News
Security analyses and pentests: usd AG holds guest lecture at Johannes Gutenberg University Mainz
On July 17, 2023, Matthias Göhring, Head of usd HeroLab, held a guest lecture on the topic of technical security analyses and pentesting at the...
usd Hacking Events: #CTF #EthicalHacking #PentestInsights
This summer, usd Hackertag took place again in Berlin. Besides chilled mate and snacks, our Pentest Professionals from the usd HeroLab shared a lot...
Responsible Disclosure: More Security for SAP Landscapes
During SAP assessments, Nicolas Schickert, in charge of usd SAP-Pentests, discovered so-far unknown vulnerabilities in SAP products. These so-called...
Mainz University of Applied Sciences and usd AG offer again IT Security Lecture
During winter semester 22/23, the lecture "Selected Aspects of IT Security" ("Ausgewählte Aspekte der IT-Sicherheit“) was held in coorporation with...
Security Advisory for MultiTech Conduit AP MTCAP2-L4E1
The analysts at usd HeroLab examined the LoRaWAN access point MultiTech Conduit AP MTCAP2-L4E1 while conducting their security analyses....
More Security in Healthcare: POLAVIS GmbH Submits Web Application for Pentest by usd AG
POLAVIS develops and implements digital patient portals and innovative eHealth solutions for hospitals. This supports the networking of healthcare...
Critical Foswiki Vulnerablities: A Logic Error Turned Remote Code Execution
Our Pentest Professionals at usd HeroLab love open source software as much as anyone. However, it should be secure as well. This is why Christian...
Digital Operational Resilience Act (DORA): The 7 Most Important Questions
The Digital Operational Resilience Act (DORA) is a major regulatory development that aims to improve the operational resilience of digital financial...
Security Advisories for Foswiki
The analysts at usd HeroLab examined the Foswiki application while conducting their security analyses. They identified vulnerabilities in...
BaFin Publishes 7th Update of MaRisk
Yesterday, an important regulatory circular reached all credit and financial services institutions in Germany: The German Federal Financial...
Internal audits according to ISO 27001 - Insights, tips and frequently asked questions
For many companies, preparing for ISO/IEC 27001:2022 (ISO 27001) certification is a major effort. But all the information security management system...
Getting Ready for BlackHat 2023 and DEF CON 31
We are pleased to present "FlowMate" and "SNC Scan", two of our in-house developments, at BlackHat 2023 and DEF CON 31, two of the largest events...