SecPod Blog - Latest News and Security Intelligence

Staying Ahead of Attackers

Run smooth and secure IT operations with the latest security intelligence about new vulnerabilities and threats, best practices, and recommended strategies.

LATEST UPDATE

Atlassian Addresses Two Critical Vulnerabilities in Atlassian Crowd and Bitbucket Products. Patch Now!

SonaliNovember 21, 2022

Atlassian released patches for two critical vulnerabilities affecting Bitbucket Server, Data Center, and Crowd products. These vulnerabilities are tracked as CVE-2022-43781 (Command Injection) and CVE-2022-43782 (Improper Authentication). Technical Details CVE-2022-43781 – A Command Injection vulnerability is addressed in Atlassian Bitbucket Server and Data Center in environment variables. An attacker with permission to...

Run commands on Windows system remotely using Winexe

Ipswitch TFTP Server Directory Traversal Vulnerability

Alert! Zerologon: Your Windows Domain Controller Can’t Handle Zero Properly (CVE-2020-1472)

SECURITY INTELLIGENCE FROM SECPOD LABS

Two High Severity Vulnerabilities are Addressed in F5 BIG-IP and BIG-IQ Devices. Patch Now!

Tanish MahajanNovember 19, 2022

VMware addresses three critical flaws in Workspace ONE!

Balaji MelagiriNovember 10, 2022

Microsoft November 2022 Patch Tuesday Addresses 65 Vulnerabilities including 6 Zero-Day

Gururaj OtageriNovember 10, 2022

FEATURED ARTICLES

A Good Defense is the Best Offense: Why is Continuous Vulnerability Management Essential?

Priyanka VHNovember 15, 2022

Cyberattack surfaces are constantly evolving with an abundance of vulnerabilities. According to SecPod’s security research, the second quarter of 2022 saw a total of 5478 vulnerabilities with 7 zero days. With these enormous amounts of vulnerabilities, it is impossible for IT security admins to continuously monitor the vulnerabilities and get...