defenses and ensuring your prevention strategy is strong. As cyberattacks continue to evolve, measuring the success of your patch management process becomes more vital than ever.

Apr 28, 2024

Top Vulnerability Management Tools in 2024

What is modern IT Security without a vulnerability management tool? Severely limited, crippled, and not contemporary. The key goal of vulnerability management tools is to reduce your attack surface. They are critical weapons for IT and security teams to combat and prevent cyberattacks. From scanning...

Apr 24, 2024

SecPod Announces Partnership with Logix to Distribute SanerNow in Egypt and Saudi Arabia Region

Apr 24, 2024

Patch Management Schedule for a Cyberattack-Free 2024

What is the average time for to apply a patch? The answer might surprise you, but not in a good way. Research suggests the average time to apply a patch is 102 days!! With the number of vulnerabilities reaching 40,000+ in a year, the chance of you missing out on a new patch is high. A patch manageme...

Apr 15, 2024

Top Exposure Management Solutions for Enterprises in 2024!

In a world where cyberattacks are evolving faster than humans are able to detect and respond to threats, dealing with these attacks and finding effective tools to do so is crucial. Vulnerability management tools that help us safeguard our IT infrastructure are a necessity.

Apr 10, 2024

Microsoft’s April 2024 Patch Tuesday: A Record-Breaking Month for Security Fixes

Microsoft’s April 2024 Patch Tuesday wasn’t your average update day. While a record number of vulnerabilities were addressed (149), a unique aspect emerged – three critical vulnerabilities resided within a single product: Microsoft Defender for IoT. This blog post dives into these critical defenders...

Apr 09, 2024

Insights into Cybersecurity Trends: Staying Ahead in a Changing Landscape

The world of cybersecurity is like a wild jungle – always changing and sometimes dangerous! Hackers and cybercriminals are always searching for new ways to exploit vulnerabilities and access our sensitive information. Staying ahead in this dynamic landscape requires understanding the latest threats ...

Apr 03, 2024

Is Vulnerability Mitigation Just Patching? Or Patching and Beyond

The biggest reason for cyberattacks has been vulnerabilities. However, the trend has slowly changed, with threat actors using different methods and security risks to enter your network. Research suggests that 31% of cyberattacks were due to security risks such as misconfigurations, posture anomalies...

Mar 27, 2024

What is Cyberattack Prevention Truly? A Deep Dive

Security largely remains an afterthought. It is invariably a retrofit. Product developers focus on tangible attributes – functionality, performance, User Experience etc. Security is intangible and typically comes with a cost – both financial and other QoS-like performance and thus takes a back seat....

Mar 27, 2024

Fortinet Fixes Actively Exploited FORTICLIENT EMS Flaw Allowing Unauthorised Code Execution

Fortinet has issued an advisory warning about a new critical vulnerability in Fortinet’s FortiClient Enterprise Management Server (EMS) software. This flaw, identified as CVE-2023-48788, has been assigned a severity score of 9.3 on the CVSS scale, underlining its potential for serious impact. Horizo...

Mar 21, 2024

What are Security Controls? Everything You Need to Know

What were the biggest culprits and causes of cyberattacks in the past few years? CVE or software vulnerabilities are the usual suspects, but other security risks being exploited are on the rise and vulnerability management tools are struggling to keep up. It is a trend you must be observing too. The...

Mar 20, 2024

Achieve NIST CSF and STIG compliance excellence with SanerNow 6.1

Compliance promises brand reputation gains and competitive advantage. It is a proven way to demonstrate the effectiveness of security posture to your stakeholders. Though there are many benefits, most organizations find it difficult, and to make things worse, they fall short of a regulatory need. Th...

Mar 18, 2024

Microsoft Fixes 60 Vulnerabilities, 2 Rated Critical, in March 2024 Patch Tuesday

It’s been a calm year so far for patches! January saw no zero days, February only saw two, and March has brought us another month with zero zero days, so to speak. Microsoft’s Patch Tuesday states that out of the 60 flaws found, two are critical, and none were previously disclosed or actively exploi...

Mar 12, 2024

Strategic Server Patch Management to Safeguard Your IT Landscape

Consider this scenario: many vulnerabilities that don’t have a patch are present in the servers and get wildly exploited.  These vulnerabilities will act as an open door to hackers, inviting them to have complete control over organizational information. To prevent this situation, an organization sho...

Mar 10, 2024

Celebrating Women in Cybersecurity

As we celebrate International Women’s Day, it’s empowering that women are stepping up and showcasing their involvement in tech, breaking down barriers and challenging stereotypes. Women in SecPod are not only known for their technical skills but also for their leadership, resilience, and powerful pr...

Mar 07, 2024

VMWare Catches New Critical ESXi Sandbox Escape Bugs

VMWare’s latest advisory reveals four new vulnerabilities affecting its ESXi, Workstation, Fusion, and Cloud Foundation products. Each vulnerability has been patched, with support even being extended for end-of-life products – an unusual but vital decision for this unprecedented situation.

Mar 05, 2024

Critical Security Vulnerabilities Discovered in JetBrains TeamCity: Urgent Action Required

Recent disclosures have revealed critical vulnerabilities in JetBrains TeamCity. Two vulnerabilities have been identified, namely: CVE-2024-27198 and CVE-2024-27199. It allows unauthenticated attackers to bypass authentication measures and gain unauthorized access to sensitive endpoints within the T...

Mar 04, 2024

5 Reasons Vulnerability Management Is So Important for SMEs

Across the web, it’s easy to find countless articles on vulnerability management. This is the process of continuous assessment, identification, management, and updating of a business’ cybersecurity practices, and it’s a process that a lot of companies undertake to protect themselves against the evol...

Feb 29, 2024

SanerNow Risk Prioritization vs CVSS-based Risk Prioritization

A mountain of vulnerabilities and no way of knowing the most critical ones. This is the story of every modern organization’s network, including yours probably. “But what about CVSS-based prioritization?” you might ask. While CVSS in cyber security is a popular method, vulnerability management tools ...

Feb 26, 2024

“What’s the Proof?” The Most Frequently asked Question by Security Teams, Now Answered by SanerNow

The odds are stacked against the IT team, who are at work daily to protect their organization against cyberattacks. It will make life easier for the security teams if they get clarity on the vulnerabilities of their IT environment. For instance, the name of the vulnerability, the associated CVE ID, ...

Feb 22, 2024

SanerNow’s Agentless Scanner for Endpoint Security

An agentless scanner can detect every vulnerability without leaving a trace. It can silently detect vulnerabilities without installing an agent in each device. The agentless scanner operates discreetly, gathers all the vulnerability information, and self-destructs itself.

Feb 19, 2024

SolarWinds Fixes Five Potential RCE Vulnerabilities in its Access Rights Manager Solution

Five remote code execution (RCE) vulnerabilities, including three critical severity holes, have been addressed by SolarWinds in its Access Rights Manager (ARM) solution. Three vulnerabilities stand out among the five due to their ability to execute remote code without authentication. These vulnerabi...

Feb 19, 2024

Patch Immediately! Critical Exchange Server Vulnerability Actively Exploited

A recently discovered critical vulnerability in Microsoft Exchange Server (CVE-2024-21410) is being actively exploited by attackers. A privilege escalation vulnerability allows attackers to use leaked login credentials (like those from compromised Outlook clients) to gain unauthorized access and con...

Feb 14, 2024

The February 2024 Microsoft Patch Tuesday Addresses 73 Vulnerabilities, Including 2 zero-day exploits

Microsoft’s latest security updates for Patch Tuesday in February 2024 address a total of 73 vulnerabilities. Among these, five are classified as critical, including two zero-day vulnerabilities (CVE-2024-21351 and CVE-2024-21412), with thirty vulnerabilities linked to remote code execution. The uti...

Feb 13, 2024

Mastering Remote Patch Management: Best Practices and Strategies

In the fast-paced world of technology, where businesses are increasingly reliant on digital infrastructure, maintaining a secure and up-to-date software environment is paramount. Remote patch management emerges as a crucial aspect of this process, ensuring that software vulnerabilities are addressed...

Feb 12, 2024

Strengthening Vulnerability Management Using the CMDB Feature in SanerNow

Feb 12, 2024

Critical Security Updates: Cisco, Fortinet, and VMware Address Vulnerabilities

In today’s digital age, cybersecurity remains a paramount concern for businesses worldwide. As cyber threats evolve in complexity and sophistication, organizations must stay vigilant and proactive in securing their systems and data. Recently, leading technology companies Cisco, Fortinet, and VMware ...

Feb 08, 2024

Unveiling Order from Chaos: Device Tagging’s Role in Streamlining Vulnerability Management

The sophistication of cyber-attacks isn’t waning. The rise in ransomware attacks is sound proof of that. Instead, it adds to the security agony of every organization across geography.

Feb 07, 2024

Risk Prioritization Strategies for Rapid Attack Surface Reduction

How many vulnerabilities do you have in your IT infrastructure right now? The odds are that the number could be thousands or even 10s of thousands and always rising too! And with software vendors releasing updates to their software almost daily, there’s always a constant chance for potential risk in...

Feb 04, 2024

SanerNow 6.1 Release: What’s New In-Store?

We have some amazing new features, product enhancements, new OS supports and bug fixes with the SanerNow 6.1 release.

Feb 03, 2024

Watch out: GitLab patches a critical security bug in Workspace Creation. Patch Now!

GitLab released multiple patches in its recent advisory published to fix a critical security issue along with four other security flaws on January 11th. Both Community and Enterprise Editions (CE & EE) are affected by these vulnerabilities, and patches have been released for the same in versions 16....

Feb 01, 2024

True Prevention: Preventing Cyberattacks the Real Way

What have you been doing for cyberattack prevention? Listing IT assets and assessing vulnerabilities alone? In the modern scenario of increasingly complex networks and evolving cyber threats, assessing vulnerabilities alone with traditional vulnerability management tools is just not enough.

Jan 31, 2024

CISA-SSVC-based Risk Prioritization is Better than Yours: Know Why?

In today’s evolving business landscape, the complexity and density of modern Enterprise IT networks contribute to an expansive and vulnerable attack surface. Enterprise IT Security Teams confront an infinite number of risks, spanning from cybersecurity threats to deviations in regulatory compliance....

Jan 30, 2024

SecPod releases the World’s First SSVC-based Risk Prioritization Product for Enterprise IT Security Teams to Effectively Prioritize and Rapidly Eliminate Security Vulnerabilities

Jan 30, 2024

Fortify Your Data Fortress with Full Disk Encryption

In today’s interconnected digital landscape, protecting sensitive data has become more critical than ever. Full disk encryption emerges as a fundamental security measure in safeguarding confidential information against unauthorized access and data breaches. By encrypting every bit of data stored on ...

Jan 28, 2024

Critical Zero-Day Authentication Bypass Vulnerability (CVE-2024-0204) in Fortra GoAnywhere MFT.

Jan 24, 2024

Prevention – The Befuddled Concept

There are only two distinct defenses in cyber security – proactive and reactive. Proactive defense refers to actions that prevent an incident from occurring. In this sense proactive and preventive are synonymous. Reactive defense refers to any response when an attack is underway or has already done ...

Jan 23, 2024

Keep Your Systems Safe with Patch Management Audit

Picture yourself cruising down the highway, engine humming, cool breeze passing by, everything just clicking. Now, here’s the catch: neglect the routine care your car needs, like oil checks, tire rotations, and other mechanical inspections. Boom! Your smooth ride can quickly turn into a not-so-pleas...

Jan 22, 2024

Understanding the Essence of Cyber Hygiene Score and its Impact

In an era of technological advancements, the interconnectedness of digital systems has become an integral part of our daily lives. The dependence on digital networks has grown exponentially from personal communications to critical infrastructure. With this increased connectivity, however, comes a pr...

Jan 17, 2024

The Risky Dilemma: Should you Calculate Risk Score vs Cyber Hygiene Score?

A single number to quantify your organization’s risk sounds like an interesting proposition, right? Risk Score, the idea of quantifying the entirety of your organization’s overall risk, is a popular concept in the cybersecurity industry that has been gaining traction over the years. From helping ali...

Jan 17, 2024

Google Fixes First Zero-Day Chrome vulnerability of 2024

On January 16, 2024, Google released a security patch to address CVE-2024-0519 an out-of-bound security vulnerability exploited in ongoing attacks . This patch specifically targets and fixes the first zero-day vulnerability discovered in the Chrome browser this year.A remote attacker can take advant...

Jan 16, 2024

Prioritize Millions of Risks with SanerNow Risk-Based Prioritization

Imagine you have encountered millions of security risks in your organization, including a zero-day vulnerability that needs immediate attention. Can you identify this zero-day vulnerability and patch it using your traditional vulnerability and patch management tool ?

Jan 15, 2024

Proactive Vulnerability Mitigation: Staying Ahead of Cyber Threats

Companies are taking proactive steps to address vulnerabilities before their security team find and resolve them. While this approach is necessary and effective to a certain extent, it carries the risk of delayed responses, leaving systems exposed to potential threats. According to Check Point Rese...

Jan 11, 2024

Dealing with Million Unpatched Vulnerabilities. Where do we start?

While the digital realm brings convenience and connectivity, it also introduces a bunch of vulnerabilities that can compromise the security and integrity of systems. As the number of unpatched vulnerabilities continues to rise, IT Security teams find themselves struggling with the task of securing t...

Jan 11, 2024

53 Vulnerabilities (2 Critical) Fixed in Microsoft’s January 2024 Patch Tuesday

The second week of the new year has arrived, and with it comes 2024’s first Microsoft Patch Tuesday. This time around, Microsoft has fixed 53 vulnerabilities, including 2 critical ones (CVE-2024-20674 and CVE-2024-20700). Perhaps as a new year’s gift to patch writers, there have been no zero days re...

Jan 09, 2024

Vulnerability Counts from 1M to Zero in 3 weeks: Enterprise IT Security Team’s Dream Come True

While interacting with Enterprise IT Security Teams, I have come to notice that most enterprises have huge vulnerability backlogs. Thousands of unattended vulnerabilities stall the Month-on-Month progress for the IT Security teams. Primary reason for such backlogs is the disjointed approach to vulne...

Jan 09, 2024

Terrapin Alert (CVE-2023-48795): Safeguarding Against the Latest SSH Vulnerability

In a recent revelation, a new vulnerability named Terrapin (CVE-2023-48795) has been identified in the Secure Shell (SSH) cryptographic network protocol. This vulnerability poses a serious threat to the integrity of SSH connections, impacting both clients and servers.

Jan 03, 2024

Detecting and Managing Outdated Systems to Streamline Security

On Oct 10, 2017, Microsoft announced they would be ending the support for Microsoft Office 2007 ( presently outdated systems) . It was one of the popular suites developed by Microsoft; as per the developers, every Microsoft product will have a support lifecycle during which all updates, patches, and...

Jan 03, 2024

Vulnerability 2.0: Redefining Vulnerabilities

The security team members at ACME were scurrying around the office. The CISO was blasting orders, and the sysadmins were trying to follow it. The aftermath of a cyber-attack had left them all speechless, stressed, and overworked. Unlike typical malware/ransomware, the attack occurred from a simple-y...

Jan 02, 2024

Automate Vulnerability Scanning to a Daily Routine!

Organizations and individuals mainly rely on technology for various aspects of their daily lives. As cyber threats are expanding, organizations must constantly stay alert to protect their digital assets and data. Vulnerability scanning is the process of going through your IT infrastructure to detect...

Dec 26, 2023

Apple’s December 2023 Updates Addresses Multiple Security Vulnerabilities!

Dec 18, 2023

Elevate Your Digital Well-being: A Guide to Improving Cyber Hygiene

Practicing Cyber Hygiene is worth it, making it much harder for hackers to succeed in infiltrating your system and reducing the damage they can cause to your personal as well as business information. Just as individuals take care of their health by following routine practices like handwashing to avo...

Dec 17, 2023

What are the Best Practices for PCI-DSS Compliance?

Compliance management is crucial for organizations, especially in industries that handle sensitive data and financial transactions. It generally involves adhering to various regulations, standards, and best practices relevant to the organization’s operations. Different security standards exist, such...

Dec 13, 2023

Microsoft’s December 2023 Patch Tuesday Fixes 34 Vulnerabilities, Including 1 Zero Days!

Microsoft addressed 34 security flaws in its December 2023 Patch Tuesday, including one previously known vulnerability in AMD CPUs. While eight of these vulnerabilities were classified as remote code execution (RCE), only three were considered critical by Microsoft. In total, four vulnerabilities we...

Dec 12, 2023

Critical RCE Flaw Discovered In Confluence: CVE-2023-22522

A new remote code execution vulnerability has been found in Confluence Data Center and Server. CVE-2023-22522, exploited using template injection, allows authenticated attackers (including those with anonymous access) to inject malicious user input into Confluence pages. What’s more, this vulnerabil...

Dec 06, 2023

SecPod Partners with ABC Distribution to Distribute SecPod Solutions in the UK

Dec 06, 2023

Combating Inactive, Guest Users & Anonymous logins with SanerNow

Inactive and guest users in your network are more dangerous than you think. Accounts left alone unused for a long time, and guest users created for one-off logins are high-priority targets for cyber-attackers who exploit these accounts to get inside your network.

Dec 05, 2023

AI. The Next Stage in Evolution? - SecPod AI

In recent times, Artificial Intelligence (AI) has gained considerable attention and justifiably so. While its benefits are indisputable, the associated risks are equally undeniable. Many researchers have drawn attention to the potential risk to humanity associated with AGI.  Some of the discussions ...

Dec 03, 2023

Google Fixes Chrome’s Sixth Zero-day Vulnerability in 2023

In response to ongoing attacks exploiting a security vulnerability, Google released a security patch on 28th November, effectively addressing the sixth zero-day flaw in the Chrome browser this year. The company has officially acknowledged the existence of an exploit for the identified security flaw,...

Nov 28, 2023

What is SOC 2? A Beginner’s Guide to Compliance

In today’s digital landscape, data security and privacy have become paramount concerns for businesses and their clients. With the increasing number of data breaches and cyber threats, companies must demonstrate their commitment to safeguarding sensitive information. SOC 2 compliance is one such fram...

Nov 27, 2023

The danger of Analytical Intelligence Extrapolation called AGI - SecPod AI

Intelligence has been predominantly associated with computational abilities, often modeled after the human brain’s analytical functions. However, this perspective raises important questions: Is intelligence solely computational, or are there other dimensions to consider? Is it possible that intellig...

Nov 26, 2023

Why Agent-Based Scanner is Superior to Agentless Scanner for Vulnerability Management

Nov 25, 2023

Microsoft’s November 2023 Patch Tuesday Fixes 75 Vulnerabilities, Including 5 Zero Days

This Patch Tuesday November 2023, Microsoft fixed 75 vulnerabilities, with three rated as critical and 57 rated as important. Elevation of Privilege and Remote Code Execution vulnerabilities are tied for the most common categories at 17 each, with one in each category being critical. The third criti...

Nov 14, 2023

Cracking the Code: Understanding Why Organizations Can’t Ignore Vulnerability Prioritization

In today’s world, organizations constantly face cyber threats and vulnerabilities that can compromise their sensitive data, disrupt operations, and damage their reputations. The biggest challenge for IT Security Teams is to handle the mountainous volumes of vulnerabilities being detected by vulnerab...

Nov 14, 2023

Explore the Risks of Unwanted Applications and Unique Services Running in a Few Systems

In any organization, employees rely heavily on their devices to carry out their tasks efficiently. With legitimate applications and services, there is always a risk of unwanted applications and unique services running on employees’ systems.

Nov 08, 2023

QNAP Addresses Two Critical Vulnerabilities in QTS Operating System and Applications.

QNAP Systems has promptly resolved two critical vulnerabilities, CVE-2023-23368 and CVE-2023-23369, which involved command injection. They were discovered within the QTS operating system and associated applications used on their network-attached storage (NAS) devices. These vulnerabilities could hav...

Nov 06, 2023

Top Network Vulnerability Tools for Effective Cyberattack Prevention 2023

Network vulnerability tools are an essential part of your organization’s cybersecurity, without which your network will be left helpless. To stop threat actors from entering your network, network vulnerability tools are necessary for combating cyberattacks, and the importance of these tools can’t be...

Nov 05, 2023

F5 Issues Warning: BIG-IP Vulnerability Used In Active Exploit Chain

According to F5, a critical security vulnerability in BIG-IP is being actively exploited after its public disclosure. CVE-2023-46747, resulting in remote code execution, is being further used to exploit CVE-2023-46748, an SQL injection vulnerability.

Nov 01, 2023

Data Breach in the Healing Sphere – Cyberattack Hits 5 Hospitals!

In recent news, a cyberattack hit 5 hospitals and healthcare, forcing some emergency rooms to be closed and ambulances diverted. A ransomware attack on a shared IT service organization caused the attack, which is forcing 5 hospitals in Ontario to reschedule patient appointments. They also forced to ...

Oct 30, 2023

iLeakage: Uncovering Browser-Based Speculative Execution Attacks in Apple Safari For Email and Password Theft

An academic research team has developed a novel speculative side-channel attack, which they’ve named “iLeakage.” This attack highlights a security risk targeting vulnerabilities in recent Apple Inc. devices, enabling the extraction of sensitive data from Apple’s Safari web browser.

Oct 29, 2023

Turn Your SanerNow Agent Into A Network Scanner

In the IT landscape, workplaces have become more reliant on data and technology. This enabled remote work and communication through devices. However, this has led to the presence of personal information within business systems and cloud platforms. While technology supports businesses, it also expose...

Oct 26, 2023

Citrix Bleed: Critical Information Disclosure Vulnerability In Citrix NetScaler, Patch Now!

According to a security bulletin released by Citrix this month, their recent patches include a fix for a flaw with a CVSS score of 9.4. If that high score wasn’t enough to make you run to patch your device, the flaw has reportedly been exploited as a zero-day in the wild since August 2023, and the e...

Oct 25, 2023

Discover The High Severity Heap buffer Overflow Vulnerability in cURL (CVE-2023-38545)

The cURL development team has recently disclosed a high-severity heap buffer overflow vulnerability (CVE-2023-38545), which poses a substantial risk of enabling remote code execution in applications utilizing the impacted iterations of the cURL library.

Oct 12, 2023

Guardians of Cybersecurity: Exploring the Leading Vulnerability Assessment Solutions

Cybersecurity has never been more crucial today. With threats evolving constantly, it’s essential for businesses to stay one step ahead in safeguarding their IT infrastructure. A vulnerability assessment tool plays a vital role in identifying potential weaknesses in your organization’s infrastructur...

Oct 11, 2023

Microsoft’s October 2023 Patch Tuesday Fixes 104 Vulnerabilities, Including 3 Zero Days

Oct 11, 2023

SanerNow Risk Prioritization

In today’s rapidly evolving threat landscape, managing vulnerabilities has become a paramount concern for organizations. With an ever-increasing number of vulnerabilities and a constant influx of new threats, prioritizing remediation efforts is crucial. Traditional risk scoring methods, such as CVSS...

Oct 11, 2023

Large Refractory Manufacturer Seamlessly Achieves ISO 27001 Compliance

Industry:Iron & SteelLocation:Asia Pacific

Oct 04, 2023

Adoring Simplicity: The Art of Profound Clarity

In a world driven by constant technological advancements, the allure of complexity often overshadows the beauty of simplicity. Yet, it is in the realm of simplicity that true thoughtfulness and understanding reside.

Sep 28, 2023

Apple Releases Critical Updates to Patch 3 Zero-Day Vulnerabilities Under Active Attack

Apple has swiftly issued crucial security updates in response to the exploitation of three fresh Zero-Day Vulnerabilities. The vulnerabilities are being used in targeted attacks against iPhone and Mac users. This brings the total count of Zero-Day Vulnerabilities resolved by Apple this year to 16.

Sep 21, 2023

Stay Ahead of the Game: Top Patch Management Software Picks for 2023!

As an IT Security Administrator, you must know that keeping your systems secure and up to date is not just crucial. It could break your entire IT, and that’s where patch management comes in. Moreover, In the ever-evolving domain of Cybersecurity, the need for patch management software is only becomi...

Sep 20, 2023

Microsoft September 2023 Patch Tuesday Fixes 59 Vulnerabilities Including 2 Zero-Day Exploits!

Microsoft has released September 2023 Patch Tuesday security updates, which fixes 59 vulnerabilities. Five are classified as critical, two zero-day(CVE-2023-36802 and CVE-2023-36761), and twenty-four vulnerabilities were related to remote code execution. Vulnerability management tools play a crucial...

Sep 13, 2023

Understanding SanerNow Risk Prioritization Engine

With Advanced Vulnerability Management, SanerNow reveals a hundred thousand vulnerabilities in an account of devices. Risk Prioritization helps reduce the risk findings to a list of CVEs and CCEs that should be acted upon immediately for an organization. The aspects that assist Automated Decision Ma...

Sep 12, 2023

Understanding EPSS, a step towards Vulnerability Prioritization

There are too many vulnerabilities. Past research shows firms are able to fix 5%-20% of known vulnerabilities in a month. Moreover, a small subset of vulnerabilities (2%-7%) are seen to be exploited in the wild.

Sep 12, 2023

Understanding Stake-holder Specific Vulnerability Categorization (SSVC) for Risk Prioritization

Risk Prioritization is not a new technology in the cyber security space. Cybersecurity professionals look for products that can integrate with existing vulnerability assessment reports to help prioritize risks, most often just software vulnerabilities. Primitive modus operandi such as Prioritization...

Sep 12, 2023

Top 5 Vulnerability Scanners for Enterprises in 2023

Enterprises are constantly challenged to protect their data and assets from malicious attacks requiring many efforts to identify and address vulnerabilities. According to research conducted in 2022, 70% of businesses worldwide fell victim to a Ransomware attack, and only 38% of global organizations ...

Aug 23, 2023

Microsoft August 2023 Patch Tuesday Fixes 87 Vulnerabilities, Including 2 Zero-Day Exploits!

On this August 2023 Patch Tuesday, Microsoft addresses security issues in 87 vulnerabilities. Two vulnerabilities are currently being exploited, and twenty-three vulnerabilities could lead to remote code execution. A Vulnerability Management System can prevent these attacks and keep your system safe...

Aug 09, 2023

Superficial Visibility vs Real Visibility: Which is Better?

The first and foremost step of implementing security measures in an organization is getting visibility into their IT infrastructure. However, IT security teams today have visibility only to their hardware and software assets with limited actionable insights.Just having a high-level visibility will o...

Aug 02, 2023

Oracle Critical Security Updates July 2023

Jul 19, 2023

SecPod Announces Partnership with Portland Europe to Promote and Distribute Saner for MSSPs in the Benelux Region – SecPod

Jul 18, 2023

Effective End-to-End Vulnerability Management with SanerNow Unified Dashboard

With siloed solutions and multiple dashboards, the task of end-to-end vulnerability management has become complex, cumbersome, and costly! And SanerNow Unified Dashboard is the answer.

Jul 16, 2023

SanerNow 6.0 Release: What’s New In-Store?

We’re excited to bring you our latest release – SanerNow 6.0. This release offers exciting new features, enhancements, new APIs, and bug fixes.

Jul 16, 2023

SanerNow Cyber-Hygiene Score to Quantify Cyberdefense

In today’s digital landscape, organizations face increasingly sophisticated cyber threats that can exploit various weaknesses in their IT infrastructure. While vulnerabilities in software systems have long been a concern, modern IT attack surfaces encompass a broader range of risks that extend beyon...

Jul 16, 2023

Microsoft July 2023 Patch Tuesday Fixes 132 Vulnerabilities, Including 6 Zero-day exploit!

Jul 12, 2023

Apple’s July 2023 Update Addresses Wildly Exploited Zero-day Vulnerability

Jul 10, 2023

The Journey of Vision: Breaking Barriers, Defying Odds; SecPod’s 15 Years

Fifteen years – a testament to perseverance and resilience for SecPods Journey. In the growth story of any company, this is no small feat. A long and arduous journey becomes inevitable when you choose to swim against the tide, challenge preconceived notions, and fight against mediocrity.

Jun 30, 2023

Apple’s June 2023 Updates Addresses Multiple Security Vulnerabilities And 3 Zero-Days!

Apples Security Alert June 2023 recently released multiple updates to patch various Apple products affected by multiple vulnerabilities. A total of three vulnerabilities were fixed in nine of its products on June 21st. An attacker who successfully exploits these flaws could therefore compromise the ...

Jun 25, 2023

Microsoft June 2023 Patch Tuesday Fixes 78 Vulnerabilities Including 6 Critical Vulnerabilities

Microsoft’s June 2023 Patch Tuesday addressed 78 flaws, including 38 remote code execution (RCE) vulnerabilities. Among the critical vulnerabilities, a severe RCE bug (CVE-2023-29357) in Microsoft SharePoint Server stood out, potentially allowing unauthenticated attackers on the same network to acce...

Jun 14, 2023

Vulnerability Scanning Best Practices for Accurate Detection!

In the soaring number of cyberattacks that target a wide range of organizations, IT security admin must be aware of fundamental security routine and inculcate vulnerability scanning best practices.

Jun 12, 2023

From Scan to Secure: Using Your Vulnerability Scan Report to Strengthen Your Cyberdefense

Do you think your organization is not vulnerable to cyberattacks and you have a perfect vulnerability scan report? If yes, think again.

Jun 07, 2023

Google Chrome Rolls out an Emergency Security Patch for a High Severity Zero-day vulnerability

Jun 06, 2023

How to Know if Vulnerable Applications in the Network Are Making Outbound Connections?

An outbound connection is a network connection going out of a particular device or network. Most, if not all, applications and devices in a network make outbound connections to send and receive data. So what if a hacker gets into the network by exploiting a vulnerable application and starts making d...

Jun 05, 2023

SecPod Appoints Rob Kelsall as the Vice President of Global Enterprise Sales

May 24, 2023

Apple Fixes Multiple Security Vulnerabilities Including Three Zero-day Exploits!

Apple fixes multiple security vulnerabilities for various products in the Apple Security Updates in May 2023.

May 22, 2023

Implementing Gartner Vulnerability Management Recommendations with SanerNow

Vulnerability management is one of the most critical cybersecurity tasks for cyberattack prevention. But effective vulnerability management is not easy to achieve. Further, even with regular vulnerability assessments and patch cycles, organizations fail in audits and are often vulnerable to cyberatt...

May 21, 2023

Are Multiple VPNs Adversely Affecting IT Security?

May 14, 2023

Microsoft May 2023 Patch Tuesday Fixes 38 Vulnerabilities Including 3 Zero-day!

Microsoft has released its May 2023 Patch Tuesday updates, including fixes for 38 vulnerabilities. This month’s patch is considered one of the smallest in the number of resolved vulnerabilities. However, it is still crucial as it includes a patch for a Windows bug and a Secure Boot bypass flaw, whic...

May 10, 2023

Navigating the Patch Management Lifecycle: From Identification to Validation

Given the constant evolution and increasing sophistication of cyber-attacks, it is essential to have a strong patch management lifecycle and patch management software to ensure the security of computer systems. Software vulnerabilities, misconfigurations, and other issues can leave your organization...

May 08, 2023

Microsoft April 2023 Patch Tuesday Addresses 97 Vulnerabilities, Including a Zero-Day!

Apr 11, 2023

A Step-by-Step Guide to Building a Strategic Vulnerability Management Policy

A vulnerability management policy is a set of guidelines and procedures that organizations use to manage vulnerabilities that are identified. Vulnerability management is a process of identifying, assessing, prioritizing, and mitigating vulnerabilities to protect IT infrastructure from cyberattacks. ...

Mar 30, 2023

Introduce Custom Scripting for your Patching Workflow Using SanerNow

Custom scripting in patching workflow helps organizations to back up the data from getting lost or can be used to upload the already backed data. Few organizations create a complete patch management process using scripts to help maintain the organization’s security posture and cut off the cost of th...

Mar 30, 2023

Are Network Vulnerability Tools building your First Line of Cyber Defense?

Even with great vulnerability management software, your attack surface mitigation is based on the vulnerabilities you detect. And in the case of XYZ_Tech(imaginary example), the words were right on the mark. Be it regular vulnerability scans or rapid mitigation of the detected risks; the IT security...

Mar 30, 2023

Apple’s March 2023 Updates Addresses Multiple Security Vulnerabilities!

Apple’s March 2023 Updates released multiple security updates in-order to patch various Apple products affected by multiple vulnerabilities. A total of 126 vulnerabilities were fixed in six of its products on March 27th. An attacker who successfully exploits these flaws could compromise the affected...

Mar 28, 2023

Vulnerability Assessment Methodology: Tiny Steps with Titanic Impact

The cyberattack on LastPass, a popular password management firm, was unexpected and stunned the world. A vulnerability in a 3rd party multimedia software led to the compromise of LastPass’s network, and its business, brand trust, and reputation went down. Like LastPass, critical vulnerabilities may ...

Mar 26, 2023

SanerNow Automated Patch Management Process: Speed-up Patching Cycle!

Being an IT security admin feels like you are the “Mr. Fix-It” of your organization. But we know that IT security admins are so much more than that. Vulnerabilities emerge daily, and spending your time and attention on this recurring task is not the best use of your time. You can better serve to put...

Mar 16, 2023

Microsoft March 2023 Patch Tuesday Fixes 80 Vulnerabilities Including 2 Critical Zero-Day Exploits!

In March 2023 Patch Tuesday Releases, Microsoft addressed 80 CVEs, of which nine were rated as critical, including 2 Zero-day, 66 as important, and one as moderate. This count also includes two CVEs (CVE-2023-1017 and CVE-2023-1018 ) found in a third-party Trusted Platform Module (TPM2.0) Library. I...

Mar 14, 2023

Custom Scripting in SanerNow to Remediate Zero-day Vulnerabilities

Mar 12, 2023

Uncover and Remediate the Unexplored Risks with Continuous Posture Anomaly Management!

Accessing IT infrastructure is fundamental to building and maintaining a security posture. IT security admins have superficial visibility of their IT infrastructure with insufficient actionable insights, which is not enough. In addition, IT security admins are unaware of the most obvious outliers, d...

Mar 09, 2023

The Missing Piece of Your IT Security Puzzle: Continuous Posture Anomaly Management

You might have a concrete vulnerability management plan and robust security practices, but sometimes, the most obvious outliers and attack vectors get missed, leading to a dangerous attacker entering your network. A Vulnerability Management Software can prevent these attacks.

Mar 09, 2023

The LastPass Breach: Unfolding The Story!

Good grief, LastPass.. The popular password management firm with a motive of safeguarding people’s sensitive information, has become a breach static. One lingering question that comes up is,

Mar 01, 2023

SanerNow Patch Management: An Ideal Solution for Perimeter-less Patching!

Cybercriminals are constantly trying to one-up IT security admins in the ever-evolving cybersecurity landscape. As soon as a new threat arises, so must the fix to counter it. It is challenging for IT security admins to fix the IT environment with multiple OSs and applications. And it is impossible t...

Feb 19, 2023

The Ultimate Patch Management Checklist to Evaluate the Success of Your Patching Program!

Vulnerabilities are growing exponentially, and it strains IT security admins to remediate them and protect the organization from cyberattacks. Patch management is a daunting and time-consuming task, yet the impact of not patching is devastating! According to a study, 57% of data breaches are attribu...

Feb 14, 2023

Microsoft February 2023 Patch Tuesday Addresses 77 Vulnerabilities Including 3 Zero-Day!

Microsoft has released February 2023 Patch Tuesday security updates, addressing 77 vulnerabilities. 9 are classified as critical as they allow the most severe type of vulnerability remote code execution, and 68 are classified as important. The products covered in the February security update include...

Feb 14, 2023

5 Things You Didn’t know You Could do in SanerNow

SanerNow can detect and remediate risks and protect your organizations from dangerous cyberattacks using vulnerability management tool. Be it software vulnerabilities or dangerous misconfigurations, SanerNow can easily detect and remediate them. But it can do a lot more than that like auto patching ...

Feb 14, 2023

Best Practices to take your Vulnerability Assessment Program to the Next Level

Vulnerability assessment is a lengthy process that makes up the foundation of your vulnerability management program. It helps you efficiently detect vulnerabilities and is critical in preventing cyberattacks. But if the foundation is shaky, the entire program can crumble. A Vulnerability Management ...

Feb 14, 2023

Dos and Don’ts of Software Vulnerability Management Process

Software vulnerability management process is a process of identifying, prioritizing, and remediating vulnerabilities and other security risks. Implementing this can help organizations prioritize active risks and minimize the attack surface.

Feb 13, 2023

Vulnerability Scanner: The complete picture

Any system connected to a network is open to vulnerabilities in the eyes of hackers. According to SecPod’s security research, in the year 2022 over 26,288 vulnerabilities were discovered. The surge in number is threatening  increasing the overall risk exposure paving way for more cyber attacks. Undo...

Feb 13, 2023

Reinforce your mac Devices with SanerNow Patch Management

Hardening and patching mac endpoints are essential steps in securing a network against cyber-attacks. Although mac endpoints are known for their security, they were in the top 10 most affected operating systems in 2022, according to SecPod’s security research. Prevent these attacks by using a patch ...

Feb 13, 2023

How do you set up your Microsoft Office Patching for Continuous Update Mode?

With every passing day, every vendor seems to release many patches to their software application to fix vulnerabilities. But with so many patches and apps, it becomes cumbersome to keep them all up-to-date manually. Additionally, not patching apps poses a security risk to your organization too. Micr...

Feb 12, 2023

Overcoming the 5 Roadblocks of System Vulnerability Management

System vulnerability management is vital in maintaining the security posture of your organization. As your organization grows with new technology and innovation, a vulnerability management solution needs to evolve to protect you from a myriad of cyber-attacks.

Feb 12, 2023

5 Questions to Ask While Choosing a Network Vulnerability Scanner

The CISO and the sysadmin at the_Teckies were desperately looking for a network vulnerability scanner. Talks of a dangerous misconfiguration in JIRA were in the news, and it seemed to have escaped from their existing scanner. It is essential to have a vulnerability management software.

Feb 12, 2023

ESXiArgs Ransomware Actively Targeting Vulnerable Unpatched VMware ESXi Servers. Patch Now!

A new ESXiArgs ransomware is actively targeting VMware ESXi servers that are unpatched against a two-year-old remote code execution vulnerability known as CVE-2021-21974. The vulnerability originates from a heap overflow problem within the OpenSLP service, leaving it open to exploitation by attacker...

Feb 08, 2023

An Overview of Post-Quantum Cryptography – Securing the Future Against the Quantum Threat

Post Quantum Cryptography refers to developing secure algorithms based on the assumption that the adversary has access to a powerful Quantum Computer. Quantum computers can be useful to break well-establishment Crypto Algorithms that are safe against classical attacks. PQC algorithms aim to ensure ...

Feb 06, 2023

Top Cyber Attacks Due to Vulnerabilities in 2022!

Cybercrime has been steadily escalating as we move deeper into the digital age, and Cyberattacks in 2022 were no exception. Worldwide digital transformation of businesses and organizations in every sector has created a riskier cyber environment. And while many modern cloud implementations and databa...

Feb 02, 2023

Launching SanerNow Continuous Posture Anomaly Management, the Revolutionary Innovation for Cyber Defense!

All the Buzz about our Revolutionary Product Launch has finally come to an end. At SecPod, we are super excited to announce the launch of our newest invention SanerNow Continuous Posture Anomaly Management, fondly called SanerNow CPAM.

Jan 29, 2023

SanerNow 5.3 Release: What’s New In-Store?

We’re excited to announce our new release SanerNow 5.3!

Jan 29, 2023

Preventing Cyber-Attacks with Continuous Posture Anomaly Management

Too much network traffic? Is a PDF reader or word processing application making a strange internet connection? Often such observations are considered as anomalies to detect a threat or an attack but not prevent them.

Jan 29, 2023

Continuous Posture Anomaly Management – The Journey of Building Something New

During the development of technology products, one always aspires to solve the real-time problems of customers and people worldwide. A journey of developing and emancipating a new product is one thing that connects all of us, entrepreneurs, technology inventors, and developers.

Jan 29, 2023

Oracle Releases Critical Security Updates January 2023 – Patch Now!

Oracle releases security updates of January 2023, 327 security patches for various product families, including Oracle Communications, Oracle Fusion Middleware, Oracle MySQL, etc. Although, this advisory includes different products which are prone to multiple vulnerabilities.

Jan 19, 2023

Microsoft January 2023 Patch Tuesday Addresses 98 Vulnerabilities Including a Zero-Day!

Microsoft has released January 2023 Patch Tuesday security updates, addressing 98 vulnerabilities. Also, 11 are classified as critical as they allow the most severe types of vulnerabilities like privilege elevation, security feature bypass, or remote code execution, and 87 are classified as importan...

Jan 10, 2023

The What, Why, and How of Remediating Vulnerabilities

Are you wondering about your organization’s vulnerability remediation plan?

Jan 05, 2023

Your Key to Good Security Posture: Security Vulnerability Management

Cybercriminals are always looking for security weaknesses to steal sensitive and confidential information. Especially in software development environments, IT security admins come across unexpected software flaws which might be potentially dangerous to the organizations. Therefore, IT security admin...

Jan 04, 2023

Vulnerability Mitigation vs. Vulnerability Remediation: Know the Difference

In the IT security space, vulnerability mitigation, and remediation are often considered synonyms of each other. Although they sound similar, they are technically two different processes that fix a vulnerability using a vulnerability management tool.

Jan 04, 2023

The Evolution of Network Vulnerability Management through the Years

As he handed over the keys to his network, Rob recalled how it all began for him 30 years ago. Walking back on memory lane, he realized how much his job as a security admin had changed.

Jan 04, 2023

Perform IT Security Risk Posture Assessment with SanerNow in 30 Minutes

IT Security Risk Posture assessment is a term commonly thrown around in the wild. Risk posture is a complete overview of an organization’s capability of combating cyberattacks, and it provides a birds-eye view that every CISO needs.

Jan 04, 2023

Modern Vulnerability Management Aka Continuous Vulnerability and Exposure Management!

In the face of a threat landscape that has evolved over the years, IT security teams still need to progress to eradicate the rising vulnerabilities. Even now, IT security teams rely on frustrating methods like isolated tools for each task, remediating all the flaws without prioritization, and more. ...

Jan 04, 2023

Cloud-based Vulnerability Scanning with SanerNow

Twenty years ago, the talks of cloud technology were still in their inception. But today, it has taken over the world and completely revolutionized how everything works, especially in the vulnerability management solution tech space, where the impact is obvious.

Jan 04, 2023

Go a Step Ahead of Attackers: Discover vulnerabilities Beyond CVEs

Most IT security teams still think remediating CVEs or software vulnerabilities is enough to achieve a perfect security posture. However, there are numerous other vulnerabilities that are as threatening as software vulnerabilities, such as misconfigurations, IT asset exposures, missing patches, secu...

Jan 04, 2023

How to Achieve 100% Patch Compliance with SanerNow?

Patching has nevertheless been the most hectic task for IT teams. On average, organizations take a minimum of 12 days to deploy patches across devices. The time span increases while managing more devices in a network. Although it’s critical to achieve patch compliance to prevent cyberattacks and sa...

Jan 01, 2023

Automated Vulnerability Management is Not a Luxury but a Necessity!

According to SecPod research statistics, 12000+ vulnerabilities are exploited with more than 15 zero-days in the first two quarters of 2022. This is done using a vulnerability management tool.

Dec 25, 2022

Zero-day: Server Message Block (SMB) Server in Linux Kernel 5.15 Has a Critical Vulnerability!

Dec 25, 2022

No Alert Holidays With SanerNow

Dec 20, 2022

Microsoft December 2022 Patch Tuesday Fixes 48 Vulnerabilities, Including 2 Zero-day!

Microsoft’s December 2022 Patch Tuesday has arrived, bringing fixes for two zero-day vulnerabilities, moreover, one of which is currently being exploited. As a result, 49 flaws are addressed with this patch, seven of which are rated as critical. Therefore, these critical flaws allow for remote code ...

Dec 14, 2022

Hardening Systems to Ensure Continuous Compliance Using SanerNow

Every organization will have a set of regulations to which they must adhere. This regulation might differ on a timely basis or can constantly change. Keeping your organization aligned with up-to-date security standards is essential with System Hardening. A vulnerability management tool is also essen...

Dec 13, 2022

What’s the Best Vulnerability Remediation Prioritization Method?

You initiate vulnerability scanning in your network, and the scanner spits out an excel sheet with rows and rows of vulnerabilities that never seem to end. You have a colossal task ahead. The task of fixing the detected vulnerabilities identified by vulnerability scanning can be simplified with a vu...

Dec 12, 2022

The Ultimate Vulnerability Assessment Checklist

Vulnerability assessment is the process of identifying and assessing vulnerabilities. It makes up for a significant chunk of vulnerability management, and vulnerability management relies heavily on it.

Dec 12, 2022

6 Questions to Ask Yourself Before Outsourcing Vulnerability Management

Consider that you are a FinTech enterprise, and your primary goal has nothing to do with security! Nevertheless, security (Managed vulnerability management) cannot be overlooked. Protecting your company from cyberattacks is highly important. Several industries have been under cyberattack recently, r...

Dec 12, 2022

Fortinet Fixes Actively Exploited FortiOS SSL-VPN Flaw Allowing Remote Code Execution

Dec 12, 2022

Security Admin’s Savannah

Austin was waiting, and he was worried. It had been 16 hours since he had initiated a vulnerability scan, and it wasn’t complete yet. The talks of a zero-day vulnerability were flying around in the media, and he didn’t even know if it was detected in his network.

Dec 11, 2022

Strengthen Your Security Posture with a Good Network Vulnerability Assessment Program!

Dec 11, 2022

SanerNow Architecture Series Part-1: Talk to Any Device, and Respond to Any Device in Real-time

“The perfect kind of architecture decision is the one which never has to be made” – Robert C. Martin.

Nov 24, 2022

Atlassian Critical Vulnerabilities of November 2022 in Atlassian Crowd and Bitbucket Products is addressed. Patch Now!

Atlassian released patches for two critical vulnerabilities of November 2022 affecting Bitbucket Server, Data Center, and Crowd products. Using a vulnerability management tool, these vulnerabilities are tracked as CVE-2022-43781 (Command Injection) and CVE-2022-43782 (Improper Authentication). A Vul...

Nov 20, 2022

Two High Severity Vulnerabilities are Addressed in F5 BIG-IP and BIG-IQ Devices. Patch Now!

Two high-severity vulnerabilities are disclosed in F5, affecting the F5 BIG-IP and BIG-IQ devices that can lead to a complete compromise of the system. These vulnerabilities are tracked as CVE-2022-41622 and CVE-2022-41800. Tracking these vulnerabilities is done by a vulnerability management tool.

Nov 18, 2022

A Good Defense is the Best Offense: Why is Continuous Vulnerability Management Essential?

Cyberattack surfaces are constantly evolving with an abundance of vulnerabilities. According to SecPod’s security research, the second quarter of 2022 saw a total of 5478 vulnerabilities with 7 zero days.

Nov 14, 2022

Building a Vulnerability Management Report CISOs Will Love

Are you willing to read reports which are 10,000 pages long? Not me, though. Vulnerability management reports are crucial while strategizing or auditing your organization’s security posture. An effective vulnerability management report should not be long and hard to read but contain all the necessar...

Nov 13, 2022

Vulnerability Management Controls for Critical Security Frameworks

The most common security framework policies, like HIPAA, PCI, NIST, etc., talk about vulnerability management controls, which are a set of recommended safeguards that help mitigate risks and prevent cyber-attacks in your network.

Nov 13, 2022

VMware addresses three critical flaws in Workspace ONE!

VMware has recently released patches to three critical severity vulnerabilities affecting the Workspace ONE assist solution. A good vulnerability management tool can solve these problems.

Nov 09, 2022

Microsoft November Patch Tuesday 2022 Addresses 65 Vulnerabilities including 6 Zero-Day

Microsoft has released patches for 65 vulnerabilities in its Microsoft November Patch Tuesday of which 6 are actively exploited Zero-Day. Among the 6 Zero-day, CVE-2022-41091 vulnerability is publicly disclosed. Eleven of the 65 vulnerabilities fixed in this security update are classified as ‘Critic...

Nov 09, 2022

Overcoming the Challenges of Vulnerability Management

Cyberattacks are on the rise!

Nov 08, 2022

How do you Implement Vulnerability Management for PCI Compliance?

Payment Card Industry Data Security Standard (PCI DSS) is a data safety requirement to be followed by all companies and organizations that store, process, or transmit credit card/financial information. If your organization handles financial data, it’s highly likely you’ve heard of it before and are ...

Nov 07, 2022

The Vulnerability Management Dashboard Every CISO Needs!

Vulnerability scans show a large volume of vulnerability data which could be unstructured and complex to analyze. Bulky, hard-to-read data creates chaos during the rating and delays the remediation process. A well-structured, neatly organized vulnerability management dashboard will help CISOs, and t...

Nov 06, 2022

Discover and Remediate Critical Vulnerabilities in One Place

“According to a study by EdgeScan, organizations take a total of 60 days to remediate critical vulnerabilities.”

Nov 03, 2022

OpenSSL Addresses Two High Severity Vulnerabilities. Patch Now!

On October 25, 2022, the OpenSSL team issued a major flaw alert to users. OpenSSL 3.0.7 was released on November 1, 2022, to fix two serious vulnerabilities, CVE-2022-3786 and CVE-2022-3602. These flaws initially given a critical rating before being lowered to high. OpenSSL is a widely used cryptogr...

Nov 02, 2022

The Perks of Vulnerability Management Automation

When you repeatedly perform the same thing over and over again, it becomes tedious and laborious. Lengthy scans, correlation of vulnerabilities and patches, deploying the required patches throughout multiple devices, and finally doing it again add to the frustration and exhaustion. But now, in the m...

Nov 02, 2022

Google Chrome Rolls out an Emergency Security Patch for a High Severity Zero-day Flaw!

Google has recently released an emergency security fix to patch a Zero-Day vulnerability CVE-2022-3723. This vulnerability was in the Chrome browser application. Although the previous security patch was present on Tuesday (October 25th), this patch is within a gap of two days, i.e., on Thursday (Oct...

Oct 31, 2022

Apple’s October 2022 Critical Security Updates

Oct 28, 2022

The Most Effective Vulnerability Assessment Framework to Keep your Devices Secure

Has your organization’s vulnerability assessment framework proven effective against the present cyber-attacks?

Oct 27, 2022

Cisco AnyConnect Vulnerabilities are Being Exploited in the Wild!

Cisco AnyConnect Secure Mobility Client allows users to connect to remote systems through a VPN. On October 26, 2022, Cisco issued a warning to its customers, stating that security vulnerabilities in the Cisco AnyConnect Secure Mobility Client for Windows, which are two years old, are currently bein...

Oct 26, 2022

Text4Shell: Critical Code Execution in Apache Common Text Library – Patch Now!

Apache Common Text is used for advance text handling functions such as escaping special characters and the similarity of strings (basis on Cosine, Hamming, Longest Commons Subsequence distance, etc.). The difference between strings, text lookup, etc. A code execution vulnerability( CVE-2022-42889 )i...

Oct 19, 2022

Microsoft October Patch Tuesday Addresses 84 Security Vulnerabilities Including Two Zero-day!

Microsoft has released October 2022 Patch Tuesday security updates, addressing 84 vulnerabilities. Indeed 13 are classified as critical as they allow the most severe types of vulnerabilities like privilege elevation, spoofing, or remote code execution and 71 are classified as important. However, the...

Oct 12, 2022

A Critical Vulnerability in vm2 Allows a Remote Attacker to Break Out of the Sandbox!

vm2 is a node module for creating a real sandbox in the node. It is also the most widely used Javascript sandbox library, which receives about 17.5 million downloads each month. A critical vulnerability(CVE-2022-36067) in vm2 can enable a remote attacker to escape the sandbox and execute arbitrary c...

Oct 11, 2022

Zimbra Collaboration Suite High Severity Zero-Day RCE Vulnerability is Exploited in Wild!

Zimbra Collaboration Suite (ZCS), a widely used web client and email server, has an unpatched zero-day remote code execution (RCE) vulnerability that hackers are known to be actively exploiting. The vulnerability is assigned with CVE-2022-41352 and is rated critical (CVSS v3 score: 9.8). This vulner...

Oct 09, 2022

Double Zero-day Attack: Microsoft Exchange Servers Under Active Exploitation! – Apply New Mitigations

Oct 02, 2022

SanerNow 5.2 Release: What’s New In-Store?

Sep 25, 2022

“GIFSHELL” – Chain Attack in Microsoft Teams

Security researcher Bobby Rauch identified seven different vulnerabilities in Microsoft Teams. These flaws can be used in a series to achieve a new attacking technique named GIFShell attack. However, The GIFShell attack is capable of creating a reverse shell between a user and an attacker. These cra...

Sep 22, 2022

The Uber Attack 2.0

A simple message on a secure(*cough) internal channel saying YOU HAVE BEEN HACKED is a terrifying nightmare for all employees, especially security teams, in an organization. But that’s what happened to Uber, the ride-share giant. Again! called the Uber attack. An attack like this should be detected ...

Sep 20, 2022

Knitting Vulnerability Assessment Tightly with Patching

Whether it was WannaCry, the biggest ransomware attack, or Petya, the attack that invaded many organizations in US and Europe, the reason for many infamous cyberattacks like these is due to missing patches. The complexity due to multiple tools in patch management and the inability of IT and security...

Sep 18, 2022

Updated: Microsoft September Patch Tuesday Addresses 63 Security Vulnerabilities, Including Two Zero-day!

Microsoft released its monthly (September’s) security update, Patch Tuesday, disclosing 63 vulnerabilities across the company’s hardware and software line. Microsoft September 2022 Patch Tuesday security update is observed to have a sharp decline from last month’s number of issues disclosed by Micro...

Sep 14, 2022

Apple Addresses Two Wildly Exploited Zero-Day Vulnerabilities!

Aug 19, 2022

Google patches new Chrome zero-day flaw exploited in Wild

Google has released security fixes for the desktop Chrome app on Windows, Linux, and Mac. This consists of Ten vulnerabilities that include one Zero-day vulnerability with High severity. Google can fix the vulnerabilities by auto patching. This is the fifth Zero-day vulnerability fixed by Google thi...

Aug 18, 2022

Unforgettable Lesson from Cisco Breach: Rethink Your Attack Surface

Aug 18, 2022

Microsoft August 2022 Patch Tuesday Addresses 121 Security Flaws Including Two Zero-day Vulnerabilities!

Microsoft fixes 121 vulnerabilities up against 17 ‘critical’ and the rest ‘important’ in its August 2022 Patch Tuesday update. Compared to last month’s Patch Tuesday, critical vulnerabilities are increased by 325%. Therefore, the most critical vulnerabilities are remote code execution and the rest a...

Aug 10, 2022

Apple’s July 2022 Critical Security Updates

Apple July 2022 Security Updates addressed vulnerabilities in the following products:

Jul 25, 2022

Warning: Atlassian Critical Vulnerabilities Being Actively Exploited- Patch Now!

Atlassian released patches for three critical vulnerabilities (CVE-2022-26136, CVE-2022-26137, CVE-2022-26138). Out of the three flaws, two impacts Confluence Server, Confluence Data Center, and some other products, as well as Bamboo, BitBucket, Fisheye, and Jira, and one of the flaws impacts only C...

Jul 22, 2022

Windows CSRSS Elevation of Privilege Vulnerability Under Active Exploitation: CVE-2022-22047

Microsoft recently patched a high severity security vulnerability in its July 2022 Patch Tuesday. This security vulnerability is wildly exploited and is assigned with an identifier CVE-2022-22047 and has a CVSS score of 7.8. This flaw was discovered by Microsoft’s internal security teams using their...

Jul 18, 2022

Retbleed: Intel and AMD Processors Information Disclosure Vulnerability. Patch Now!

Researchers have discovered a new Speculative execution attack called Retbleed, which affects both Intel and AMD processors that can result in information disclosure vulnerability. CVE-2022-29900 (AMD) is the tracking identifier for AMD, while CVE-2022-29901 (Intel) is the tracking identifier for In...

Jul 17, 2022

Microsoft July 2022 Patch Tuesday Addresses 84 Security Vulnerabilities Including a Zero-day!

Microsoft fixes 84 vulnerabilities, including four critical, one zero-day, and 79 others as important in its July 2022 Patch Tuesday update. All four critical vulnerabilities are of remote code execution, and there are about 12. The rest include elevation of privileges (zero-day flaw), Information D...

Jul 13, 2022

OpenSSL Addressed High-Severity Remote Code Execution Vulnerability- Patch Now!

The OpenSSL has released patches to address OpenSSL high severity vulnerability CVE-2022-2274 and CVE-2022-2097, along with moderate severity ones, in the cryptographic library that could potentially lead to remote code execution in specific scenarios. This done using a vulnerability management tool...

Jul 08, 2022

Reinvention has Defined SecPod’s 14-Year Journey

Barriers broken, habits cultivated, excellence sought; that is where innovation takes place.

Jun 29, 2022

What is Continuous Vulnerability and Exposure Management?

Jun 29, 2022

Microsoft June 2022 Patch Tuesday Addresses 55 Vulnerabilities Including 1 Zero-Day

Microsoft has released June 2022 Patch Tuesday security updates, addressing 55 vulnerabilities. Three are classified as critical, and 52 as important. Additionally, the products covered in the May security update include Windows Hyper-V, Windows LDAP, Windows Network File System, Visual Studio, Azur...

Jun 14, 2022

Atlassian Confluence Server and Data Center Zero Day Vulnerability Under Active Exploitation. Patch Now!

OGNL Injection Vulnerability was discovered in Atlassian Confluence Server and Data Center, and it is tracked with CVE-2022-26134. This Atlassian Zero-Day vulnerability is actively exploited in the wild. Confluence is a wiki-based collaboration platform that enables teams to interact and share infor...

Jun 05, 2022

Follina: Microsoft Support Diagnostic Tool RCE Vulnerability Under Active Exploitation

A remote code execution vulnerability was discovered in MSDT (Microsoft Support Diagnostic Tool), which is tracked with CVE-2022-30190. Vulnerability exploitation is active in the wild. MSDT is a Windows 11/10/8.1/7 and Windows Server service. Microsoft support personnel can use the tool to evaluate...

May 31, 2022

Cisco IOS XR Zero Day Vulnerability Being Actively Exploited in the Wild

A medium severity zero-day vulnerability has been found in the health check RPM of Cisco IOS XR – An Internetwork Operating System (IOS) that is shipped with Cisco’s networking equipment. This vulnerability (CVE-2022-20821) allows an unauthenticated, remote attacker to access the Redis instance runn...

May 22, 2022

Microsoft May 2022 Patch Tuesday Addresses 75 Vulnerabilities Including 3 Zero-Days

Microsoft May 2022 Patch Tuesday has released security updates addressing a total of 75 detected vulnerabilities. On the other hand, 8 are classified as critical, 66 as important, and 1 as low severity. Microsoft may 2022 patch Tuesday products covered in the May security update include Remote Deskt...

May 10, 2022

F5 BIG-IP Critical Remote Code Execution Vulnerability Getting Exploited. Patch Now!

A Remote Code Execution vulnerability was detected (CVE-2022-1388) in F5 BIG-IP. This flaw affects the BIG-IP iControl REST authentication component. Successful exploitation allows remote attackers to bypass authentication and execute commands on the vulnerable device with the highest privileges. Va...

May 09, 2022

Oracle Releases Critical Security Updates for April 2022 – Patch Now!

Oracle has released critical security updates for April 2022, containing 520 security patches for a wide range of product families, including Oracle E-Business Suite, Oracle MySQL, Oracle Java SE, etc. This advisory covers multiple products which are prone to many vulnerabilities using patch managem...

Apr 20, 2022

Vulnerability Scanning Software: Inspections of Your Endpoints’ Infections

Every security admins’ nightmare is detecting the vulnerabilities lurking within the network. Whether its potentially dangerous malware to hidden backdoor programs with the systems, it is important to discover these vulnerabilities and remediate them using vulnerability management tool. But to carry...

Apr 17, 2022

Microsoft April’s 2022 Patch Tuesday Addresses 119 Vulnerabilities Including 2 Zero-Days

Microsoft has released April’s 2022 Patch Tuesday security updates for 119 detected vulnerabilities, including two zero-days and nine being rated as critical. Moreover, the products covered in April’s 2022 patch Tuesday security update include Windows User Profile Service, Windows Common Log File Sy...

Apr 12, 2022

We are back with a new product update: SanerNow 5.1 is here!

After putting in months of hard work, we are back now with a new product update. Our SanerNow 5.1 is here with a lot of new features and enhancements. We have introduced 50+ trending reports, made exciting changes in our user interface, and released numerous APIs to scale up your whole SanerNow expe...

Apr 08, 2022

Critical Alert: Spring Core(SpringShell) Remote Code Execution Vulnerability Exploited In The Wild

The Spring Framework is an application framework and inversion of the control container for the Java platform developed by VMware. Detected vulnerability with CVE-2022-22965 affects Spring Core and allows an attacker to send a specially crafted HTTP request to bypass protections in the library’s HTT...

Apr 04, 2022

Apple Addressed High Severity Flaws in macOS, iOS – Patch Now

Apple April 2022 Security Update, two high severity zero-day flaws tracked as “CVE-2022-22674” and “CVE-2022-22675” have been reported in Apple macOS and iOS. Apple has released patches for these two zero-day CVEs affecting macOS and iOS. A critical vulnerability is, therefore, present in Apple macO...

Apr 03, 2022

SanerNow’s Role in Strengthening Compliance Posture

Millions of people are robbed of personal data like their credentials, social security numbers, bank account-credit card details, among others, on social media. These can be stopped by using a vulnerability management tool. Cybercriminals are engaged in their thieving escapade to impersonate people ...

Mar 28, 2022

Lapsus$ Extortion Group: Large Tech Companies Suffer from Teen Attacks!

With cybersecurity threats on the rise, attackers use more sophisticated techniques to steal sensitive information. From small companies to large businesses, every tech company can be victim of cyber-attacks. Vulnerability Management System can prevent these attacks.

Mar 27, 2022

Vulnerability Scanning vs Penetration Testing: Which is Better?

When searching for cybersecurity tools, it often gets confusing to choose between penetration testing and vulnerability scanning.

Mar 22, 2022

Adopt Enterprise Vulnerability Management Program to Survive in the Age of Advanced Cyberthreats

Today, many enterprises need cybersecurity solutions to deal with the growing IT security threats. Cyberattacks like ransomware are escalating the importance of vulnerability assessment, prioritization, and instant remediation for small, medium, and large-sized enterprises. Cyberhygiene measures con...

Mar 22, 2022

Pandora Ransomware Hits Toyota’s Automotive Supplier Denso

A Pandora ransomware attack targeted Denso Corp, a supplier of Toyota Motor Corporation. The confirmation came after the Pandora Ransomware group leaked the stolen data and claimed responsibility. However, the attack has not resulted in any disruption in Denso’s operations. This is why it is essenti...

Mar 21, 2022

Vulnerability Assessment Report: An Essential Step For Better Vulnerability Management

Once the vulnerability assessment process is completed, security teams generate bulky reports for further analysis. Though these reports are detailed and covered with all the information, security teams find it hard to read them. Hence, they lag in drawing clear insights from these reports. Ultimate...

Mar 21, 2022

Vulnerability Management Process: It’s More Than Just Detecting Vulnerabilities!

Vulnerability Management is a process of identifying, evaluating based on priority, reporting, and remediating vulnerabilities in an organization’s IT network. It additionally includes security tools such as a vulnerability management tool, which does thousands of checks to gather information and re...

Mar 16, 2022

5 Stages of Vulnerability Management Maturity Model: Know How Mature is your Model!

In today’s rapidly evolving threat landscape, organizations face a constant barrage of vulnerabilities that can potentially expose their systems to cyber threats. To effectively address this challenge, a vulnerability management maturity model becomes essential. And a good vulnerability management t...

Mar 10, 2022

Putting an End to IT Security Team’s Dilemma: Vulnerability Assessment vs Penetration Testing

Cybersecurity is essential to every enterprise as there is no sign of dipping of security threats. An increase in cybercrimes has led enterprises to implement various methods to prevent them. Even after such implementations, some security threats go undiscovered for months. While IT teams ask themse...

Mar 09, 2022

Linux Kernel Vulnerabilities That Could Threaten Your Linux Security

When securing your Linux environment, you cannot miss the Linux Kernel. It forms the foundation of your Linux operating system and is the core interface between computer hardware and its processes. Linux Kernel is also loved and actively used by IT communities across the globe. Unlike the other oper...

Mar 08, 2022

Microsoft’s March 22 Patch Tuesday Addresses 92 Security Vulnerabilities Including 3 Zero-days

Mar 08, 2022

Mozilla Fixes Two Actively Exploited Zero-Days in Firefox and Thunderbird

Mozilla has released an out-of-band security update for Firefox, Firefox ESR, Firefox Focus, Firefox for Android, and Thunderbird, fixing two critical vulnerabilities (CVE-2022-26485, CVE-2022-26486). Mozilla is aware of the active exploitation of these vulnerabilities. Furthermore, when a patch is ...

Mar 07, 2022

Organized Cyber Crime In The Digital Era, Not Your Regular Mafia

Cyberattacks have been around for over 30 years now. Organizations have witnessed and lived through the devastating effect of these attacks for quite some time now. When the pandemic hit the world, different spheres of life, including the workforce, incurred huge losses. With WFH and hybrid workforc...

Mar 03, 2022

New-Age Cyber Hygiene Responsibilities Of Vulnerability Management Security Team Post-Pandemic

In today’s Information-rich era, data security is a top concern for organizations. As per the study, cyber-attacks are launched 2,244 times daily, i.e., every 39 seconds. An organization’s vulnerability management security team plays the most vital role in protecting sensitive data against informati...

Mar 02, 2022

How Continuous Automated Vulnerability Management Differs from Traditional Programs

Vulnerability management services should offer end-to-end solutions that ensure you have a clear understanding of the cybersecurity risks. Security flaws that pose the highest risk to your enterprise can be addressed immediately. There are different types of vulnerability management services through...

Feb 23, 2022

What are the Most Critical Vulnerabilities of 2021?

2021 was yet another year of IT security chaos and uncertainties. The year saw a drastic acceptance of the hybrid work model among various organizations across the globe. Whatever your working model is, on-premises, remote, or hybrid, one crucial process will remain the same in your security strateg...

Feb 22, 2022

Google Fixed Actively Exploited Chrome Zero-Day Vulnerability-Patch Now!

A high-severity zero-day flaw tracked as CVE-2022-0609 in Google Chrome is exploited in attacks. It is finally resolving with the release of Chrome 98.0.4758.102 emergency update for Windows, Mac, and Linux. This is the first zero-day vulnerability Google has patched for Chrome this year, but it pro...

Feb 15, 2022

Vulnerability Management Plans to Build Unbreachable Defense

Do you worry about the security of your organization? Do you think it is too difficult to create and implement the right vulnerability management plan that ticks all the right boxes by using the right vulnerability management tool?

Feb 15, 2022

What Vulnerability Management Metrics Could Make or Break Your Security Program

Do you believe you’re dealing with vulnerabilities correctly? When you run a scan and report a few new vulnerabilities that are unaddressed for longer than 90 days, you’ll try to prioritize them rather than new ones. What if those old vulnerabilities don’t pose more risk than the new vulnerabilities...

Feb 14, 2022

Why IT Security Experts Should Consider Continuous and Automated Vulnerability Remediation

The impact of the pandemic has brought a multitude of security challenges for the IT security team and chief information security officers. One of the main challenges includes remediation of security flaws in a complex IT network and patch vulnerabilities using a patch management tool whenever neces...

Feb 13, 2022

How Many Checks Does Your Vulnerability Management Program Need?

A vulnerability database is a collection of information about security checks and patches. An efficient vulnerability management solution needs a comprehensive vulnerability database with many security checks that can precisely help discover maximum vulnerabilities.

Feb 13, 2022

CISA Warns To Patch Critical ICMAD Vulnerabilities In SAP Internet Communication Manager(ICM)

On February Patch Tuesday, SAP has released security updates to patch vulnerabilities affecting multiple SAP products, including critical vulnerabilities affecting SAP applications using Internet Communication Manager (ICM). The ICM is one of the most important components of a SAP NetWeaver applicat...

Feb 10, 2022

Microsoft February 2022 Patch Tuesday Addresses 57 Vulnerabilities Including a Zero-Day.

Microsoft has released February Patch Tuesday security updates with a total of 57 detected Vulnerabilities, including zero-day and 0 critical rated vulnerabilities, using a vulnerability management tool. Hence the products covered in the Microsoft February 2022 patch Tuesday security update include ...

Feb 08, 2022

Apple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

This year, Apple released security updates for their third zero-day vulnerability. Apple addresses a zero-day vulnerability in its Feb 2022 update. However, the affected software processes maliciously crafted web content, leading to arbitrary code execution in WebKit, which is a component included i...

Feb 07, 2022

Detect Vulnerabilities Before Attackers Do

Although there are several ways to secure IT assets, the only way to truly understand the existing security’s effectiveness is to scan and assess the report with several tests. Vulnerability scanning is necessary to evaluate and enhance an organization’s cybersecurity network. The computing environm...

Feb 06, 2022

Cyber Attacks Security Admins Should Brace For in 2022

Cyber-attacks are becoming extensively aggressive with every passing day, week, month, and year. To add fuel to the gasoline, cyberattacks in the past couple of years have become the fastest-growing criminal activity globally. The world isn’t the same anymore. We are most accustomed to accessing eve...

Feb 03, 2022

Most Painful Products that Keep IT Security Admins Up on their Toes

There will always be an IT admin team that consistently remediates vulnerabilities due to the possibility of security threats. The higher the number of vulnerabilities in an application, the greater the likelihood of security threats. And businesses need to remediate those vulnerabilities with a vul...

Jan 30, 2022

Apple Critical Security Updates January 2022

Apple critical security update Jan 2022 has released security updates for multiple products. A total of 16 vulnerabilities were addressed. Exploiting some of these security flaws could allow an attacker to take control of an affected system.

Jan 27, 2022

PwnKit Linux vulnerability Jan-2022: Local Privilege Escalation Vulnerability In Major Linux Distributions

Most of the Linux distributions have the pkexec binary. The vulnerability (CVE-2021-4034) lies in that binary. The pkexec is a part PwnKit Linux vulnerability Jan-2022, which affects the Polkit open-source application framework used for interaction between privileged and unprivileged processes. Furt...

Jan 27, 2022

Automated Patching: A Sure Way to Deal with the Rising Rate of Vulnerabilities

According to a study by Ponemon Institute, 55% of enterprises say they spend more time manually navigating through the various processes involved in a patch management platform than actually patching vulnerabilities.

Jan 23, 2022

Oracle Critical Security Updates January 2022

Oracle has released 497 new security patches for various product families, including Oracle Communications, Oracle MySQL, Oracle Financial Services Applications, Oracle Retail Applications, etc. This advisory covers multiple products which are prone to many vulnerabilities. Having a vulnerability ma...

Jan 20, 2022

False Positives and the story of Rob’s failed Vulnerability Management Program

Like most security admins, Rob is always on his toes to protect the digital infrastructure of his organization from bad actors. Rob, aka Robbie, that’s what his colleagues and employers used to call him, relied on a static vulnerability management program and went ahead with a 14-day free trial. For...

Jan 19, 2022

Zoho Patches a Critical Vulnerability in ManageEngine Desktop Central

Zoho Corporation has released patches for its ManageEngine Desktop Central and Desktop Central MSP solutions affected by CVE-2021-44757, a critical authentication bypass vulnerability. A reliable vulnerability management tool can solve these problems.

Jan 18, 2022

Why Is It Important To Prioritize Vulnerabilities Beyond CVSS?

We all know the importance of vulnerability management in cyber-security. The pace with which the vulnerabilities are rising and their patches overwhelmed enterprises to deal with every loophole. Hence, enterprises tend to focus on flaws with high severity from CVSS.

Jan 18, 2022

Mozilla Patches High-Risk Vulnerabilities in Firefox and Thunderbird

Mozilla has released security updates for Firefox, Firefox ESR (CVE-2022-22746), and mailing client Thunderbird. There are 18 vulnerabilities in Firefox,14 vulnerabilities in Firefox ESR, and in Thunderbird 14 vulnerabilities were found and fixed. The advisories for these products have been rated hi...

Jan 16, 2022

Thoughtful Reduction -> Simplicity -> Beautiful Experience

You drive in search of a restaurant, miles away, because it came with a recommendation, ignoring the snarling traffic and all the other challenges to get there. Is it the food or is it an experience? I believe it is an experience that we seek, and food is part of that experience. Most likely, the pe...

Jan 12, 2022

Microsoft January 2022 Patch Tuesday Addresses 97 Vulnerabilities Including Six Zero-Day

Microsoft’s January 2022 Patch Tuesday security patch includes a total of 97 vulnerabilities detected, including six zero-day with nine classified as Critical and then 88 as Important. Furthermore, the products covered in January’s security update include Microsoft Office, Microsoft Windows, Microso...

Jan 11, 2022

Your Action Plan to Secure your Network in 2022

With another year wrapped up and the dawn of a new year, there are oceans of uncharted waters in the cybersecurity realm that need to be voyaged. Digital transformation is at its peak due to the hybrid workforce. The paradigm shift in working modules eliminates the dependency on old business models ...

Jan 10, 2022

Log4Shell-Critical Remote Code Execution Vulnerability in H2database Console

JFrog has recently disclosed a remote code execution vulnerability on H2 Database consoles. This is based on a Java Naming and Directory Interface(JNDI) vulnerability, and its root cause is similar to the recent Log4Shell vulnerability in Apache Log4j. H2 is an open-source RDBMS  in Java that offers...

Jan 09, 2022

Know the Impact of Vulnerabilities and Types of Threats on your Linux Systems

Linux is the backbone of most modern business organizations and a massive network. Amazon, the largest cloud provider globally, runs its EC2 cloud computing platform on Linux. Currently, the Linux kernel employs 27.8 million lines of code, updated every year. Several new bugs or vulnerabilities appe...

Jan 06, 2022

How frequent will Ransomware attacks be in 2022?

Ransomware has made its way into the consciousness of business owners and security admins over the past two years. As an increasingly prevalent cyberattack, ransomware has grabbed more headlines than any other cyberattack in 2021. According to a recent study by Cybersecurity Ventures, in every 11 se...

Dec 29, 2021

Safeguarding devices during Christmas and New Year Winter Holidays

Winter holidays are everyone’s favorite time, especially for hackers. The holiday season is when people reach out to friends and family. Even cybersecurity admins deserve some much-needed rest, shopping, much on lucrative homemade food. However, the holiday spirit is also the perfect time for cyberc...

Dec 22, 2021

Looking back at 2021’s Top Cyber Attacks

Since the inception of the Internet, cyberattacks have been a major concern globally. Due to the global pandemic, there is an 81% increase in cyberattacks. Further, making the year 2021 incur record-breaking cyberattacks. Attacks on businesses and organizations increased to 29% in the US alone.

Dec 16, 2021

Adobe Critical Security Updates December 2021

Adobe security update December 2021, they have released security updates providing fixes for 28 critical vulnerabilities in Adobe After Effects, Premiere Pro, Photoshop, etc. A total of 60 security vulnerabilities have been patched in this release using a patch manager. However, most of these vulner...

Dec 15, 2021

Microsoft December 2021 Patch Tuesday Addresses 67 Vulnerabilities Including a Zero-Day Being Actively Exploited

Microsoft has released December 2021 Patch Tuesday security updates with a total of 67 Vulnerabilities, including a zero-day being actively exploited. Detected by a vulnerability scanning tool,  The products covered in December’s security update include Microsoft Edge, Azure, Microsoft Windows, Micr...

Dec 14, 2021

Discover The Extremely Critical Apache Log4j Vulnerability (CVE-2021-44228)

All Java applications come with Log4j, a logging library/facade that allows programmers to release output logs to numerous output targets. Log4j is an integral part of Apache Logging Services, which cybercriminals can use to launch RCE attacks due to a vulnerability.

Dec 11, 2021

Mozilla Security Update December 2021

Mozilla has finally released security update December 2021 for its browsers Firefox and Firefox ESR and mailing client Thunderbird. So, there are 13 vulnerabilities in Firefox, ten vulnerabilities in Firefox ESR, and 11 vulnerabilities in Thunderbird that have been found and fixed by using their vul...

Dec 08, 2021

Mozilla Fixes Critical Vulnerability In Cryptographic Libraries

Mozilla has recently fixed a critical memory corruption vulnerability using their vulnerability manager.  This was affecting its cross-platform Network Security Services (NSS) set of cryptographic libraries. Companies like AOL, Red Hat, and Google, as well as other organizations, use Network Securit...

Dec 02, 2021

Why Addressing Vulnerabilities Is A Challenging Process For An IT Security Team

As the IT infrastructure and the business data becomes more complex, security concerns in businesses increase drastically. According to the National Vulnerabilities Database, the number of Common Vulnerabilities and Exploit in a network has tripled since 2016. As a result, cybercriminals are taking ...

Nov 29, 2021

New Windows Installer Zero-Day Flaw exploited in the Wild

Microsoft recently patched a Windows Installer Elevation of Privilege vulnerability tracked as CVE-2021-41379 in its November Patch Tuesday. As we know, the security researcher Abdelhamid Naceri discovered and reported this vulnerability. But surprisingly, recently, he also found that the fix releas...

Nov 25, 2021

Are you Remediating High Risk and Critical Vulnerabilities First?

Organizations have been relying on CVSS scores to triage the vulnerabilities in their environment. They are a good place to start, but cannot be the only factor to assess the severity. CVSS scores are assigned at the time of discovery of the vulnerability. However, they do not account for the changi...

Nov 18, 2021

An Information Security Admin’s Nightmare

‘To patch or not to patch’ is the perplexing dilemma that every security admin goes through almost every day. Patching and applying security patches is the fundamental aspect of increasing an organization’s resilience from malware, ransomware attacks enacted by hackers. To a non-security professiona...

Nov 17, 2021

Intel Addresses 3 High Severity Vulnerabilities in BIOS of Several Processors

Intel has recently disclosed a short advisory with details of high severity for 3 CVEs here. They are CVE-2021-0157, CVE-2021-0158, and CVE-2021-0146. The first two are related to BIOS firmware-based vulnerabilities. Once the attacker accesses the BIOS firmware settings, they can exploit the weaknes...

Nov 15, 2021

Microsoft Released Emergency Out-Of-Band Updates To Fix Windows Server Authentication Issues

After the November patch Tuesday, Microsoft released emergency Out-Of-Band update to address authentication failures related to Kerberos delegation scenarios impacting Domain Controllers (DC). Firstly, these authentication issues impact systems that are running Windows Server 2019 and lower versions...

Nov 15, 2021

Microsoft November 2021 Patch Tuesday Addresses 55 Vulnerabilities Including 6 zero-days

Microsoft has released Patch Tuesday November 2021 security updates with a total of 55 Vulnerabilities, including six Zero-days rated as critical, while 49 vulnerabilities are rated important. The products covered in November’s security update include Microsoft Exchange, Excel, 3D Viewer, Azure, Mic...

Nov 09, 2021

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates for multiple products to address critical, high, and medium severity vulnerabilities for twelve different Cisco products. Advisories released for Cisco Policy Suite and Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) are...

Nov 08, 2021

Vulnerability Management Program Metrics: How do you Measure its Success?

Ponemon Institute notes that around 60% of breaches could have been easily avoided if organizations had included a vulnerability management software to protect devices. Thousands of vulnerabilities in the cybersecurity space are discovered every year. Even a small failure to discover vulnerabilities...

Nov 03, 2021

Google Chrome Zero-Days Under Active Exploitation

Google has released a security advisory for its Chrome users on Windows, Mac, and Linux, addressing seven security vulnerabilities. However, this release is including two very critical Zero-Day exploits exploited in the wild. Hence, these google chrome security vulnerabilities are tracking as CVE-20...

Oct 28, 2021

Scan Vulnerabilities In Less Than 5 Minutes! Faster Than Your Coffee Brews.

Who doesn’t love the smell of freshly brewed coffee? There is no better aroma that keeps me up than the smell of freshly brewed coffee. After pondering over my day-to-day tasks, a cup of coffee brings my sanity back and keeps my energy up. This 5-minute brewing time allows me to catch up with my col...

Oct 28, 2021

Adobe Critical Security Updates October 2021

Adobe has finally released October 2021 security updates providing fixes for 66 critical vulnerabilities in Adobe After Effects, Premiere Pro, Photoshop, etc. A total of 92 security vulnerabilities have been finally patched in this release. However most of these detected vulnerabilities could lead t...

Oct 27, 2021

Pile of Vulnerabilities Haunting You? Learn How Brad & Smith Mastered Vulnerability Management Use Cases

Brad and Smith are security administrators of an enterprise with 2000 devices. One of their prime responsibilities is to manage vulnerabilities in their network. With only two people at work and 2000 devices spread across multiple remote locations, both Brad and Smith had a hard time. Brad takes up ...

Oct 25, 2021

Discourse Patches Critical Remote Code Execution Vulnerability

Discourse is one of the most popular open-source community forums and mailing list management software applications. A critical code execution vulnerability (CVE-2021-41163) identifies in Discourse, allows an attacker to execute arbitrary code on the affected system. This vulnerability recognizes wi...

Oct 25, 2021

What Is The Difference Between Vulnerability Management And Risk-Based Vulnerability Management?

Vulnerabilities are increasing rapidly, and attackers are on the lookout for more sophisticated ways to exploit an attack. To add to this, the security landscape is also changing, continuously adding more burden to the shoulders of security teams. With rising vulnerabilities and evolving security la...

Oct 25, 2021

Oracle Critical Security Updates October 2021

Oracle Critical Updates October 2021 has finally released 419 new security patches for various product families, including Oracle Mysql, Oracle Java SE, Oracle Essbase, Database server, Oracle Golden Gate, etc. However, This advisory covers multiple products which are prone to many vulnerabilities. ...

Oct 20, 2021

How Effectively are you Handling Hidden Vulnerabilities?

Addressing vulnerabilities and fixing them is easier said than done. What notion do you get when you hear about vulnerability management? All a vulnerability management system does is scan, discover, and remediate vulnerabilities. Only the security teams know how winding and bumpy the road is betwee...

Oct 13, 2021

Microsoft’s October 2021 Patch Tuesday Squashes 4 Zero-days and a Total of 81 Vulnerabilities

Microsoft has released October Patch Tuesday security updates with a total of 81 vulnerabilities, which include Four Zero-Days, Three CVEs rated as critical, and 70 rated as important by a vulnerability scanning tool. The products covered in October’s security update include Microsoft Office, Window...

Oct 12, 2021

Why Is It Important To Manage Vulnerabilities Beyond CVEs?

CVE stands for Common Vulnerabilities and Exposures. It is the database of publicly disclosed information on security issues. All organizations use CVEs to identify and track the number of vulnerabilities. However, not all the vulnerabilities discovered have a CVE number. For instance, the CVE datab...

Oct 10, 2021

Apache HTTP Server Zero-Day Vulnerability Exploited in the Wild

Apache HTTP server recently fixed two security vulnerabilities, out of which a wildly exploited Zero-Day flaw also existed. Attackers use a path traversal flaw existing in the application to map URLs to files outside the expected document root, leading to information disclosure. This zero-day CVE-20...

Oct 05, 2021

How Fast, Accurate, and Continuous are your Vulnerability Scans?

With time, cybercriminals have begun employing sophisticated mediums to unleash chaos and vulnerabilities digitally. Vulnerabilities are becoming the most common and significant cause of many cyberattacks today. Managing them and preventing vulnerability exploits have become the most critical tasks ...

Oct 04, 2021

VMware vCenter Servers Under Active Attack, Patch Now!

VMware, the virtualization giant, has patched 19 vulnerabilities, including one critical vulnerability, ten important vulnerabilities, and eight moderate vulnerabilities, in its latest security advisory VMSA-2021-0020. The vulnerabilities tracked as CVE-2021-21991, CVE-2021-21992, CVE-2021-21993, CV...

Sep 30, 2021

Apple Patches Critical Zero-Days Vulnerabilities Exploited in the Wild

Apple released security updates for multiple products, with their patches for critical zero-days vulnerabilities including Safari, Xcode, tvOS, watchOS, iOS, iPadOS, and iTunes. A total of 30 vulnerabilities are addressed, including Arbitrary Code Execution, Denial of Service, Privilege Escalation, ...

Sep 22, 2021

Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments and collect statistics. The primary goal of OMI is to provide a rich, high-performance, standard-based management stack that is suitable for a wid...

Sep 20, 2021

How to Measure the Efficacy of Your Vulnerability Management Program?

With the changing security landscape and the complex threat surface, security teams are engaged in the battle of their lives today. Even after deploying multiple solutions to execute each step of vulnerability management and trying different techniques, they still lack a tight hold on the process. I...

Sep 16, 2021

Adobe Critical Security Updates September 2021

Adobe Critical Security Updates September 2021 fixes for 34 critical vulnerabilities in Adobe Acrobat and Reader, Premiere Pro, InCopy, etc. Moreover, a total of 52 security vulnerabilities have been patched in this release. Most of these vulnerabilities could lead to arbitrary code execution on suc...

Sep 15, 2021

Microsoft September Patch Tuesday Addresses 60 CVEs Including 3 Critical

Microsoft Patch Tuesday September 2021 security update fixes a total of 60 vulnerabilities, which include Three CVEs rated as critical and the rest rated as important. The products covered in September’s security update include Microsoft Office, Windows Common Log File System Driver, Windows Print S...

Sep 14, 2021

From Vulnerability Detection to Remediation: The SanerNow Way

According to Gartner, vulnerabilities are the prime cause of the majority of security breaches today. Although most of these are not zero days, the firm says that the security teams and IT professionals will already know most of the exploited vulnerabilities. A big question arises now on why securit...

Sep 12, 2021

Zoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Zoho Patches Critical Zero-day Flaw in ADSelfService to patch a remote code execution (RCE) vulnerability existing in Zoho ADSelfService plus. The vulnerability allows the execution of unauthenticated remote arbitrary code on the affected systems. A vulnerability management solution can remediate th...

Sep 08, 2021

Netgear Patches High Severity Flaws In Its Smart Switches

Netgear is a multinational computer networking company that produces networking hardware for consumers, businesses, and service providers. Netgear identified three high severity vulnerabilities and patched them recently, affecting its wide range of products. Most of these affected products are smart...

Sep 07, 2021

Managing Endpoints in the changing IT landscape

The Pandemic took the world in its clutches back in 2020 and brought several unprecedented changes that changed the world as we know it. One of the significant changes that the Pandemic brought was transitioning from traditional working culture to the hybrid one. Even in times of crisis, organizatio...

Sep 02, 2021

A Critical Vulnerability in Atlassian Confluence Server Under Active Exploitation

Atlassian Confluence recently published a security advisory to patch a critical OGNL(Object-Graph Navigation Language) injection vulnerability existing in Confluence Server and  Data Center instance. This vulnerability allowed authenticated and, in some instances, even unauthenticated users to execu...

Sep 02, 2021

VMware Releases Security Update for Multiple Products

VMware, the virtualization giant, has patched six vulnerabilities, including 4 high severity vulnerabilities, in its recent security update VMSA-2021-0018. The vulnerabilities tracked as CVE-2021-22022, CVE-2021-22023, CVE-2021-22024, CVE-2021-22025, CVE-2021-22026, CVE-2021-22027 are affecting the ...

Sep 01, 2021

Sophos UTM Creating a ‘Big’ Bounty with Remote Code Execution Flaw

A critical and high severity remote code execution vulnerability CVE-2020-25223 with CVSS 3. x severe base score 9.8 is present in Sophos SG UTM. Sophos reported this vulnerability on  September 18, 2020, in their Advisory. A reliable vulnerability management tool can help to combat these vulnerabil...

Aug 24, 2021

Microsoft Exchange Servers Actively Under Exploitation Via ProxyShell Vulnerabilities

Microsoft Exchange Servers are actively exploited in the wild by various threat actors. Attackers are looking for vulnerable instances of Microsoft Exchange Servers and exploiting them via ProxyShell vulnerabilities. ProxyShell is the name given to the set of three vulnerabilities existing in Micros...

Aug 23, 2021

Adobe Releases Critical Security Updates for Magento

As part of its August 2021 Patch Tuesday, Adobe has rolled out fixes for its e-commerce platform, Magento. These updates address 26 vulnerabilities, 20 of which have been rated as critical. On successful exploitation, most of these vulnerabilities could lead to arbitrary code execution. Apart from M...

Aug 11, 2021

Microsoft August 2021 Patch Tuesday Addresses 44 CVEs, Including Three Zero-Days

Microsoft has released August Patch Tuesday security updates with a total of 44 vulnerabilities in the family of Windows and Mac operating systems and related products. In the release by Microsoft, 7 were rated as Critical and 37 as Important. Hence, the products covered in August’s security update ...

Aug 10, 2021

SanerNow’s Extensive Coverage for Top Routinely Exploited Vulnerabilities

Cyber threats are growing in number, but the measures to prevent attacks and breaches are not getting the same attention. To educate organizations about consistent cyber hygiene measures, government agencies take responsibility for keeping companies informed about imminent threats across entire coun...

Aug 09, 2021

Arcadyan-Based Routers and Modems Under Active Exploitation

Millions of routers are exposed to a security flaw that existed for a decade in home routers with Arcadyan firmware. This actively exploited flaw tracked under CVE identifier CVE-2021-20090 has found its way into routers provided by at least 20 models across 17 different vendors and 11 countries. A ...

Aug 08, 2021

Cisco Patches Critical and High Severity Flaws in Its VPN Routers

Cisco is one of the popularly known firms for manufacturing networking products along with developing software products. Recently it addressed three vulnerabilities, one is critical, and the other two are high severity flaws in its VPN routers. These vulnerabilities are said to be a part of the web-...

Aug 05, 2021

Thank You Sysadmins for the Unwavering Remote IT Support in the Midst of Storms and Calms

Sysadmins are usually stamped as nerds who live secluded from the rest of the ‘social butterflies.’ Some of this may be true, but do you realize what you geniuses pulled off in the past year?

Jul 29, 2021

Introducing A Fresh Perspective to Cybersecurity: Continuous Vulnerability and Exposure Management!

IT landscape is expanding and getting more complex day by day. With the growing number of cyberattacks and changing working norms, organizations are in a critical situation to protect what they have built and save themselves from the eyes of the attackers. Achieving IT security is not an easy proces...

Jul 27, 2021

The elevation of Privilege Vulnerabilities affects Windows and Linux.

There are two new vulnerabilities that were discovered on Tuesday, which affect Windows and Linux machines. An easily exploitable privilege escalation vulnerability has been identified in Windows 10 build 1809 and above, and its name is SeriousSAM, aka HiveNightmare. SeriousSAM allows a local non-ad...

Jul 21, 2021

Oracle Critical Security Updates July 2021

Oracle Critical Security Updates July 2021 has released 342 new security patches for a wide range of product families. However, these include Oracle E-Business Suite, Oracle MySQL, Oracle Java SE, Oracle Hospitality Applications, Oracle Siebel CRM, Database Server, etc. Moreover, multiple products c...

Jul 20, 2021

Severe Vulnerabilities Patched in WooCommerce and Google Chrome

A critical SQL injection vulnerability was recently fixed in the WordPress plug-in, WooCommerce. The vulnerability poses a threat to over 5 million WordPress websites and can be exploited to obtain access to information stored in the databases of online stores. On a different but related subject, a ...

Jul 18, 2021

Microsoft July 2021 Patch Tuesday Addresses 117 CVEs Including 9 Zero-Days

Microsoft has released July Patch Tuesday security updates with a total of 117 vulnerabilities in the family of Windows, Mac, and Android operating systems and related products. In the release by Microsoft, 13 were rated as Critical, 1 as moderate, and 103 as Important. The products covered in the J...

Jul 13, 2021

SanerNow has become more powerful than ever. The most awaited 5.0 release is here!

After numerous discussions, brainstorming sessions, day-night development, and rigorous testing, we are thrilled to announce the most exciting release of SecPod in the recent past. SanerNow 5.0 is here to put an end to the eternal search for a full-fledged and automated vulnerability management solu...

Jul 11, 2021

The Benefits of Automated Patch Management

As more employees are working remotely and IT structures have moved to the cloud, cyber-attacks have also become more sophisticated. Senior executives are concerned about data security and looking for ways to improve their organization’s security posture. More than ever, patch management is now the ...

Jul 06, 2021

Kaseya’s Virtual System/Server Administrator (VSA) Zero-Day Under Active Exploitation By REvil Ransomware

Kaseya is a US-based organization that provides IT and security management solutions for managed service providers (MSPs) and small to medium-sized businesses (SMBs) worldwide. One of its tools, called Kaseya’s VSA, is under active exploitation and used as an attack vector to install REvil ransomwar...

Jul 06, 2021

What are the top cybersecurity threats from hackers in 2021? The Hackers view to IT Security.

Jul 06, 2021

Microsoft Windows “PrintNightmare” Vulnerability Exploited in the Wild

A critical zero-day vulnerability has been discovered in Microsoft Windows Print Spooler. This high severity vulnerability dubbed as PrintNightmare is tracked under the CVE identifier CVE-2021-34527. Successful exploitation of this vulnerability allows attackers to conduct arbitrary code execution w...

Jul 01, 2021

13 Years of Life at SecPod – While we were at building a great cyber security platform

During our 12th anniversary, I had spoken about experimenting. SecPod is a place where we all come together, every day, to create something extra-ordinary, experimenting at each step. While we chase that dream each day, what we leave behind or live through is life at SecPod. “Life is what happens to...

Jun 30, 2021

The Finale of the Eternal Search for the Best Vulnerability Assessment Solution is Nearing!

Vulnerability management solution is usually the most painstaking process for an IT/security team. The teams struggle to run full vulnerability scans in time and create comprehensive risk reports. Throw in a dozen scanners and patching solutions. It’s now full-blown chaos and drama. Top management f...

Jun 22, 2021

Google Chrome Patches Another High Severity Zero-Day Flaw Exploited in the Wild

Google has released an emergency fix for its Chrome browser app in Windows, Linux, and Mac. This consists of four vulnerabilities that include one Zero-day vulnerability with High severity. This is the eighth Zero-day vulnerability which is fixed by Google this year and is assigned with CVE-2021-305...

Jun 17, 2021

What is Cyberhygiene? How a Cyberhygiene Framework is the Foundation of Trustworthy Security

Digital transformation has pushed the boundaries of business operations. With expanding boundaries, there’s a drastic increase in the probability of cyberattacks. Organizations of all industries and sizes are at risk. Even though organizations pay attention to security on some level, they still expe...

Jun 15, 2021

Adobe Critical Security Updates June 2021

Adobe has finally released security updates providing fixes for 21 critical vulnerabilities in Adobe Creative Cloud Desktop Application, After Effects, Photoshop, Animate, RoboHelp Server, Acrobat, and Reader. A total of 41 security vulnerabilities have been finally patched in this release. Having a...

Jun 14, 2021

Microsoft June 2021 Patch Tuesday Addresses 50 CVEs Including Six Zero-Days

Microsoft has released June Patch Tuesday, security updates with a total of 50 vulnerabilities in the family of Windows and Mac operating systems and related products. In the release by Microsoft, 5 were rated as Critical and 45 as Important. The products covered in June’s security update include Mi...

Jun 08, 2021

Critical Zero-Day Flaw Actively Exploited in WordPress Fancy Product Designer Plugin

A critical zero-day vulnerability has been discovered in a WordPress plugin called Fancy Product Designer. A Wordfence Threat Intelligence team from WordPress security company Defiant alerted about this vulnerability. The vulnerability is under active attack, which is tracked as CVE-2021-24370 by us...

Jun 02, 2021

WinRM servers are the latest prey for the Wormable Windows HTTP vulnerability

Microsoft recently patched a critical remote code execution vulnerability in the HTTP Protocol Stack (http. sys). Used by the Windows built-in IIS server for processing HTTP requests. The vulnerability is assigned with an identifier CVE-2021-31166 and has a CVSS score of 9.8. This is a wormable vuln...

May 23, 2021

Patch Tuesday: Microsoft Security Updates for May 2021.

Microsoft has released May 2021 Patch Tuesday security updates with a total of 55 vulnerabilities in the family of Windows and Mac operating systems and related products. In the release by Microsoft, 4 vulnerabilities were rated as Critical, 50 as Important, and 1 as Moderate. Therefore, a good vuln...

May 11, 2021

Critical 21Nails Flaws Affect Millions of Exim Servers

A series of critical vulnerabilities were recently disclosed to reside in the popular internet mailer, Exim. The vulnerabilities, collectively termed as 21Nails, were brought to light by researchers at Qualys. The advisory includes 21 vulnerabilities, some of which can be used to gain elevated privi...

May 05, 2021

Google Has Released a Fix For High-Severity RCE Vulnerability in Chrome Browser

Google has released a new version 90 to fix high severity vulnerability in the V8 Javascript component of Google Chrome. Google Chrome RCE Vulnerability is tracked as CVE-2021-21227 is an insufficient data validation vulnerability. Successful exploitation of the vulnerability allows remote attackers...

Apr 29, 2021

Apple Critical Security Updates April 2021

Apple released security updates for multiple products. The exploitation of some of these security flaws will allow an attacker to bypass many core Apple security mechanisms, crash the application, potentially control affected systems, and putting Mac users at great risk. A vulnerability management s...

Apr 27, 2021

Trend Micro Antivirus Products Exploited Wildly

A threat actor is actively exploiting a bug currently in Trend Micro’s security products to do privilege escalation on Windows systems. The vulnerability is tracked as CVE-2020-24557 and is affecting two major security products of the company – Apex One and OfficeScan. A good Vulnerability managemen...

Apr 22, 2021

Pulse Connect Secure Zero-Day Vulnerability Under Active Exploitation (CVE-2021-22893)

Pulse Secure released an advisory on April 19 about a Critical Zero-day Authentication Bypass vulnerability identified as CVE-2021-22893 in Pulse Connect Secure SSL VPN appliances. The vulnerability allows a remote attacker to bypass authentication and perform remote arbitrary file execution on the ...

Apr 21, 2021

Second Zero-Day Exploit for Google Chrome in the Same Week

Google Chrome users who were relieved by patching the recent zero-day advisory are taken aback by the news of another PoC exploit posted on Twitter by a security researcher, Frust. This affects the recent version of Chrome, 89.0.4389.128, which was the fix for the first zero-day vulnerability of the...

Apr 15, 2021

Cloud Based Patch Management Solution: Five Reasons Why It Thrives Better!

Cloud based patch management software play a major role to secure your IT infrastructure. Time and again, unpatched software is exploited to breach the network, spread malware, and execute attacks. With the onset of remote work, detecting and deploying missing patches are now more difficult than eve...

Apr 15, 2021

The Vital Role of a Vulnerability Database in Your Vulnerability Management Program

Attackers are continuously looking for new vulnerabilities to take advantage of. They easily exploit the ones that are not remediated and the ones that are still prevalent among the endpoints. At the same time, we come across various tools and strategies to execute Vulnerability Management. Therefor...

Apr 14, 2021

Patch Tuesday: Microsoft Security Bulletin Summary for April 2021

Microsoft Security Bulletin April 2021 has released Patch Tuesday, security updates with a total of 108 vulnerabilities in the family of Windows operating systems and related products. In the release by Microsoft, 19 were rated as Critical and 89 as Important. Six Chromium Edge vulnerabilities relea...

Apr 13, 2021

The Most Notorious Security Risks Tagging Along from 2020

2020 has been a disaster for many organizations: multiple data breaches, ransomware attacks, and internal threats. After 2020, IT as a department and a role have changed for the good. Leaders are more receptive to the opinions and initiatives of CIO/CISO/IT Head roles. Every IT professional now give...

Apr 08, 2021

VMware Fixes Critical Bugs that Can Be Chained Together to Gain RCE

VMware, the virtualization giant, has released two advisories addressing three critical vulnerabilities in multiple products. VMSA-2021-0004 advisory fixes CVE-2021-21975, CVE-2021-21983 can be chained together to gain remote code execution (RCE) on the affected system. The other, VMSA-2021-0005 adv...

Apr 01, 2021

OpenSSL Patches Two High Severity Crypto Vulnerabilities

Two high-severity vulnerabilities were recently revealed to be present in the popular cryptography library, OpenSSL. While one of the vulnerabilities can allow an attacker to bypass CA Certificate checks, the other could lead to a Denial of Service (DoS) condition. However, a vulnerability managemen...

Mar 29, 2021

Cisco Releases Security Updates for Multiple Products

Cisco has rolled out security patches for critical, high, and medium severity vulnerabilities. In the Advisory, Cisco Security Updates March 2021,  released for Cisco Jabber Desktop and Mobile Client Software has been rated with Critical impact from Cisco. Among the bugs reported, some of the vulner...

Mar 25, 2021

Critical Code Execution Vulnerability in Adobe ColdFusion

Adobe has released a critical security update that impacted Adobe ColdFusion and is assigned with a priority rating of 2. The Adobe Coldfusion Exploit found in the product affects ColdFusion versions 2016, 2018, and 2021 that would lead to arbitrary code execution. Using a patch management tool can ...

Mar 22, 2021

Critical Remote Code Execution Vulnerabilities in MyBB Forum Software

Two critical vulnerabilities have been found in popular bulletin board software called MyBB. The vulnerabilities can be chained together to get remote code execution without prior access to a privileged account. The independent security researchers Simon Scannell and Carl Smith found the flaws. They...

Mar 18, 2021

Another Zero-Day in Google Chrome Under Active Exploitation

Google has released a second emergency update for its Chrome Browser this month. Chrome version 89.0.4389.90 for Windows, Mac, and Linux fix five security bugs, one of which is an actively exploited zero-day issue (identified by CVE-2021-21193) which is a Use after free in Chrome’s Blink rendering e...

Mar 15, 2021

Patch Tuesday: The Fix You cannot Miss

How many times have you blissfully ignored the update notification and clicked on “remind me later”? Yes, in the busy life, the severity of the updates goes unnoticed, and it often becomes the Achilles heel in the ‘trojan’ war. Patching and securing the endpoints has become a supreme task over the y...

Mar 07, 2021

Best Endpoint Security Strategies for CISO

When it comes to security attacks, studies show that 70% of the security breaches originate at endpoints. The need to maintain good cyber hygiene has gone up in recent times and will only keep increasing. With the global Pandemic and changing working norms, the role of CISOs has become more prevalen...

Mar 07, 2021

Multiple Zero-Days in Microsoft Exchange Server Actively Exploited in the Wild

Microsoft has released patches for Exchange Server. The advisory addresses the following vulnerabilities – CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065. Microsoft has also reported that zero-day exploits were being used to attack Microsoft Exchange Server in the wild. Microsoft...

Mar 03, 2021

Google Chrome Zero-Day Under Active Exploitation

Google has released a security advisory for its Chrome users on Windows, Mac, and Linux, addressing 47 security vulnerabilities. This release includes one very critical Zero-Day exploit exploited in the wild. This vulnerability tracked as CVE-2021-21166. However, Endpoints that have not been patched...

Mar 03, 2021

Thousands of VMware Centers Exposed to New Remote Code Execution Vulnerability

The CVE-2021-21972 remote code execution vulnerability was reported by Mikhail Klyuchnikov from Positive Technologies. A vulnerability management tool discovered this. The organization also published a detailed write-up for this vulnerability to share the impact of the flaw.

Feb 25, 2021

Explore what’s new in SanerNow 4.8.0.0

At SecPod, we always strive towards making your endpoint security and management operations smooth and effective. To help you make the best out of SanerNow, we are happy to present SanerNow 4.8.0.0 release with many new enhancements and bug fixes. It consists enhancements in Patch management tool an...

Feb 19, 2021

QNAP Patches Critical Vulnerabilities in NAS Appliances

QNAP addresses multiple vulnerabilities in its product line affecting Surveillance Station and Photo Station applications using a vulnerability management tool. These vulnerable software applications are powered by Network Attached Storage (NAS), a storage management technology powering file sharing...

Feb 17, 2021

Adobe Fixes Critical Zero-Day Flaw Actively Exploited in the Wild – Security Updates February 2021

Adobe Security updates February 2021 released security updates providing fixes for 33 critical vulnerabilities in Adobe Magento, Adobe Acrobat, Reader, Photoshop, Animate, Illustrator, and Dreamweaver. A total of 50 security vulnerabilities are patched in this release. The patched vulnerabilities ar...

Feb 10, 2021

Patch Tuesday: Microsoft Security Bulletin Summary for February 2021

Microsoft has roll-out its February 2021 patch Tuesday security updates on this month’s for 56 vulnerabilities, including a zero-day in its product line. Released patches include products such as Windows operating system, Edge browser, Microsoft Office, and services. Out of these, 11 are classified ...

Feb 09, 2021

5 Setbacks of Multi-Tool Endpoint Security Stacks

An average IT team uses a vast collection of tools and techniques to execute security tasks. A vulnerability management tool, patching tools for different platforms and apps, incident detection and response software, and compliance management software to deal with audits. These tools are their stand...

Feb 08, 2021

Cisco Releases Security Updates for Multiple Products

Cisco Security Updates February 2021 has been released address high severity vulnerabilities for twelve different Cisco products using a patch management tool. Exploit on some of these vulnerabilities allow an unauthenticated attacker to execute code with root privileges remotely.

Feb 04, 2021

Three More Potential Vulnerabilities Found In SolarWinds Software!

Three new security vulnerabilities have recently been identified in various SolarWinds products. Three of the vulnerabilities are severe, and the most critical of them allows remote code execution with high privileges. A vulnerability management tool discovered these critical vulnerabilities. Martin...

Feb 03, 2021

SonicWall Zero-Day Vulnerability Is Being Exploited in the Wild

The Sonicwall Zero day Attack. NCC Group recently reported that an active zero-day SonicWall SMA 100 zero-day vulnerability being exploited in the wild. Sonicwall commented that it affects the SMA 100 series (SMA 200, SMA 210, SMA 400, SMA 410, SMA 500v) line of remote access appliances. However, bo...

Feb 01, 2021

Heap-Based Buffer Overflow in Sudo Allows Attackers to Gain Root Privileges

The Vulnerability (CVE-2021-3156) exists in Sudo, a powerful utility to run programs with the security privileges of another user. The heap-based buffer overflow could allow an unprivileged local user to gain root privileges without any authentication on the affected systems. A vulnerability managem...

Jan 27, 2021

CSRF and Command Runner Command Injection Vulnerabilities in Cisco DNA Center

The Cisco DNA Center software has been reported with a high-severity security vulnerability (CVE-2021-1257) that allows cross-site request forgery (CSRF) attacks. A vulnerability management software can help in detecting this high-severity vulnerability. Cisco credited the vulnerability report to Be...

Jan 26, 2021

5 Tips on How to Effectively Foster Cyber Hygiene Practices Among your Remote Workers

As organizations embrace digital transformation and innovative ways of working in the current pandemic, keeping sensitive business information safe is a growing challenge for employers and employees. Studies indicate that nearly 25% of employees working from home do not know what security protocols ...

Jan 24, 2021

Multiple Flaws in Orbit Fox WordPress Plugin Allow a Complete Takeover of Sites

The Threat Intelligence team of Wordfence discovered two security vulnerabilities in the Orbit Fox WordPress plugin on November 19, 2020. This plugin was developed by ThemeIsle to extend the theme functionalities with various modules like Social Media Share Buttons & Icons, Uptime Monitoring, Google...

Jan 17, 2021

How Single-Console Endpoint Security and Management Tools Make the IT Life Easier

The responsibilities of the average IT team are piling up. However, what was once confined to service, maintenance, and troubleshooting has become something bigger. Besides managing and maintaining assets, the IT team is now responsible for securing the IT landscape from cyber-attacks. Additionally,...

Jan 07, 2021

Secret Backdoor to Zyxel Firewall and AP Controllers Could Allow Administrative Access

Niels Teusink of Dutch cybersecurity firm EYE has recently discovered a secret backdoor to Zyxel devices. More than 100,000 Zyxel Firewall and AP Controllers of version 4.60 patch 0 are affected by this vulnerability (CVE-2020-29583). A vulnerability management solution can be helpful here. It is du...

Jan 05, 2021

The Rising Need of Unified Endpoint Security and Management

Endpoints are one of the most important assets of an enterprise. According to a study, 68 percent of IT admins said the frequency of attacks in endpoints had increased in 2019. More than half of respondents said their organizations are ineffective at surfacing threats because their endpoint security...

Jan 04, 2021

Google Revealed Sickly Patched Windows Zero-Day Vulnerability

Google’s Project Zero team of security analysts has released the details of an improperly patched 0-Day vulnerability. The issue can be tracked as CVE-2020-17008 in Windows print spooler API that attackers could exploit to execute arbitrary code on the affected systems. A reliable vulnerability mana...

Dec 30, 2020

It’s Time to Use What 2020 Taught Us and Get Back Up

2020 has been less than ideal for people from all walks of life. We saw the biggest worldwide pandemic in over a hundred years. Loss of life, country-wide lock-downs, heavy economic losses, demotivated people, and the list goes on. Although 2020 has been the toughest year for most of us, it still ga...

Dec 29, 2020

SolarWinds Releases Updates to Address Vulnerability Exploited by SUPERNOVA Malware

SolarWinds has released an advisory on 27th December 2020 to address the vulnerability being exploited by SUPERNOVA malware. The vulnerability resides in the SolarWinds Orion API, making it vulnerable to an authentication bypass that can further lead to remote code execution. The vulnerability has b...

Dec 27, 2020

Hackers Steal FireEye’s Red Teaming Tool Through a Highly-Sophisticated Attack

FireEye is an IT security company focusing on providing security products and services to its customers. On December 8th, 2020, FireEye made an announcement on their company blog reporting the theft of their red team assessment tool. The attack has become the talk of the month in the security commun...

Dec 20, 2020

WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

Contact Form 7 is a popular WordPress plugin that is used to create, customize, and manage multiple contact forms on WordPress sites. A critical file upload vulnerability (CVE-2020-35489) has an identity in the WordPress Contact Form 7 plugin, allowing an attacker to execute arbitrary code on affect...

Dec 17, 2020

Critical Zero-Day in HPE Systems Insight Manager Revealed

Hewlett Packard Enterprise recently revealed a security flaw in its Systems Insight Manager software (Vulnerability in HPE Systems). This zero-day bug resides in the recent versions of the server software and is reportedly unpatched. Servers running the affected software are liable to Remote Code Ex...

Dec 16, 2020

SolarWinds SUNBURST Backdoor Compromises Multiple Global Victims

Highly evasive hackers breached Orion IT monitoring and management software of SolarWinds and deployed malware updates to it. It is known as solarwinds sunburst. As a result, attackers have gained access to government, consulting, technology, telecom, and extractive entities in North America, Europe...

Dec 14, 2020

Apple Critical Security Updates December 2020

Apple released security updates for multiple products. The exploitation of some of these security flaws will allow an attacker to crash the application or potentially control affected systems. However, a patch management solution can stop the exploitation.

Dec 14, 2020

The System Administrator Problems and Solutions in IT Security!

The system administrator’s problems and solutions are never-ending. Technology is pushing boundaries and helping businesses make bigger and better decisions. The technocrats let it occupy a quiet but powerful spot in the organizational hierarchy. Yes, they are the system administrators. As cybersecu...

Dec 14, 2020

Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

Multiple critical command injection vulnerabilities have identified in the D-Link DSR VPN router family products. These vulnerabilities are identified with CVE-2020-25757, CVE-2020-25759, CVE-2020-25758 and can allow an attacker to gain complete root access to the affected device. Vulnerability mana...

Dec 09, 2020

VMware Products Under Active Attack Through a Critical Zero-Day Vulnerability

VMware has released security updates to fix a critical vulnerability that is being exploited in the wild. According to the advisory, CVE-2020-4006 is a command injection bug, and attackers can take control of the system once exploited. This fix supersedes an initial workaround released by VMware in ...

Dec 07, 2020

Closing the Ever-Widening Gap Between Vulnerability Scanning and Patch Management

Security risk management is a complicated and time-consuming affair. Organizations spend many resources to ensure all their business operations and data are running and stored by risk-free assets. Patch management tools are the most common tools to manage and mitigate risks. You scan, detect and reg...

Dec 07, 2020

DarkIRC Botnet: Infecting Thousands of Unpatched Oracle WebLogic Servers

DarkIRC is a multi-featured botnet. The bot comes with a variety of capabilities like keylogging, the ability to download files and execute commands on the infected server, steal credentials, spread to other devices via MSSQL and RDP (brute force), SMB, or USB, as well as perform several versions of...

Dec 02, 2020

Looking Beyond OS Patches: What’s Your Plan for the Third Party Application Patch Management?

You might be well ahead of your peers in keeping your patching cadence for major applications like Microsoft, Linux, or Mac in pace with the latest updates, but can you also perform third-party application patch management at the same pace? If the answer is no, you could open up your enterprise to s...

Nov 30, 2020

Open-Source Vulnerability Scanners: How a Free Tool Carries Hidden Challenges

Over the past 15 years, vulnerability management has evolved from a simple process to a complex business practice. The increasing number of vulnerabilities, rising cyber-attacks, and software vulnerabilities as the leading cause of breaches have highlighted the limitations of open source vulnerabili...

Nov 23, 2020

What is Continuous Compliance and Why It’s More Than “Just a Perk”

Organizations are not new to grueling compliance audits that keep them up at night every quarter or year-end. To secure the PII (personally identifiable information) of consumers and corporate data, various industries and governments have drawn up security benchmarks that mandate periodic risk asses...

Nov 18, 2020

Mozilla Patches Zero-Day and High-Severity Vulnerabilities

Mozilla has released three security advisories to address the vulnerabilities present in Firefox, Firefox ESR, and Thunderbird. A zero-day vulnerability (CVE-2020-15999) has also been addressed in the latest version of Firefox. Firefox version 83 also introduces a new “HTTPS-only mode“, if enabled a...

Nov 17, 2020

Best Practices to Win at Vulnerability Management

Vulnerability management is hard to execute as a continuous process in the long run. In huge networks of organizations, the number of devices, software applications, and the vulnerabilities associated with them is multiplying rapidly. The complexity of devices and software is always growing. Organiz...

Nov 12, 2020

Google Chrome Under Active Exploitation With Two Zero-Days!

Google has released a security advisory for its Chrome users on Windows, Mac, and Linux, addressing two very critical Zero-Day exploits exploited in the wild. These google chrome security vulnerabilities tracked as CVE-2020-16013 and CVE-2020-16017. Endpoints not been patched are advised to deploy p...

Nov 11, 2020

Check Out What’s New in SecPod SanerNow 4.7.0.0 release – The Most Awaited Features Are in Store!

At SecPod, we always work towards delivering exceptional features to help you get the best out of our product. SanerNow 4.7.0.0 comes out with the most awaited Active directory integration along with several new enhancements and bug fixes. This release also includes enhancements on REST API.

Nov 10, 2020

5 Steps to Build an Effective Vulnerability Management Program

Vulnerability management program is a standardized process across most organizations. However, even organizations that follow periodic compliance audits and patch software vulnerabilities are hit by cyber-attacks. If attack surfaces are open despite following a documented vulnerability management pr...

Nov 08, 2020

Are Endpoint Security Challenges Haunting You During Remote Work?

The scares of Halloween came very early this year in the form of COVID-19. Although organizations faced a lot of endpoint security challenges, they were eventually happy to keep their business operations running remotely, the shift was not that easy for IT teams. IT teams were tasked with the respon...

Nov 04, 2020

Oracle Emergency Fix for Critical RCE Flaw in WebLogic Server

Oracle has addressed a critical Remote Code Execution (RCE) vulnerability in the rare out-of-band patch in numerous versions of Oracle WebLogic Server. The vulnerability is assigned CVE-2020-14750, which has a CVSS base score of 9.8 out of 10 and is remotely exploitable without authentication or use...

Nov 04, 2020

Three Takeaways from the National Security Agency’s Cybersecurity Advisory in October 2020

On October 20, 2020, the National Security Agency (NSA), a national-level intelligence agency of the United States Department of Defense, released an NSA cybersecurity advisory highlighting 25 vulnerabilities in commonly-used software that are currently under active exploitation. They released the a...

Nov 03, 2020

UNC1945 Infiltrates Corporate Networks through a Solaris Zero-Day Bug

A new zero-day vulnerability  (CVE-2020-14871) in Oracle Solaris has been brought to light by the FireEye security research team, Mandiant. Moreover, the vulnerability has been reported as being actively exploited. A Vulnerability Management System can resolve these issues. Hence, the sophisticated ...

Nov 03, 2020

Google Discloses Windows Zero-Day Vulnerability Being Exploited in the Wild

Google Project Zero disclosed details for a zero-day vulnerability CVE-2020-17087 found in the Windows operating system that being currently exploited in the wild. A vulnerability management tool discovered this.

Nov 02, 2020

System Hardening: The Key to Minimizing Attack Surfaces

Cyber-attacks are busting in from all directions. The biggest and most widespread attack was in 2017, called Wannacry. More than 230,000 computers were affected by ransomware, amounting to more than $4 billion in losses. This attack was due to an old SMB protocol enabled in Windows devices. Prevent ...

Nov 02, 2020

The First Step Towards Endpoint Security Brilliance

This year has forced us into a lot of new challenges in the digital world. During the first half of 2020, Microsoft has seen a 150% increase in vulnerabilities than the entirety of 2019. Security breaches and ransomware attacks are being reported at an alarming rate this year. Cybercriminals now hav...

Nov 01, 2020

Oracle WebLogic Server Under Active Exploitation (CVE-2020-14882)

Critical Remote Code Execution (RCE) vulnerability CVE-2020-14882 in the console component of the Oracle WebLogic Server Exploitation allows unauthenticated, remote attackers to execute commands on the affected servers. Oracle has assigned this vulnerability a CVSSv3 score of 9.8 out of 10, clearly ...

Oct 29, 2020

The 5 Biggest Myths of Vulnerability Management Busted for Good

Vulnerability management has been a standard practice for more than 15 years now. Vulnerability Scanning tool, assessment, and remediation have occupied an important spot in an organization’s endpoint security practices. However, many old beliefs and approaches that were once working fine have turne...

Oct 27, 2020

Chrome Zero-Day Under Active Exploitation – Patch Now

We all know the popularity and extensive audience of the Google Chrome browser, which can be used on Windows, Mac, or Linux computers and Android devices. To those currently using the same and who have not yet deployed the patch, it’s time to update their Chrome browsers to the latest version, 86.0....

Oct 21, 2020

The Four Cornerstones to Ensure Endpoint Visibility and Control

Business demands are driving a surge of enterprise endpoints. The average IT asset inventory is constantly growing with remote and heterogeneous devices used by multiple employees. While businesses take longer strides and step into bigger opportunities, it is essential to secure and enhance endpoint...

Oct 20, 2020

Top 10 Patch Management Best Practices for Unbreachable Defense

Software patching is one of the primary security measures to prevent cyber-attacks. Many organizations realize the importance of patching, but the challenge starts when carrying-out patching as a routine activity. With multiple operating systems and software, ever-expanding networks, and an improper...

Oct 14, 2020

Patch Tuesday: Microsoft Security Bulletin Summary for October 2020

Overview

Oct 13, 2020

This Cybersecurity Awareness Month, Make Cyberhygiene Your #1 Priority

The year is almost coming to an end. We’ve been practicing personal best cyber hygiene practices at home, offices, and everywhere else to protect our loved ones. While we’ve been confined to our homes, crossing our fingers, and hoping the pandemic comes to an end, the dark underbelly of cyberspace h...

Oct 12, 2020

AgeLocker Ransomware Targeting QNAP NAS Devices

AgeLocker Ransomware targeting QNAP network-attached storage (NAS) devices have been used by attackers to encrypt user data and demand a ransom. It has been found after research that no unpatched vulnerability was found to be exploited in the use of AgeLocker ransomware attack, whereas all the known...

Sep 29, 2020

Alert! Zerologon: Your Windows Domain Controller Can’t Handle Zero Properly (CVE-2020-1472)

Microsoft team patched a critical and exciting vulnerability in the Netlogon Remote Protocol of the Windows server last month. zero logon vulnerability discovered by the Cybersecurity firm Secura (dubbed as Zerologon), has received the highest severity score of 10.0. The vulnerability is identified ...

Sep 16, 2020

Patch Tuesday: Microsoft Security Bulletin Summary for September 2020

Microsoft Patch Tuesday September 2020 has released September Patch Tuesday security updates with a total release of 129 vulnerabilities, In which 23 are classified as Critical with Remote Code Execution(RCE) 105 are classified as important and 1 is classified as moderate that reside in the Microsof...

Sep 08, 2020

WordPress File Manager Plugin Under Active Exploitation

File Manager is a popular WordPress plugin that manages files to upload on WordPress sites. It allows a WordPress administrator to edit, delete, upload, download, archive, copy and paste files and folders directly from the WordPress backend. A critical remote code execution vulnerability identified ...

Sep 02, 2020

Cisco IOS XR Zero Day Vulnerabilities Being Actively Exploited in the Wild

The high severity zero-day vulnerabilities found in Cisco IOS XR – An Internetwork Operating System (IOS) that shipped with Cisco’s networking equipment. The vulnerabilities allow an unauthenticated, remote attacker to exhaust process memory. And crash the other processes running on the affected dev...

Aug 31, 2020

High-Severity Remote Code Execution Vulnerability in Google Chrome

A high-severity ‘use-after-free vulnerability tracked as CVE-2020-6492 with a CVSSv3 base score of 8.3 exists in WebGL [Web Graphics Library] component of the Google Chrome web browser that could be used to execute arbitrary code in the context of the browser process.

Aug 25, 2020

Critical Jenkins Vulnerability can Cause Memory Corruption and Disclose Sensitive Information

Jenkins, an open-source automation server software released an advisory pertaining to a critical vulnerability present in its application. Jenkins enables developers to build, test, and deploy applications. This vulnerability tracked as  CVE-2019-17638 using a vulnerability scanning tool when exploi...

Aug 18, 2020

High-Risk Vulnerability in TeamViewer Could be Exploited to Crack Users’ Password

The discovery of a high-risk vulnerability was in TeamViewer for Windows. It has a tracking as “CVE-2020-13699“, with a CVSS base score of “8.8,” in which exploits can happen by remote attacks to crack users’ passwords and, thereupon, lead to further system exploitation. Vulnerability Management Sof...

Aug 06, 2020

Billions of Linux and Windows Systems at Risk due to Critical GRUB2 Vulnerabilities

A team of cybersecurity researchers found multiple vulnerabilities that affect billions of devices that run on either Windows or Linux. Affected devices include laptops, servers, workstations, or even IoT devices. Boot hole vulnerabilities affect Linux and other Operating Systems using GRUB@ boot lo...

Jul 30, 2020

Kudos to IT Admins for Pulling Off the New Remote IT Management

In early 2020, the world saw the worst pandemic humankind has seen in a long time. While all businesses and employees were shattered, you had a new challenge to deal with.

Jul 30, 2020

Cisco Read-Only Path Traversal Vulnerability (CVE-2020-3452)

Cisco has released a Security Advisory for the actively exploited worldwide CVE-2020-3452. Cisco Read-Only Path Traversal Vulnerability in the web services interface of Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attac...

Jul 27, 2020

[Product Release] – Check out what’s new in SecPod SanerNow 4.6.0.0 release

SanerNow 4.6.0.0 comes out with several enhancements to enrich the product usage experience. This maintenance release also includes bug fixes to enhance the performance of the SanerNow platform.

Jul 27, 2020

3 Years of WannaCry: Millions of Endpoints Are Still Vulnerable Out There!

Are you aware of the worst cyberattack of 2017, the WannaCry ransomware attack? WannaCry was one of the worst-hit ransomware attacks that surfaced around May 2017 in Asia. The malware spread like wildfire and infected more than 230,000 computers in a day. The WannaCry attack mainly affected the Wind...

Jul 27, 2020

Check out our new look: Our new website launch

Jul 21, 2020

Latest Trends in IT Security Software

The worldwide web is arguably the best source of information and opportunities currently. On the other hand, there are countless threats looming at every nook and cranny of the web as well. The truth is that everyone is at risk when going online. This includes private individuals, small businesses, ...

Jul 19, 2020

SIGRed – Microsoft Windows DNS Server RCE Vulnerability (CVE-2020-1350)

A critical and wormable 17 years-old vulnerability (CVE-2020-1350) has been discovered in Microsoft Windows DNS Servers which can allow an attacker to run arbitrary code on the vulnerable system. The vulnerability is identified as CVE-2020-1350 and resides in the way how DNS Server parses incoming q...

Jul 15, 2020

Zoom Zero-Day Critical Vulnerability Allows RCE

A critical zero-day vulnerability has been found in Zoom – A video conferencing software, for Windows 7 or below. The vulnerability allows an attacker to execute remote code on the victim’s system without triggering any security warning. To successfully exploit this vulnerability, the attacker trick...

Jul 12, 2020

Critical Vulnerabilities in Palo Alto Networks PAN-OS devices

Palo Alto Network (PAN) has recently fixed a critical vulnerability related to the PAN-OS operating systems. The operating systems are known to power Palo Alto’s next-generation firewall. The vulnerability is tracked as CVE-2020-2021 with a CVSSv3 base score of 10. PAN-OS is the custom operating sys...

Jul 09, 2020

Citrix Security Updates for Critical vulnerabilities in Citrix ADC, Gateway and SD-WAN

Citrix announces the release of patches for fixing a set of 11 critical flaws found in three of its networking products: Citrix ADC,  Citrix Gateway, and Citrix SD-WAN WANOP appliance models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. However, As per the Citrix sources, the vulnerabilities don’t have an...

Jul 07, 2020

F5 BIG-IP Devices Under Active Exploitation (CVE-2020-5902)

F5 BIG-IP is a multi-purpose networking device manufactured by F5 Networks which can be configured to work as a traffic shaping system, firewall, load balancer, access gateway, rate limiter, or SSL middleware. F5 BIG-IP devices are one of the most popular networking products and are widely used in g...

Jul 06, 2020

Apache Guacamole Critical Vulnerabilities Put Remote Desktops at Risk

Security researchers at Check Point have uncovered multiple critical reverse RDP vulnerabilities in the Apache Guacamole. Apache Guacamole is a clientless remote desktop gateway. It supports standard protocols like VNC, RDP, and SSH, together with MFA (Multi-Factor Authentication), compliance checks...

Jul 02, 2020

SecPod – Our 12 Year Experimental Journey

It has been 12 years since the inception of SecPod, The Company that aims towards implementing “Cyber Hygiene” across enterprises. Our journey has been all about experiments. Experiments and thoughts of various kinds:

Jul 01, 2020

Microsoft HEVC emergency security updates for critical RCE vulnerabilities

Microsoft has released patches to fix two remote code execution vulnerabilities in Microsoft Windows Codecs Library. HEVC or Windows codecs library is responsible for handling large media files and decoding them for playback. HEVC by developers as it supports a multitude of different file formats. T...

Jul 01, 2020

Data Breaches are a Major Threat to Endpoint Security : SecPod Talks

The term data breach refers to any misfortunate event where confidential information is exposed to unauthorized users. Such incidents not only cause life-damaging fines but also destroys an organization’s hard-earned reputation and trust. A vulnerability management software helps stop data breaches.

Jun 25, 2020

Installing Software to Multiple Computers Is an Easy Task Now

Organizations are growing at a faster pace these days, and so are their software requirements. Every organization has different departments and user roles, thus leading to a different set of software requirements. It is not easy to satisfy each department’s software needs, and often IT administrator...

Jun 24, 2020

These 5 Misbeliefs Are Leading Companies Lose Their Cybersecurity

COVID19 has taught the world the powerful lessons on personal hygiene. Given that work from home culture is turning out to be the new norm and big organizations are already passing regulations on continuing it for the next few years, cyber hygiene is an important topic the world should be prepared t...

Jun 21, 2020

5 Reasons Why Antivirus Is Not Effective Anymore

Complexity in Anti Virus, Cybersecurity is a significant aspect of concern for any business today. People running businesses often feel that the antivirus they use on their personal endpoints could provide similar protection on the endpoints facilitated across their organization. If you put the endp...

Jun 18, 2020

‘Ripple20’ Vulnerabilities Affecting Millions of Internet Connected Devices Worldwide

Treck TCP/IP is a high-performance TCP/IP protocol suite designed for embedded systems. A set of 19 critical and high-severity security vulnerabilities have been discovered using a vulnerability scanning tool by Israeli security research firm JSOF in a low-level TCP/IP software library, Ripple 20 Vu...

Jun 17, 2020

COVID-19 Crisis and Future Cyber Attack Predictions

As the world fights for its survival against COVID19, most of us are now extra conscious about our hygiene. During this tough situation isn’t it important to look after the asset hygiene as well? 2020 is a year to remember throughout life. Many things have happened and maybe a lot to expect in the u...

Jun 16, 2020

Easy Passwords Pave Way For Attackers To Invade Your Network

Passwords are the key to unlock your identity. However, there are attackers who are always there to steal your confidential data. There are various ways in which an attacker can crack your password. Both offline and online password cracking strategies are available. Hence organizations should take e...

Jun 14, 2020

A Critical Vulnerability ‘SMBleed’ Impacts Windows SMB Protocol

The Server Message Block Protocol (SMB protocol), which runs over TCP port 445, is a client-server communication protocol for sharing access to files, printers, network browsing, and inter-process communication.

Jun 10, 2020

Ransomware Types That Target Businesses

Although the ransomware types took a nosedive in terms of the victim count years ago, it’s still alive and kicking. By using a vulnerability management tool, we can remediate these. It used to home in on any computers indiscriminately, but at some point, the malicious actors realized they could sque...

Jun 07, 2020

Critical Code Execution Vulnerabilities in Zoom Client Application

Two critical vulnerabilities were recently disclosed by Cisco Talos in the widely used video conferencing software Zoom. It can be exploited by a remote attacker who can hack into the host’s machine and can execute arbitrary code. Given the current scenario of the COVID-19 pandemic, several companie...

Jun 03, 2020

Alert for Apple Users: Apple Patches a Zero-Day Unc0ver Jailbreak Vulnerability

The IT giant, Apple has quietly patched a zero-day vulnerability which was recently discovered by a team of cyber-security researchers and hackers in the iOS kernel. Apple has patched this vulnerability in all of its operating systems across various devices along with iOS. The researchers who discov...

Jun 03, 2020

Critical Vulnerabilities in SAP Adaptive Server Enterprise (ASE)

The SAP Adaptive Server Enterprise (ASE), previously known as Sybase SQL Server, is a high-performance relational database server that can be hosted on-premise or cloud structure that is used by over 30,000 organizations worldwide, including banking institutions, healthcare companies, security firms...

Jun 03, 2020

Are Your Organization’s IT Assets ‘Really’ Under Control?

Every organization has its own IT Assets and IT asset control can be done by the internal team by using a vulnerability management tool. They might range from desktops, laptops, mobile devices to switches, hubs, routers, the list does not stop here. As organizations expand their business, it leads t...

May 27, 2020

How to Secure Your Educational Institution Amidst Lock down?

COVID 19 has bought a lot of changes to the world. Various industries have evolved from their regular work pattern and have come up with new regulations to handle the wild spread of the pandemic. One of the important sectors to undergo this major transition would be the educational institutions. Mov...

May 21, 2020

Beware : NXNSAttack on DNS Servers Could Bring Down Major Sections of the Internet

A new vulnerability in the architecture of the global Domain Name System (DNS) was brought to light. By a team of Israeli researchers. The team also published a paper highlighting how this flaw could be leveraged with an attack. Dubbed as NXNSAttack to bring down target websites. A vulnerability man...

May 20, 2020

6 Common Myths And Misbeliefs About Patching

Patching is one of the best security practices followed to fix software vulnerabilities. Studies show that much serious ransomware like WannaCry could have been easily prevented if software updates were patched on time. For cyber attackers, un-updated software is always a welcome sign to intrude the...

May 17, 2020

[Product Release] Check out what’s new in SecPod SanerNow 4.5.0.0

SanerNow 4.5.0.0 brings several enhancements to the Patch Management (PM) module along with a few product performance improvements. This maintenance release also consists of fixes to bugs, security issues, and enhancements to REST API coverage.

May 16, 2020

Adobe Critical Security Updates May 2020

Adobe had released security updates providing fixes for 16 critical vulnerabilities in Adobe Acrobat, Reader, and Adobe DNG Software Development Kit. A total of 36 security bugs were patched in this release. The critical vulnerabilities could allow the attackers to execute arbitrary code or bypass t...

May 13, 2020

Cisco Releases Security Updates for Multiple Products

Cisco has rolled out May 2020 security patches for eleven different products using auto patching. Advisories released for Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software are considered important. The most severe of these vulnerabilities could enable an attacker...

May 07, 2020

Facing Application Startup Issues in Remote Computers? Check Out How Chris Managed.

Chris is an IT administrator working for a large enterprise with multiple remote offices. Chris deals with numerous system issues on a day-to-day basis. One of the major issues which consumed a lot of his time was dealing with system slowdown due to application startups. This issue was frequently ra...

May 04, 2020

SaltStack Salt Critical Vulnerabilities Under Active Exploitation

SaltStack Salt is a very popular open-source remote task and configuration management framework widely used in data centers and cloud environments. Two critical security flaws have been discovered by a vulnerability management tool. In Salt that can allow an attacker to execute arbitrary commands as...

May 03, 2020

Adobe Releases Emergency Critical Security Patches- April 2020 Updates

Apr 28, 2020

Microsoft out-of-band Security Updates for Office and Paint 3D

Microsoft released an out-of-band security update addressing multiple vulnerabilities that plug remote code execution vulnerabilities in an Autodesk FBX library incorporated into Microsoft Office, Office 365 ProPlus and Paint 3D applications. A vulnerability management tool can detect multiple vulne...

Apr 22, 2020

Unpatched Zero-Day Vulnerabilities Put IBM Data Risk Manager At Risk

A security researcher recently uncovered four vulnerabilities in IBM Data Risk Manager and publicly disclosed them following a refusal from the tech giant to act on the same. These Zero-Day vulnerabilities, which have not been assigned any CVEs yet, comprise 3 critical and 1 high severity bugs.

Apr 21, 2020

Webinar: How BlueHat Cyber Automates Patch Management Using SanerNow

A Live Webinar on “How Blue Hat Cyber Automates Patch Management Using SecPod SanerNow”

Apr 21, 2020

Are You Sure Uninvited Guests Are Not A Part Of Your Online Meetings?

As the global pandemic, COVID-19 is hitting the world hard, organizations’ workforces are now working from home. No company can easily work without regular meetings, team communications, partner and client calls, webinars, online training, video-conferences etc. Not just corporate organizations, eve...

Apr 16, 2020

My Journey So Far !

I am Nicole Fernandes, an ex-Christite started my career at SecPod Technologies during the final semester of my MCA course. Here is the story of my journey into this complex and interesting world of technology.

Apr 13, 2020

10 Cyber Hygiene Challenges You Can Solve With SecPod SanerNow

According to many organizations, practicing healthy cyber hygiene measures is a difficult task. IT administrators try their best to implement good security practices in the network. However, it takes a lot of effort and time. Also, these Cyber Hygiene tips are not just one-time tasks but must be per...

Apr 12, 2020

COVID-19 of the digital world

Apr 06, 2020

Security Update: Mozilla Fixes Actively Exploited Zero-Days in Firefox

Mozilla fixed two critical zero-days in its popular web browser, Firefox. Using a vulnerability management tool. Mozilla is aware of active exploitation of these vulnerabilities. There is no specific information about the threat groups or malwares utilizing these vulnerabilities. These are the Firef...

Apr 05, 2020

Virus and Hygiene

I have been interested in learning about biological systems for a few years now, generally about the human body and its functioning. The immune system, in particular, has intrigued me ever since. The reason for my keenness is to understand how nature has responded to external threats, dust particles...

Mar 26, 2020

Beware : Microsoft Warns of Active Attacks on Windows Using Unpatched Zero-Days

Microsoft and its updates are of utmost interest to the security community during the second Tuesday of every month, the Patch Tuesday. However, Microsoft has filled the headlines of the fourth Tuesday too with important information about two critical unpatched zero-days in Microsoft Windows operati...

Mar 23, 2020

5+ Tips to Secure Your Java Code from Attackers

Every software developer must follow certain standards and practices while coding and writing, secure code is one such practice. Everyone who loves to code must ensure their software is not vulnerable to exploits or being a principal cause of a cyber-attack. Here are the few best Java code security ...

Mar 19, 2020

From Being Regular Office Goers to Handling the Sudden Situation of Working from Home

COVID-19 has spread across the globe and has forced organizations to embrace work from home culture. We too were faced with a similar situation last weekend when the authorities insisted IT organizations allow employees to work from home. We are a team who are accustomed to working at our office pre...

Mar 19, 2020

Check Out What’s New in SecPod SanerNow 4.4.0.0 | Release Notes

At SecPod, we strive towards delivering the solution to enhance user experience. SanerNow 4.4.0.0 comes with a bundle of new additions, enhancements, and bug fixes to increase efficient product usage. Moreover, In this release we have brought several enhancements to the Patch Management system, Endp...

Mar 18, 2020

Active exploitation of zero-days in Trend Micro security products

Mar 17, 2020

Adobe Critical Security Updates March 2020

Mar 17, 2020

Beware Critical Wormable SMBv3 Flaw in Windows Systems.

Microsoft disclosed details of a critical wormable flaw in SMBv3. This flaw can be used by attackers to deliver wormable malware to targets that could spread across the network and infect other machines within no time. Server Message Block(SMB) is an important network protocol that is used for shari...

Mar 12, 2020

Measures To Secure Oracle Solaris OS

Solaris is a Unix-based operating system developed by Sun Microsystems, which was later acquired by Oracle. Oracle Solaris OS is known for its scalability, so it can be used to handle heavy workloads efficiently and has an advanced security capability to automate self-healing (disaster recovery). Th...

Mar 12, 2020

From Never Wanted to be in Technology to Building Products for SecPod

Mar 12, 2020

CVE-2020-0551- New class of attacks discovered in Intel

Mar 11, 2020

Patch Tuesday: Microsoft Security Bulletin Summary for March 2020

Mar 10, 2020

An unfixable high-severity flaw in Intel Chipsets

Mar 08, 2020

Point to Point Protocol Daemon demonized by CVE-2020-8597

Mar 05, 2020

Apache Tomcat servers vulnerable to Ghostcat flaw

Mar 01, 2020

Cisco patches Kr00k and other vulnerabilities in its products

Feb 27, 2020

Attackers hunting for vulnerable Exchange Servers

Feb 26, 2020

Alert : Google Chrome Zero-Day vulnerability being exploited in the wild

Feb 25, 2020

ALERT: Windows 10 Update (KB4532693) Can Eat UP System Data

Feb 19, 2020

Uncovering a three year old Iranian campaign dubbed Fox Kitten

Feb 18, 2020

Adobe Security Updates February 2020

Feb 12, 2020

Intel fixes a high-severity vulnerability in CSME.

Feb 12, 2020

CDPwn: Critical Zero-day flaws affecting millions of Cisco Devices.

Fig 1: Image credit: zdnet.com

Feb 09, 2020

Security Products, not an impediment for RobbinHood Ransomware

Feb 09, 2020

Lemon Duck Malware : Infecting outdated Windows systems using EternalBlue

Feb 05, 2020

Ryuk Ransomware spreading using unpatched vulnerabilities

Feb 04, 2020

Go SUDO without a password

Feb 03, 2020

Critical RCE Vulnerability in OpenSMPTD

Jan 29, 2020

The Saga of the infamous Citrix exploits

Jan 28, 2020

Critical Security Updates released for Cisco FMC

Jan 23, 2020

Unpatched Internet Explorer Zero Day exploited in the wild

Jan 20, 2020

Critical Windows CryptoAPI Vulnerability demands prompt action

Jan 15, 2020

Cisco releases security advisories for multiple products

Jan 09, 2020

Mozilla patches critical zero-day and high severity vulnerabilities in Firefox

Jan 08, 2020

Cisco releases critical security updates for Data Center Network Manager (DCNM)

Jan 06, 2020

Uncovering critical vulnerabilities in real-time computer vision library, OpenCV

Jan 06, 2020

Cisco ASA and FTD under active exploitation from 2018

Dec 23, 2019

Critical Vulnerabilities in Drupal

Dec 19, 2019

Adobe Security Updates December 2019

Dec 12, 2019

OpenBSD Authentication Bypass and Local Privilege Escalation Vulnerabilities

Dec 05, 2019

Not so safe: Encrypted VPN-tunnels

Dec 05, 2019

EmbedThis GoAhead Web Server Critical Vulnerabilities

Dec 04, 2019

Mozilla Security Updates December 2019

Dec 04, 2019

Oracle EBS flaws render businesses out of commission

Nov 20, 2019

Delivering Ransomware with Windows Updates

Nov 19, 2019

ZombieLoad is back!

Nov 14, 2019

Adobe Security Updates November 2019

Nov 13, 2019

Keeping up with BlueKeep (CVE-2019-0708) Vulnerability

Nov 10, 2019

Qsnatch snatching credentials in an ongoing Campaign

QSnatch, the new malware in town has already affected thousands of devices and wouldn’t call it quits. This malware was first discovered in October 2019 by the National Cyber Security Center of Finland (NCSC-FI) after it received reports via the Autoreporter service indicating the communication of i...

Nov 08, 2019

Cisco Security Updates November 2019

Nov 07, 2019

Operation WizardOpium Exploiting Google Chrome Zero-Day

Nov 03, 2019

ALERT: PHP RCE Vulnerability Exploited in-the-wild (CVE-2019-11043)

Oct 27, 2019

ALERT: Chrome and Firefox Critical Vulnerabilities

Mozilla Firefox and Google Chrome Vulnerabilities

Oct 23, 2019

ALERT: Linux Kernel Bug allows Full System Takeover (CVE-2019-17666)

Oct 20, 2019

Attackers can slip through the AiroNET!

Oct 17, 2019

Adobe releases Out-of-band Security Updates

Oct 15, 2019

ALERT: Superusers could run into Super trouble

Linux users, beware! One of the most powerful and well known command line utility, sudo, could aid users to gain superuser privileges in spite of the existing restrictions. With sudo being installed in almost all flavors of UNIX-like operating systems, a major number of users could possibly be affec...

Oct 14, 2019

ALERT: BitPaymer/IEncrypt campaign exploiting Apple Zero-Day

Oct 13, 2019

ALERT: iTerm2 Critical Remote Code Execution Vulnerability

.

Oct 10, 2019

Apple security updates October 2019

Oct 10, 2019

ALERT: Foxit fixes eight high severity vulnerabilities in Foxit Reader

Foxit has released a security advisory for Foxit Reader. There are eight high severity bugs that were fixed in this update. These vulnerabilities are:

Oct 03, 2019

The Exim Mail Server Trilogy

Sep 30, 2019

Tens of Thousands of vBulletin Forums Wildly Being Exploited (CVE-2019-16759)

Sep 26, 2019

ALERT: Critical Vulnerabilities in Adobe ColdFusion

Sep 25, 2019

Emergency updates for Windows Defender and Internet Explorer Zero-Day

Sep 23, 2019

ALERT:Google fixes four critical Chrome vulnerabilities

Sep 22, 2019

ALERT: phpMyAdmin configured servers vanish with a click!

phpMyAdmin is a free tool millions worldwide use to manage MySQL and MariaDB databases over the web. Joomla, WordPress, etc., are some popular products that use phpMyAdmin. Manuel Garcia Cardenas, a security researcher, discovered a CSRF vulnerability that can meddle with the server configurations i...

Sep 18, 2019

Patch Tuesday: Microsoft Security Bulletin Summary for September 2019.

Sep 10, 2019

CRITICAL: Exim is back with a Remote Root Code Code Execution Vulnerability (CVE-2019-15846)

Sep 08, 2019

ALERT: The Forbidden Samba Shares exposed (CVE-2019-10197)

Sep 05, 2019

QEMU, bringing the guest closer to the host

Aug 27, 2019

ALERT: Apple Emergency Update (CVE-2019-8605)

Aug 26, 2019

HTTP/2 can shut you down!

Aug 20, 2019

Patch Tuesday: Microsoft Security Bulletin Summary for August 2019

Aug 13, 2019

Adobe Security Updates – August 2019

Aug 13, 2019

ALERT: SQLite database Remote Code Execution Vulnerability

SQLite is a cross-platform relational database management system. It is known to be the most used database engine in the world. The vendor claims that several applications, like Skype, Firefox, Chrome, Safari, etc., use billions of deployments of SQLite. Researchers showcased how SQL language can ex...

Aug 12, 2019

ALERT: ProFTPD Server Arbitrary File Copy Vulnerability (CVE-2019-12815)

Jul 23, 2019

My Journey into SecPod

Exams were round the corner and I had a crucial decision to make – accept the job offers that I got through campus interviews or search for a job of my own interest. Being a part of the 1 million engineering graduates that India annually produces, I knew to find the perfect job was not going to be a...

Jul 22, 2019

ZOOM in to your Mac Computers!

Jul 11, 2019

Caution, QEMU Users!!! Your password file may be open to attackers

Jul 02, 2019

SCAP Feed Release : 28-Jun-2019

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Jun 27, 2019

Dell SupportAssist Assists Attackers

Jun 23, 2019

ALERT: HAWKBALL Backdoor exploiting Microsoft Office Vulnerabilities

Jun 23, 2019

ALERT: Another Deserialization RCE Vulnerability in Oracle WebLogic Server (CVE-2019-2729) Exploited in the Wild

Jun 19, 2019

ALERT: The Return of the WIZard in Exim Mail Server (CVE-2019-10149)

Jun 16, 2019

Open a text file and lose your system to hackers!

Code Red! To all the Linux users out there, you have a high probability of getting your system hacked if you are using an older version of the command-line text editor.

Jun 10, 2019

ALERT: VLC Vetineri receives an important update

Jun 10, 2019

The 5th Wave!

Credits : thehackernews.com

Jun 09, 2019

SCAP Feed Release : 01-Jun-2019

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

May 31, 2019

Polarbear digs out a new Windows Zero-Day

May 23, 2019

Dawn of ZombieLoad, RIDL, and Fallout: MDS Attacks.

May 15, 2019

Watch out for Alpine Linux Docker Image Root login Vulnerability

May 14, 2019

ALERT: Remote Code Execution Vulnerability in Microsoft SharePoint (CVE-2019-0604)

May 08, 2019

SCAP Feed Release : 01-May-2019

The following SCAP content Regarding Fedora 2019  and FreeRadius has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Apr 30, 2019

ALERT: Oracle WebLogic Server Zero-day (CVE-2019-2725) in the wild

Apr 28, 2019

ALERT: Active Exploitation: Windows Elevation of Privilege Vulnerability (CVE-2019-0859)

Apr 21, 2019

Adobe Security Updates April 2019

Apr 10, 2019

SCAP Feed Release : 02-Apr-2019

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Apr 01, 2019

ALERT: WinRAR Remote Code Execution Vulnerability (CVE-2018-20250) Exploited in the Wild

Mar 17, 2019

Patch Tuesday: Microsoft Security Bulletin Summary for March 2019

Microsoft Patch Tuesday March 2019 is back with its monthly set of security updates and brings with it 64 vulnerabilities. 17 of them are rated critical, 45 are rated important, 1 rated moderate and another rated low in severity using a vulnerability scanning tool. Also, 35 CVEs were reported for Wi...

Mar 12, 2019

SCAP Feed Release : 01-Mar-2019

The following SCAP content in March 2019 has been released to SCAP Repo and SecPod Saner Solution which contains vulnerabilities like Fedora, Redhat Polkit, NSS vulnerability, etc. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Feb 28, 2019

SCAP Feed Release : 01-Feb-2019

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Jan 31, 2019

Seven new Meltdown and Spectre-type CPU vulnerabilities that affect Intel, AMD, ARM CPUs

Spectre and Meltdown vulnerabilities are one of the most significant known hardware vulnerabilities that affect the modern computer processors. Meltdown and Spectre vulnerabilities were exploited through malicious programs to retrieve secrets stored in the memory of other running programs, sensitive...

Dec 27, 2018

How to Enable Automatic Update for MS Office 2013 and 2016 Click-To-Run Installations

By default, updates for Click-To-Run installations of MS Office 2013 and 2016 are not offered by Microsoft through Windows updates; rather, we need to manually update by opening an application or set it to Microsoft office automatic updates. We usually encounter many end-users who face genuine diffi...

Nov 29, 2018

How to fully patch CVE-2018-3639, Speculative Store Bypass Vulnerability

January 2018 saw the rise of Meltdown and Spectre vulnerabilities concerning speculative execution side channels. A subclass of speculative execution side-channel vulnerability, termed as Speculative Store Bypass (SSB) was announced by Microsoft in collaboration with Google researchers and was assig...

Nov 18, 2018

SCAP Feed Release : 01-Nov-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Oct 31, 2018

How to Fully Fix CVE-2017-8529, Microsoft Browser Information Disclosure Vulnerability

Microsoft has re-released a patch for CVE-2017-8529 to fix a print issue related to this vulnerability. The patch is not fully applied unless certain registry keys are set even after installing the respective Operating System patches. This article describes the steps to update registry settings to b...

Oct 16, 2018

Adobe Security Updates – October 2018

Oct 10, 2018

SCAP Feed Release : 01-Oct-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Sep 30, 2018

SCAP Feed Release : 15-Sep-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Sep 14, 2018

Saner Release Notes 4.1

Saner 4.1 unveils feature-packed release for Patch Management and encompasses performance optimization in all the tools. It offers patch rollback mechanisms for various Linux and Mac operating systems and supports remediation for non-security patches too.

Sep 04, 2018

Apache Struts Web Application Framework Critical Remote Code Execution Vulnerability (CVE-2018-11776)

Aug 23, 2018

Adobe Security Updates – August 2018

Aug 15, 2018

SCAP Feed Release : 02-Aug-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Aug 01, 2018

SCAP Feed Release : 01-Aug-2018

The following SCAP Release August 2018 content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Jul 31, 2018

Adobe Security Updates – July 2018

Jul 10, 2018

WAVETHROUGH – Mixing Visible & Opaque Data

Microsoft Edge and Mozilla Firefox browsers have been identified to have a severe bug that can allow remote attackers to steal the data of the users. If a user visits a malicious website, the website can steal the sensitive content of the user’s online accounts from other websites where the user hav...

Jun 21, 2018

Flawed Cortana Can Be Used To Unlock Your PC (CVE-2018-8140)

Jun 21, 2018

What it Means to Work Here at SecPod?

Jun 18, 2018

SCAP Feed Release : 01-Jun-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. This is a list of vulnerabilities detected using a vulnerability management tool.

May 31, 2018

Adobe Security Updates for Acrobat and Reader, and Photoshop

May 16, 2018

Patch Tuesday: Microsoft and Adobe Security Bulletin Summary for May 2018

May 08, 2018

Drupal Strikes Back !!!

Apr 26, 2018

Oracle WebLogic WLS-WSAT Component Deserialisation RCE

Apr 26, 2018

Drupalgeddon 2 RCE

Apr 23, 2018

Adobe Security Updates – April 2018

Apr 15, 2018

Windows Remote Assistance Needs Assistance

Image courtesy: maketecheasier.com

Mar 21, 2018

Adobe Security Updates – March 2018

Mar 15, 2018

Patch Tuesday: Microsoft Security Bulletin Summary for March 2018

Mar 13, 2018

Windows SMB Blue Screen Of Death (BSOD)

Mar 05, 2018

SCAP Feed Release : 01-Mar-2018

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Feb 28, 2018

Adobe Security Updates – February 2018

Feb 14, 2018

Alert: Adobe Flash Zero-Day RCE Vulnerability (CVE-2018-4878)

Feb 01, 2018

Oracle Micros Point-Of-Sale Systems Critical Vulnerability (CVE-2018-2636)

Oracle Micros POS is a hospitality management platform providing enterprise point-of-sale (POS) and back-office functionality to support a wide range of food and beverage operations. Oracle’s MICROS has more than 330,000 cash registers worldwide and currently. Oracle is the third-largest provider of...

Jan 31, 2018

Meltdown and Spectre Critical vulnerabilities

Jan 03, 2018

Microsoft Malware Protection Engine ‘File Processing’ RCE Vulnerability

Dec 14, 2017

Critical Security Bugs In Intel Processors

Nov 29, 2017

MS Office Default Function Bring In Self-Replicating Malware

Nov 28, 2017

Adobe Security Updates for November 2017

Nov 15, 2017

ROCA: RSA Encryption Vulnerability

Oct 29, 2017

New Ransomware Attack. This time its BAD RABBIT.

Oct 29, 2017

Top 10 Security Breaches of 2017 And What To Do

Introduction

Oct 25, 2017

The KRACK Attack – Wi-Fi at risk

Oct 17, 2017

BlueBorne Attack: Millions of Devices at Risk

Over 5.3 billion devices across Windows, Linux, ios, and Android are affected by a new attack vector called BlueBorne Attack. Unless traditional attacks, this attack vector spreads over the air via Bluetooth, and the hacker does not need to pair with each device. A good Vulnerability Management Tool...

Oct 17, 2017

Adobe Security Update for Flash Player Zero-Day

Oct 17, 2017

SCAP Feed Release 2 : 11-Oct-2017

The following SCAP Release October 2017 content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Oct 10, 2017

Apache Wicket: Defeating Encrypted And Stateful URLs

Apache Wicket is an open-source, server-side, Java web application framework and used by quite a few big sites. It is discovered that the ‘encrypted url feature‘ is expected to protect from CSRF (Cross-Site Request Forgery) attacks, but it fails to provide enough protection against CSRF attacks Apac...

Oct 08, 2017

Malicious Code Present in “Piriform – CCleaner v5.33” – CleanUp

Piriform CCleaner is a system cleanup tool by Piriform, which is now owned by Avast. A suspicious activity  identified on September 12th, 2017, where an unknown IP address receiving data from software found in version 5.33.6162 of CCleaner. Later it was present that the 5.33.6162 version of CCleaner...

Sep 19, 2017

Adobe Security Updates for September 2017

Adobe has released four security updates for Adobe Flash Player (APSB17-28), Adobe RoboHelp(APSB17-28), and Adobe Cold Fusion (APSB17-30) which covers a total of 8 CVE’s.

Sep 14, 2017

APACHE STRUTS2 Remote Code Execution (CVE-2017-9805)

Sep 10, 2017

Defending against “Superfish’s VisualDiscovery Adware” using Saner Solution

VisualDiscovery is an Adware program by SuperFish.inc. VisualDiscovery was able to access consumer’s personal information sent online, including login credentials, social security numbers, medical information, and financial information.

Sep 06, 2017

Foxit Critical Zero Day RCE Vulnerabilities

Aug 29, 2017

Command And Control Servers : Things You Should Know

Aug 22, 2017

SMBLoris – An SMB DoS Vulnerability

SMBLoris is a remote, unauthenticated application-level denial of service (DoS) attack against Microsoft Windows operating systems. A vulnerability of this kind can be tracked using an appropriate vulnerability management tool. The Server Message Block (SMB) network protocol implementation causes it...

Aug 17, 2017

Patch Tuesday: Microsoft Security Bulletin Summary for August 2017

Microsoft August 2017 Patch Tuesday addresses 48 security vulnerabilities in six of it’s main product categories. Amoung these 25 CVE’s are rated as Critical, 21 are rated as Important and 2 are rated as Moderate. However, a vulnerability management tool can help detect these vulnerabilities.

Aug 10, 2017

Adobe Security Updates for August 2017

Aug 09, 2017

SCAP Feed Release : 01-Aug-2017

The following SCAP Release August 2017 content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Jul 31, 2017

Adobe Security Updates for July 2017

Jul 12, 2017

Saner 3.0 Release Notes

Saner 3.0 provides new administrative controls, consolidated reports across all clients, additional endpoint probes, scaling/performance improvements, and a variety of usability enhancements.

Jun 27, 2017

Ransomware Petya strikes : You’re only safe if you patch ASAP

Jun 27, 2017

IoT Ransomware Attacks – Next Biggest Challenge For Cyber Warriors – Part 1

Ransomware has already managed to carve itself a slot as one of the main cyber security threats in recent years. Individuals, government agencies, and private organizations are each taking precautionary steps to protect against ransomware that can encrypt files beyond one’s reach. IoT ransomware att...

Jun 20, 2017

Adobe Security Updates for June 2017

Jun 15, 2017

EsteemAudit – Potential for Another WannaCry-like Attacks

There may be a possible ‘second wave’ of massive global cyber attack, as SMB (Server Message Block) . It was not the only network protocol whose zero-day exploits created by NSA exposed in the Shadow Brokers release. A vulnerability management tool helps detecte these attacks. The WannaCry emergency...

Jun 12, 2017

SCAP Feed Release : 01-Jun-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

May 31, 2017

DoublePulsar – A Very Sophisticated Payload for Windows

May 31, 2017

Samba CVE-2017-7494 Remote Code Execution Vulnerability

May 25, 2017

EternalRocks – The New and More Sophisticated ‘Doomsday’ Worm

The Blackhats have created a new strain of malware that targets the same vulnerability as the WannaCry ransomware from the first week of May. However, these targeted vulnerabilities can be patched using auto patching.

May 22, 2017

Defending against “WannaCry” Ransomware using Saner Solution

In the last few days, we saw how “WannaCry” ransomware crippled 3 million Windows systems around 150 countries. To understand the technical details on “WannaCry”, read our previous blog.

May 16, 2017

“Wanna Cry” and the art of not keeping the systems updated

There is a magic button that is going to save us all. Mathematical modeling, sandboxing, behavioral analysis, machine learning, EDR, what not button. Just click it. Auto Patching vulnerability is gone thing, who is going to sit and roll out those tedious little things. I have invested in magic butto...

May 14, 2017

WannaCry Ransomware: Digital example of a perfect storm

WannaCry (also known as Wana Decrypt0r 2.0, Wannacryptor, WannaCrypt, wana Decryptor) ransomware disrupts 2-3 million devices in around 150 countries, taking important files hostage and demands a ransom of $600 worth of bitcoins. Vulnerability Management Software can tackle these issues.

May 14, 2017

StringBleed, SNMP Authentication Bypass

May 14, 2017

Adobe Security Updates for May 2017

Adobe Security Updates May 2017 has released two security updates for Adobe Flash Player, and Adobe Experience Manager Forms using a reliable vulnerability management tool. The updates address a critical vulnerability in Adobe Flash Player and an important vulnerability in Adobe Experience Manager F...

May 11, 2017

Patch Tuesday: Microsoft Security Bulletin Summary for May 2017

Microsoft Patch Tuesday May 2017 addressing 56 security vulnerabilities in addition to 7 vulnerabilities for Adobe Flash Player.

May 11, 2017

Endpoint Security: Making Security Great Again

May 02, 2017

Ransomware Cerber A Repeat Offender – Part 3

In the third and final part of this series, we will explore Cerber, the most devious ransomware, and its behavior in Red Cerber. A vulnerability management tool can detect this vulnerability and provide ways to mitigate it. Red Cerber:  The campaign of Red Cerber started in early 2017 after a small...

Apr 17, 2017

SCAP Feed Release – Part 2 : 13-Apr-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Apr 12, 2017

SCAP Feed Release – Part 1 : 13-Apr-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Apr 12, 2017

Ransomware Cerber A Repeat Offender – Part 2

Let’s continue from where we left off last week, and will go through the behavior patterns of the next versions of the Cerber Ransomware.

Apr 09, 2017

How to Defeat Attack Enablers with Saner

Apr 04, 2017

Ransomware Cerber A Repeat Offender – Part 1

Cerber is pernicious ransomware and one of the top 3 ransomware in the world. Cerber has been growing exponentially since early march of 2016. The notorious ransomware is now in its 5th version as the developers of the ransomware have been continuously improving their code to avoid endpoint security...

Apr 02, 2017

Microsoft Windows Zero-Day Code-Injection Vulnerability: DoubleAgent Attack

Mar 27, 2017

SCAP Feed Release : 17-Mar-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Mar 16, 2017

Adobe Security Updates for March 2017

Mar 16, 2017

Apache Struts Struck by Zero-Day Attack

The Model-View-Framework Apache Struts2, an open source and free framework for simplifying the creation of web applications in Java recently patched to mitigate a zero day vulnerability using a patch management tool.

Mar 12, 2017

Broken SHA-1 Algorithm: A Twist in the Cryptography World

Mar 09, 2017

SCAP Feed Release : 01-Mar-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Feb 28, 2017

WordPress ‘REST API Endpoint’ Zero-Day Content Injection Vulnerability

Feb 20, 2017

Microsoft Windows SMB Zero-Day Vulnerability

A new zero-day exploit exists in the wild for Windows SMB. Security researcher Gaffie discovered this vulnerability three months ago. Since Microsoft failed to patch it in the past three months, he released it. This vulnerability is specifically a null pointer dereference error in SMB (server messag...

Feb 19, 2017

Adobe Security Updates for Febraury 2017

Feb 15, 2017

SCAP Feed Release : 01-Feb-2017

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Jan 31, 2017

Adobe Security Updates For January 2017

Jan 11, 2017

A Look Back At 2016: The Year of Ransomware

Ransomware was a popular topic in 2016. Ransomware attacks have become complex, targeted, and sophisticated. Many organizations infected with ransomware have lost a huge amount of money to get back their data from attackers. In 2016, new ransomware and new variants of old ransomware showed up. This ...

Jan 05, 2017

Saner Solution 2.3 Release Notes

Saner Solution 2.3 provides many new features and capabilities, including full support for Mac OS X systems. The Saner solution also protects endpoints on all three major operating systems, Microsoft Windows, Mac OS X, and all flavors of Linux.

Jan 04, 2017

Privilege Escalation Vulnerability in MySQL / MariaDB / PerconaDB databases ( CVE-2016-5616 / CVE-2016-6663 )

Privilege escalation is the method of exploiting a bug, design flaw, or configuration issue in an operating system or software application to gain access to resources that are having restrictions to use by other users. An independent researcher Dawid Golunski exposed a privilege escalation vulnerabi...

Jan 02, 2017

Adobe Security Updates For December 2016

Dec 15, 2016

Fantom Ransomware – Make sure your ‘Windows updates’ are genuine

Dec 12, 2016

Gaining Root Shell in Linux (CVE-2016-4484)

Linux distributions are one of the most popular and commonly used operating systems. All Linux distributions including Debian, Ubuntu, Fedora, Red Hat Enterprise Linux (RHEL), and SUSE Linux Enterprise Server (SLES) suffer from a serious authentication bypass vulnerability that can allow anyone to b...

Dec 11, 2016

SCAP Feed Release : 01-Dec-2016

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

Nov 30, 2016

Easy Ways to Get Hacked – Part III

Nov 14, 2016

Easy Ways to Get Hacked – Part IV

Nov 14, 2016

Adobe Security Updates for November 2016

Adobe has released one critical security update for Adobe Flash Player (APSB16-37) and one security update for Adobe Connect (APSB16-35). The security updates for Adobe Flash Player resolve critical vulnerabilities that allow attackers to execute arbitrary code and take control of the affected syste...

Nov 10, 2016

Dirty COW Vulnerability (Kernel Local Privilege Escalation)

Dirty COW vulnerability(CVE-2016-5195) is a privilege escalation in the Linux Kernel, which allows an unprivileged local user to gain write access to otherwise read-only memory mappings. Thus increases their privileges on the system. Vulnerability management tool are essential to detect such critica...

Nov 07, 2016

Google discloses zero-day Vulnerability in Windows kernel

Google discloses a Windows zero-day vulnerability in the Windows kernel. That is currently in exploitation in the wild by Black Hats. This was disclosing after Microsoft failed to release a patch within the 7-day deadline. Also, a reliable vulnerability management tool can prevent these issues.

Nov 07, 2016

Our Most Loved Whitepaper

Ransomware continues to be popular among cyber criminals. According to a CNN report, cyber criminals collected over $209 million in the first three months of 2016. Ransomware exploits vulnerabilities, misconfigurations, and social engineering.

Oct 25, 2016

Easy Ways to Get Hacked – Part II

Oct 24, 2016

Easy Ways to Get Hacked – Part I

Oct 18, 2016

Adobe Security Updates for October 2016

Oct 12, 2016

Adobe Security Updates for September 2016

Adobe has released three security updates for Adobe AIR SDK & Compiler (APSB16-31), Adobe Flash Player (APSB16-29), and Adobe Digital Editions (APSB16-28) which covers a total of 35 CVEs . The security update resolves a critical vulnerability for Adobe Flash Player and for AIR it resolves a remote s...

Sep 14, 2016

Patch Tuesday: Microsoft Security Bulletin Summary For September 2016

Microsoft Microsoft Patch Tuesday September 2016 brings 14 Security Bulletins addressing a total of 50 vulnerabilities. Seven Security Bulletins are rated as Critical and Seven are rated as Important. A vulnerability management solution can help deal with these vulnerabilities.

Sep 14, 2016

SecPod Saner Solution 2.2 – Release Notes

The main highlight of this release is the extension of our features to various Linux flavors such as CentOS, RHEL, Amazon Linux, Fedora, Ubuntu, and other Debian and RPM-based systems.

Aug 31, 2016

OpenSSH Crypt CPU Consumption

OpenSSH is a free suite of connectivity tools, aka OpenBSD Secure Shell, which provides secure encryption for remote login and file transfer between two hosts over a network. A Vulnerability Management tool can resolve the attacks on OpenSSH Vulnerabilities (CVE-2016-6515).

Aug 23, 2016

Defeat CryptoLocker Ransomware: Make sure your Data is not taken Hostage

One of the major and serious threats on the internet today is malicious software, often called Malware. Malware, a short form of malicious software, is any software that disrupts computer operations, gathers sensitive information, gains access to private computer systems, or displays irrelevant adve...

Aug 17, 2016

Adobe Security Updates for August 2016

Aug 11, 2016

Patch Tuesday: Microsoft Security Bulletin Summary For August 2016

Microsoft August 2016 Patch Tuesday brings 9 Security Bulletins addressing a total of 34 vulnerabilities. Five Security Bulletins are rated as Critical and remaining Four are rated as Important.

Aug 10, 2016

Saner Solution In Air Gap Network

Understanding Saner Solution

Jul 25, 2016

Adobe Security Updates for July 2016

Jul 13, 2016

ImageMagick Multiple Vulnerabilities

ImageMagick is an open-source software suite that can be used to create, edit and display bitmap images from the command line or a graphical interface. It can read, convert and write images in a large variety of formats, including PNG, JPEG, JPEG-2000, GIF, TIFF, DPX, EXR, WebP, Postscript, PDF, and...

Jun 19, 2016

Adobe Security Updates for June 2016

Jun 15, 2016

Same Origin Method Execution (SOME) Vulnerability

A new vulnerability has been discovered by Ben Hayak, a researcher at Trustwave, at Black Hat Europe in Amsterdam, that can gain access into your private cloud and steal information like private photos, video albums, etc., just by clicking on a malicious link. This attack happens before the user rea...

May 31, 2016

SecPod Saner 2.1 – Release Notes

SecPod Saner 2.1 provides exciting new features and bug fixes. Features include much more robust reporting, automated alerts, threat visualization, and co-branding support for managed service providers. Administrators have a refurbished dashboard, which is fast and convenient. Quick links on the das...

May 30, 2016

Healthcare’s Fight Against Ransomware

May 30, 2016

Healthcare Industry Security Challenges: Mitigating Risks Impacting Endpoint Devices

May 23, 2016

Protecting Endpoints Against Advanced Persistent Threats

May 12, 2016

Adobe Security Updates for May 2016

May 11, 2016

Patching: Overseeing The Hurdle

Patch fatigue is a term that’s buzzing amongst IT managers due to the devastating number of patches enterprises need to keep their environment safe and updated.

May 02, 2016

DROWN Vulnerability : Breaking TLS using SSLv2

OpenSSL is an open source application which contains implementation of SSL (Secure Sockets Layer) and TLS (Transport Layer Security) protocols. libcrypto and libssl are 2 primary libraries of OpenSSL.

Apr 28, 2016

PowerWare Ransomware – The New Fileless Ransomware

Apr 26, 2016

How Much Do You Know About Ransomware?

Apr 18, 2016

The Need for Continuous Monitoring and Incident Response

Apr 18, 2016

KeRanger: Mac’s First Ransomware Hit

Ransomware has been continuously evading the security industry. And now they have hit the Mac world too. Mac OS X was hit recently with ransomware for the very first time and it’s the first malware, keranger ransomware which is digitally signed with a valid Mac Developer ID and distributed via softw...

Apr 13, 2016

Adobe Security Hotfix for April 2016

Adobe has released critical security updates for RoboHelp server 9, Creative Cloud desktop application, and Flash Player, which covers a total of 26 CVE’s. The Adobe security hotfix for RoboHelp Server 9 for Windows resolves a critical vulnerability. The security update for the Creative Cloud Deskto...

Apr 13, 2016

Endpoint Detection and Response: The Forthcoming of Incident Response and Cybersecurity

Data breach responders work to recognize the source of the breach, use knowledge and technique to prevent/ fix a breach. But the data breach analogy ends there. A data breach responder cannot assure that another breach will not happen, as the possibility of the occurrence of a breach exists. To ensu...

Mar 29, 2016

2016 PCI Sunrise: PCI DSS 3.2

Mar 29, 2016

Is “Prevention, Detection and Response” Uproar in the Information Security Industry?

It is ideally after a post attack scenario when the blame game starts as to who is to be held responsible.  Attacks sometimes serves as a reminder for organizations to focus on security needs rather than considering it an integral part, which is the typical mindset of business managers.

Mar 28, 2016

Oracle releases emergency Java security update

Mar 28, 2016

Badlock : A Critical Samba Vulnerability

A critical vulnerability found in Samba which affects all Windows platforms, termed as badlock. It will be patched on April 12, 2016. This is called samba badlock vulnerability. A vulnerability management tool can mitigate this vulnerability.

Mar 23, 2016

MongoDB – Merging Data into an Existing Document

The world is huMONGOous, as is the amount of data we possess.

Mar 21, 2016

Combating Patch Fatigue

Mar 21, 2016

Information and Communications Technologies (ICT) Strategic Partnership, An Overview

Partnerships and strategic alliances between technology vendors and Managed Service Providers (MSP) drive sales and bring success to technology firms and their partners. MSPs have played a significant role in taking a vendor’s product or service to the customers.

Mar 13, 2016

Adobe Security Updates for March 2016

Mar 09, 2016

Better Manageability and Operational Efficiency Through Saner’s Multi-Tenant Architecture

Multi-tenant architecture refers to the mode of operation wherein a single instance of a software application attends to multiple tenants. Each client is called a tenant. They may represent enterprises that gained access to the multi-tenant application or the multiple applications competing for intr...

Mar 08, 2016

The Worst Data Security Breaches Till 2015

Mar 02, 2016

Critical bug in glibc affecting millions of Linux applications

Feb 17, 2016

Adobe Security Updates for February 2016

Feb 11, 2016

Corporate Espionage – What Is It and Why Should We Be Worried

Corporate Espionage is the practice of stealing and unauthorized revealing of corporate data to other companies, government or individuals.

Feb 07, 2016

CVE-2016-0728 – Linux Kernel Flaw

CVE-2016-0728 is the latest zero-day flaw in the Linux kernel which affects millions of users across the world. The Linux Kernel vulnerability is there for several years and discovered only recently. This flaw exists in all the Linux kernel versions 3.8 and later. CVE-2016-0728 is basically a memory...

Feb 02, 2016

Improving Security Through Best Practice for Businesses

Jan 31, 2016

MSSPs Take on Outsourced Security Challenge

The increased cost and complexity of securing the business IT infrastructure has opened the door for managed security service providers (MSSPs). In particular, small and medium businesses (SMBs) generally don’t have the security experience or resources to adequately protect their business from today...

Jan 21, 2016

SMBs – Antivirus Just Not Enough

Small and medium size businesses mainly known as SMBs are focused towards growing. Spending on security software is not one of their priorities. But just like every other business, protection of their data and systems are equally important. The perception that since the business is small all they’ll...

Jan 12, 2016

Patch Tuesday: Microsoft Security Bulletin Summary for January 2016

Jan 12, 2016

Security Predictions – What’s In Store For 2016?

2016 Security Predictions

Jan 10, 2016

5 Endpoint Security Myths

5 Endpoint Security Myths

Dec 28, 2015

Adobe releases emergency security patch for Flash Player

Dec 28, 2015

Microsoft Emergency Patch Update for Window

Microsoft has released an emergency patch update for all versions of Windows. This security update is rated Critical for all supported releases of Microsoft Windows. The patch addresses the CVE-2015-2426 which permits Remote Code Execution and allows hackers to take complete control of the attacked ...

Jul 21, 2015

ClipBucket 2.7.0.5 Multiple Stored Cross-site Scripting Vulnerability

SecPod Research Team member (Deependra Bapna) has found Multiple Stored Cross-site. Scripting Vulnerabilities(CVE-2015-4673) in ClipBucket. The vulnerabilities are due to improper validation of various parameters in various pages. This may allow an attacker to steal cookie-based authentication crede...

Jun 17, 2015

CVE-2015-2808 : Bar Mitzvah Attack in RC4

Bar Mitzvah Attack, a critical vulnerability discovered in Rivest Cipher 4 software stream cipher. A vulnerability management tool can detect this attack. In cryptography, RC4 is one of the most used software-based stream ciphers in the world. Proper protocols such as Transport Layer Security (TLS) ...

Jun 17, 2015

WordPress HTML5 MP3 Player with Playlist plugin XSS and SQL Injection Vulnerabilities

SecPod Research Team member (Thanga Prakash) has found Multiple Cross-site Scripting Vulnerabilities and SQL injection vulnerability in WordPress HTML5 MP3 Player with Playlist plugin. The vulnerability is caused by improper validation of various parameters in various pages. This may allow an attack...

Jun 15, 2015

ManageEngine Firewall Analyzer 8.3 Reflected Cross-site Scripting Vulnerability

SecPod Research Team member (Thanga Prakash) has found Multiple Reflected Cross-site

Jun 11, 2015

18 year old unpatched vulnerability returns to haunt Microsoft Windows

A critical bug dubbed Redirect to SMB has been discovered which is known to affect all devices running any version of Windows, including Windows 10. The as-yet unpatched flaw in Windows leaks username and password details to remote attackers, and was first reported to Microsoft way back in 1997.

Apr 15, 2015

Patch Tuesday: Microsoft Security Bulletin Summary for April 2015

This April another big update from Microsoft, which includes 11 security bulletins addressing a total of 26 vulnerabilities. The high priority fix is for Microsoft Office addressing 5 vulnerabilities, Windows HTTP protocol stack (HTTP.sys) and Internet Explorer addressing 10 vulnerabilities.

Apr 14, 2015

Dotclear CMS Multiple Stored XSS Vulnerabilities

SecPod Research Team member (Shakeel Bhat) has found Multiple Stored Cross-Site Scripting Vulnerabilities in Dotclear CMS. The vulnerability is caused by improper validation of various parameters in various pages. This may allow an attacker to steal cookie-based authentication credentials, compromis...

Apr 13, 2015

My experience at Black Hat Asia 2015

With all the frightening stories of hackers at Black Hat, I stepped into not-just-yet-another-conference in Singapore. Situated at the plush location of the island country, Marina Bay Sands catered to one of the best security conference of this calibre. All renowned and well-informed security enthus...

Apr 01, 2015

FREAK creeps into Windows

In our previous blog post, we promised to keep you informed if FREAK (Factoring attack on RSA-EXPORT Keys) vulnerability affects Windows applications. As of today, it is confirmed that FREAK is affecting all supported versions of Microsoft Windows, making the flaw more dangerous than anticipated. Th...

Mar 08, 2015

FREAK Attack?

Another potentially dangerous vulnerability called FREAK (Factoring Attack on RSA-EXPORT Keys) is being true to its name and is freaking out all Android and Apple device users. This SSL/TLS vulnerability has over the years exposed millions of Android and Apple devices to attacks when they visit supp...

Mar 04, 2015

Key findings of CISCO ASR 2015

2015 CISCO Annual Security Report feels like a déjà vu. After all the song and dance, there are no surprises. Security has been and will always continue to be a people centric problem. People have always been used to gain access and continue to be unwitting participants.

Feb 02, 2015

Vulnerability Alert : GHOST Vulnerability

A highly critical vulnerability has been found in glibc, the GNU C library, which affects all Linux systems on glibc version 2.2 dating back to the year 2000. The vulnerability, with CVE-2015-0235, has already been nicknamed GHOST because of its relation to the _gethostbyname function. Read More.

Jan 27, 2015

CVE-2015-0235: GHOST in the GNU C Library

Jan 27, 2015

CVE-2014-6271: Bourne Again Shell (BASH) Remote Command Execution Vulnerability

Sep 24, 2014

CVE-2014-0515: Adobe Flash Player Zero-Day vulnerability

Apr 28, 2014

Patch Tuesday: Microsoft Security Bulletin Summary for April 2014

Apr 08, 2014

CVE-2014-1761: Zero-day vulnerability in Microsoft Word

A zero-day vulnerability (CVE-2014-1761) in Microsoft Word is being exploited in the wild, which was discovered by the Google security team. A good vulnerability management software can prevent these attacks.

Mar 25, 2014

BarracudaDrive Multiple XSS Vulnerabilities

SecPod Research Team member (Shakeel Bhat) has found Multiple Cross-Site Scripting Vulnerability in BarracudaDrive. The vulnerability is caused by improper validation of various parameter in various pages. This may allow an attacker to steal cookie-based authentication credentials, compromise the ap...

Mar 24, 2014

Metasploit Module: Fitnesse Wiki Remote Command Execution

SecPod Research Team member (Veerendra G.G) wrote Metasploit module for Fitnesse Wiki Remote Command Execution Vulnerability.

Mar 24, 2014

Microsoft Security Bulletin Summary for March 2014

Mar 10, 2014

CVE-2014-2526: BarracudaDrive Multiple XSS Vulnerabilities

SecPod Research Team member (Prabhu S Angadi) has found Multiple Cross-Site Scripting Vulnerability in BarracudaDrive. The vulnerability is caused by improper validation of various parameters in various pages. This may allow an attacker to steal cookie-based authentication credentials, compromise th...

Mar 06, 2014

CVE-2014-0322: Microsoft Internet Explorer 0-day Vulnerability.

A use-after-free vulnerability is present in Microsoft Internet Explorer 10 ( CVE-2014-0322 ), which allows remote attackers to execute arbitrary code.

Feb 26, 2014

CVE-2013-5400: Analysis Of Authentication Bypass Vulnerability in IBM Platform Symphony

IBM Platform Symphony Developer Edition is a free software to develop and test High-performance computing (HPC) and Grid Computing SDK, which pool out your technical computing resources to run big data and/or compute-intensive problems. CVE-2013-5400 is an authentication bypass vulnerability in IBM ...

Feb 23, 2014

CVE-2014-0502 : New Adobe Flash Player Zero-Day vulnerability

Feb 23, 2014

Microsoft Security Bulletin Summary for February 2014

thirty-one individual vulnerabilities. Four Bulletins are classified as Critical and three as important. Using a vulnerability scanning tool.

Feb 11, 2014

CVE-2013-7260: RealNetworks RealPlayer Stack-Based Buffer Overflow

RealPlayer is vulnerable to multiple stack-based buffer overflow vulnerabilities (CVE-2013-7260). This flaw allows attackers to execute arbitrary code and take complete control of the system remotely. Affected versions of RealPlayer are before 17.0.4.61 on Windows systems. This flaw can be mitigated...

Feb 10, 2014

CVE-2014-0497 : Adobe releases critical security patch for Flash Player

Feb 05, 2014

Xml eXternal Entity (XXE) Attack

XXE attack is an attack on an application that parses XML input from untrusted sources using an incorrectly configured XML parser. A Vulnerability Management Software can stop these attacks.

Jan 11, 2014

Exploit Kits: Cybercriminal’s ultimate weapon

Exploit kits are automated malicious software programs which target client-side application vulnerabilities like Web Browsers, Add-ons, Adobe Flash Player, Adobe Reader, Java Runtime Environment, etc. Therefore, Vulnerability Management Software can help you prevent these.