SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
KeRanger: Mac’s First Ransomware Hit
Ransomware has been continuously evading the security industry. And now they have hit the Mac world too. Mac OS X was hit recently with ransomware for the very first time and it’s the first malware, keranger ransomware which is digitally signed with a valid Mac Developer ID and distributed via softw...
CVE Research
Adobe Security Hotfix for April 2016
Adobe has released critical security updates for RoboHelp server 9, Creative Cloud desktop application, and Flash Player, which covers a total of 26 CVE’s. The Adobe security hotfix for RoboHelp Server 9 for Windows resolves a critical vulnerability. The security update for the Creative Cloud Deskto...
CVE Research
Endpoint Detection and Response: The Forthcoming of Incident Response and Cybersecurity
Data breach responders work to recognize the source of the breach, use knowledge and technique to prevent/ fix a breach. But the data breach analogy ends there. A data breach responder cannot assure that another breach will not happen, as the possibility of the occurrence of a breach exists. To ensu...
CVE Research
Badlock : A Critical Samba Vulnerability
A critical vulnerability found in Samba which affects all Windows platforms, termed as badlock. It will be patched on April 12, 2016. This is called samba badlock vulnerability. A vulnerability management tool can mitigate this vulnerability.
CVE Research
CVE-2016-0728 – Linux Kernel Flaw
CVE-2016-0728 is the latest zero-day flaw in the Linux kernel which affects millions of users across the world. The Linux Kernel vulnerability is there for several years and discovered only recently. This flaw exists in all the Linux kernel versions 3.8 and later. CVE-2016-0728 is basically a memory...
CVE Research
MSSPs Take on Outsourced Security Challenge
The increased cost and complexity of securing the business IT infrastructure has opened the door for managed security service providers (MSSPs). In particular, small and medium businesses (SMBs) generally don’t have the security experience or resources to adequately protect their business from today...