The Secunia Research team from Flexera is comprised of a number of security specialists, who besides testing, verifying, and validating public vulnerability reports, also conduct their own vulnerability research in various products. Since the inauguration of the Secunia Research team it has been our goal to be the most accurate and reliable source of vulnerability intelligence.
Being the world's best vulnerability intelligence source requires skilled and dedicated staff with a passion for vulnerabilities.
To reward our staff for their persistent efforts in verifying vulnerability reports and to ensure that they possess and hone their skills necessary to find vulnerabilities, we have awarded some staff dedicated time to conduct vulnerability research.
The Secunia Research team members spend some of their time researching various high-profile closed source and open source software using a variety of approaches, but focusing mainly on thorough code audits and Binary Analysis.
This allows them to sometimes discover hard-to-find vulnerabilities that are not normally found via e.g. fuzzing techniques and the approach has been effective. Members of the Secunia Research team have discovered critical vulnerabilities in many popular products from various vendors including: Microsoft, Symantec, IBM, Adobe, RealNetworks, Trend Micro, HP, Blue Coat, Samba, CA, Mozilla, and Apple.
Conducting vulnerability research is absolutely essential to ensure that software vendors and programmers fix the vulnerabilities in their software before it is being exploited by criminals. Flexera is dedicated to reporting vulnerabilities discovered by both others and by the Secunia Research team.
The Secunia Research Team is deeply committed to discovering new vulnerabilities, focusing on popular, widely used enterprise and end-user software used by the community. When discovered, these vulnerabilities are always reported to the vendors with whom we work to get the vulnerabilities fixed according to our responsible disclosure policy.
The Secunia Research blog provides an insight on Secunia Research’s opinions and views. It includes details on some of the vulnerabilities our team has analyzed and vulnerabilities discovered by our researchers.
The annual Flexera Vulnerability Review presents global data on the prevalence of vulnerabilities and the availability of patches, to map the security threats to IT infrastructures, and also explores vulnerabilities in the 50 most popular applications on private PCs.See the Vulnerability Review