Shakeel Bhat, Author at SecPod Blog

Discourse Patches Critical Remote Code Execution Vulnerability

Post author:Shakeel Bhat
Post published:October 26, 2021
Post category:Endpoint Management Endpoint Security and Management Featured Articles IT Asset Management
Reading time:3 mins read

Discourse is one of the most popular open-source community forums and mailing list management software applications. A critical code execution…

Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Post author:Shakeel Bhat
Post published:September 21, 2021
Post category:Endpoint Security and Management Security Research and Intelligence
Reading time:6 mins read

Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments…

Netgear Patches High Severity Flaws In Its Smart Switches

Post author:Shakeel Bhat
Post published:September 8, 2021
Post category:Category(Default) - Do Not Use This Endpoint Security and Management Security Research and Intelligence
Reading time:5 mins read

Netgear is a multinational computer networking company that produces networking hardware for consumers, businesses, and service providers. Netgear identified three…

Microsoft Exchange Servers Actively Under Exploitation Via ProxyShell Vulnerabilities

Post author:Shakeel Bhat
Post published:August 24, 2021
Post category:Endpoint Security and Management Patch Management Security Research and Intelligence Vulnerability Management
Reading time:5 mins read

Microsoft Exchange Servers are being actively exploited in the wild by various threat actors. Attackers are looking for vulnerable instances…

Apple Patches Another High Severity Zero-Day Flaw Exploited in the Wild

Post author:Shakeel Bhat
Post published:July 27, 2021
Post category:Patch Management SCAP Feed Security Research and Intelligence Vulnerability Management
Reading time:4 mins read

Apple has released an urgent update to address a critical zero-day vulnerability that is being exploited in the wild. The …

Kaseya’s Virtual System/Server Administrator (VSA) Zero-Day Under Active Exploitation By REvil Ransomware

Post author:Shakeel Bhat
Post published:July 7, 2021
Post category:Featured Articles Security Research and Intelligence
Reading time:10 mins read

Kaseya is a US-based organization that provides IT and security management solutions for managed service providers (MSPs) and small to…

Pulse Connect Secure Zero-Day Vulnerability Under Active Exploitation (CVE-2021-22893)

Post author:Shakeel Bhat
Post published:April 22, 2021
Post category:Security Research and Intelligence
Reading time:4 mins read

Pulse Secure has released an advisory on April 19 about a Critical Zero-day Authentication Bypass vulnerability identified as CVE-2021-22893 in Pulse…

WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

Post author:Shakeel Bhat
Post published:December 18, 2020
Post category:Security Research and Intelligence
Reading time:2 mins read

Contact Form 7 is a popular WordPress plugin that is used to create, customize, and manage multiple contact forms on…

Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

Post author:Shakeel Bhat
Post published:December 10, 2020
Post category:Security Research and Intelligence
Reading time:4 mins read

Multiple critical command injection vulnerabilities have been identified in the D-Link DSR VPN router family products. These vulnerabilities are identified…