Today we look at the three most common security-critical vulnerabilities that our analysts have identified in Active Directory Pentests (AD Pentests) in recent years.
News
Corporate Social Responsibility: usd Awarded EcoVadis Silver Medal Again in 2024
In 2024, usd AG was once again awarded the EcoVadis silver medal.
usd AG Member of PCI SSC GEAR 2024-2026
The PCI Security Standards Council (PCI SSC) has reappointed usd AG to the Global Executive Assessor Roundtable (GEAR).
Information Security in Third-Party Risk Management: How to Monitor Your TPRM Program
Companies often work with a large number of service providers in order to be able to concentrate on their core business or save costs. For this to...
DORA Requirements Become More Concrete: Further RTS and ITS Published
Last updated: 30 July, 2024 The Digital Operational Resilience Act (DORA) aims to strengthen digital resilience in the European financial sector. To...
Coffee Break with Pentesters: 5 Questions about Black Hat & DEF CON 2024
“Have you heard? We can present the CSTC at Black Hat again.” - This or something similar is how a chat at the coffee machine between Matthias...
Security Advisories on hugocms and Gitea
The pentest professionals at usd HeroLab examined hugocms and Gitea during their pentests. Thereby, several vulnerabilities were identified. The...
Anatomy Lesson from the Perspective of a Pentester - Guest Lecture at Johannes Gutenberg University Mainz
On July 15, 2024, Matthias Goehring, Head of usd HeroLab, was invited once again to give a guest lecture for the “IT Security” class by Prof. Dr....
Top 3 Vulnerabilities in Web Applications
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant...
PCI DSS v4.0.1: Are You Ready for the Future-dated Requirements?
With the publication of PCI DSS v4.0.1, at the latest, the requirements introduced with version 4.0 of the credit card data security standard are...
Information Security in the Financial Sector: How Frankfurter Sparkasse is Tackling the Mammoth Task
The digital transformation in the financial sector has created new areas of attack for cyber criminals and therefore significant risks for...
Security Advisory on AXIS Webcam
The pentest professionals at usd HeroLab examined the AXIS Webcam (P1364) during their pentests. Our professionals discovered a vulnerability...