Secunia supports and contributes to the community in several ways. Secunia has always believed that reliable vulnerability intelligence and tools to aid identifying and fixing vulnerabilities should be freely available for consumers to ensure that users, who care about their online privacy and security, can Stay Secure. In fact, we believe that the software vendors themselves should take responsibility for the security of their programs on end-user systems.
However, only few vendors address vulnerabilities in a proper way and help users get updated and Stay Secure. End-users (whether private individuals or businesses) are otherwise left largely alone, and this is why Secunia strives to be your first choice for independent and reliable vulnerability intelligence.
Secunia is currently the only company to offer an enterprise grade authenticated vulnerability scanner: the Secunia PSI, free-of-charge to consumers.
The Secunia PSI utilizes the Secunia Vulnerability Intelligence, which is the foundation of the commercial offerings from Secunia. An abstract of the full Secunia Vulnerability Intelligence is also available in the public Secunia Advisory Database. The public Secunia Advisory Database contains sufficient information for researchers, security enthusiasts, and consumers to lookup individual products and vulnerabilities and assess, whether they need to take any actions to secure their systems or whether a given vulnerability has already been discovered.
NOTE: Secunia does offer full access to the Secunia Vulnerability Intelligence free-of-charge on a case-by-case basis to certain non-profit entities and individuals in the security eco-system.
Conducting vulnerability research is absolutely essential to ensure that software vendors and programmers fix the vulnerabilities in their software before it is being exploited by criminals. Secunia is not only dedicated to reporting vulnerabilities discovered by others, but is also deeply committed to discovering new vulnerabilities, focusing on popular, widely used enterprise and end-user software used by the community. When discovered, these vulnerabilities are always reported to the vendors with whom we work to get the vulnerabilities fixed according to our responsible disclosure policy. You can track the vulnerabilities discovered by Secunia on the Secunia Research archive page and read more about the Secunia Research team here.
Secunia hosts a very active forum, which is used to discuss vulnerabilities, software, as well as Secunia's consumer and corporate products. There are no limits to what can be discussed, as long as it is related to IT-security in general. Secunia support staff frequently participates in threads to help with issues related to updating software and how to use and interpret the results of the Secunia PSI. Secunia Research will also post information about vulnerabilities discovered by Secunia in the forum.
|IBM Lotus Protector for Mail Security ISC BIND Delegation Handling Denial of Service Vulnerability|
|IBM InfoSphere Master Data Management Products Dojo Toolkit Cross-Site Scripting Vulnerabilities|
|SUSE update for xorg-x11-Xvnc|