On July 11th, 2013, Secunia announced that the company has become the very first vulnerability security alliance partner for the Microsoft Technology Center (MTC) Program. Secunia, already a member of the Microsoft System Center Alliance program, adds participation in the MTC as a means to work with Microsoft to create and drive joint initiatives and offerings and to help deliver a more complete customer solution.
Secunia has an interesting history. Originally just a reporting mechanism for known vulnerabilities, Secunia eventually developed a plug-in for System Center Configuration Manager that manages security updates from Microsoft. From one console, the Secunia plug-in provides more robust features than is included with ConfigMgr alone, but more importantly, provides patching capability for 3rd party (or non-Microsoft) patches. Per the Secunia Vulnerability Review from 2013, non-Microsoft applications present the greatest threat to the Enterprise, with 86% of the 1,137 vulnerabilities discovered in the Top 50 programs on private PCs in 2012.
The Vulnerability Review was recently highlighted during Microsoft’s Worldwide Partner Conference (WPC) in Houston, TX:
Secunia has also provided a whitepaper, detailing the plug-in. You can download there from this link: Whitepaper – Non-MS Patching with SCCM