Approximately a quarter of our usd Heroes are female. Even though that is above the average for our industry, we are convinced that there is still...
News
Hacker Contest Winter Semester 2023/2024: 29 Students. 14 Vulnerabilities. 1 CVE. Countless Practical Insights.
Practical knowledge is often neglected during studies - but not for students at TU Darmstadt. In the winter semester, Matthias Göhring, Tobias...
Connect and Go: The usd OrangeBox Makes Preparing for Remote Pentests Easy
A penetration test or pentest provides answers to the question of whether attackers can penetrate your IT infrastructure. There are two ways in...
Top 3 Vulnerabilities in Mobile App Pentests
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to...
Security Advisories for SONIX and SAP
The pentest professionals at usd HeroLab examined SONIX Technology Webcam and SAP Fiori Sample Shop during their pentests. Our professionals...
PCI DSS v4.0: The Transition Phase Is Over. What Will Change for You?
On March 31, 2024, the previous version 3.2.1 of the Payment Card Industry Data Security Standard (PCI DSS) expired. While companies were able to...
PCI DSS v4.0: INFI Worksheet Discontinued
The Payment Card Industry Security Standards Council (PCI SSC) announced it is discontinuing the Items Noted for Improvement (INFI) Worksheet. INFI,...
The Surprising Complexity of Finding Known Vulnerabilities
IT security professionals need an efficient and reliable solution for identifying known vulnerabilities in a software product, given its name and...
Information Security in a Multinational Corporate Environment: VertiGIS Establishes Centrally Managed ISMS and Achieves ISO 27001 Certification
Especially in fast-growing industries, companies are faced with the challenge of adapting their information security to the constantly growing...
NIS-2 - Three Questions for our Experts on the New EU Directive
NIS-2: The new EU directive for cyber security is currently raising questions for security managers in countless companies: Are we affected? What...
Cloud Revolution in Regulated Industries: Opportunities, Challenges and Risks
As in all regulated industries, banks, insurance companies and capital management companies are undergoing a transformation through the increasing...
The Final Countdown: 1 Month to Go until PCI DSS v4.0 Becomes Mandatory
On March 31, 2022, the PCI Security Standards Council (PCI SSC) published version 4.0 of PCI DSS - the most comprehensive update of the security...