SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
CVE Research
Microsoft February 2023 Patch Tuesday Addresses 77 Vulnerabilities Including 3 Zero-Day!
Microsoft has released February 2023 Patch Tuesday security updates, addressing 77 vulnerabilities. 9 are classified as critical as they allow the most severe type of vulnerability remote code execution, and 68 are classified as important. The products covered in the February security update include...
CVE Research
Dos and Don’ts of Software Vulnerability Management Process
Software vulnerability management process is a process of identifying, prioritizing, and remediating vulnerabilities and other security risks. Implementing this can help organizations prioritize active risks and minimize the attack surface.
CVE Research
Vulnerability Scanner: The complete picture
Any system connected to a network is open to vulnerabilities in the eyes of hackers. According to SecPod’s security research, in the year 2022 over 26,288 vulnerabilities were discovered. The surge in number is threatening increasing the overall risk exposure paving way for more cyber attacks. Undo...
CVE Research
Reinforce your mac Devices with SanerNow Patch Management
Hardening and patching mac endpoints are essential steps in securing a network against cyber-attacks. Although mac endpoints are known for their security, they were in the top 10 most affected operating systems in 2022, according to SecPod’s security research. Prevent these attacks by using a patch ...
CVE Research
How do you set up your Microsoft Office Patching for Continuous Update Mode?
With every passing day, every vendor seems to release many patches to their software application to fix vulnerabilities. But with so many patches and apps, it becomes cumbersome to keep them all up-to-date manually. Additionally, not patching apps poses a security risk to your organization too. Micr...
CVE Research
Overcoming the 5 Roadblocks of System Vulnerability Management
System vulnerability management is vital in maintaining the security posture of your organization. As your organization grows with new technology and innovation, a vulnerability management solution needs to evolve to protect you from a myriad of cyber-attacks.
CVE Research
5 Questions to Ask While Choosing a Network Vulnerability Scanner
The CISO and the sysadmin at the_Teckies were desperately looking for a network vulnerability scanner. Talks of a dangerous misconfiguration in JIRA were in the news, and it seemed to have escaped from their existing scanner. It is essential to have a vulnerability management software.
CVE Research
ESXiArgs Ransomware Actively Targeting Vulnerable Unpatched VMware ESXi Servers. Patch Now!
A new ESXiArgs ransomware is actively targeting VMware ESXi servers that are unpatched against a two-year-old remote code execution vulnerability known as CVE-2021-21974. The vulnerability originates from a heap overflow problem within the OpenSLP service, leaving it open to exploitation by attacker...
CVE Research
Top Cyber Attacks Due to Vulnerabilities in 2022!
Cybercrime has been steadily escalating as we move deeper into the digital age, and Cyberattacks in 2022 were no exception. Worldwide digital transformation of businesses and organizations in every sector has created a riskier cyber environment. And while many modern cloud implementations and databa...