News

usd PCI Best Practice Workshop Offers an Opportunity for Exchange on PCI DSS v4.0

Apr 12, 2022 | News, Events & Community, PCI

On March 31, 2022, the PCI Security Standards Council (PCI SSC) published the long-awaited update of the standard, the PCI DSS v4.0, giving many...

Extensive Update: PCI DSS v4.0 is Here

Apr 11, 2022 | News, PCI

The Payment Card Industry Security Standards Council (PCI SSC) released version 4.0 of the PCI DSS on March 31, 2022. The full version of the new...

Next Level Reporting: Our New Test Report Ensures Transparent and Comprehensible Pentest Results

Apr 8, 2022 | News, Pentests & Security Analyses

A meaningful result is an essential part of a thorough security analysis. The majority of pentest result reports focus on the identified...

Security Advisory on Micro Focus HPE Operations Agent 12.04.006

Apr 1, 2022 | News, Security Advisories

Our HeroLab analysts have performed a security analysis on the product HPE Operations Agent by Micro Focus. They identified an XXE (XML eXternal...

Software Security: Dynamic Code Analysis and Vulnerability Management

Feb 23, 2022 | News

In practice, it is not an easy task for manufacturers to continuously integrate a strong security mindset into complex software projects. In our...

Security Advisory for Thruk Monitoring < v2.46.3

Feb 22, 2022 | Security Advisories, News

Our analysts at usd HeroLab have examined the Thruk monitoring web interface for e.g. Naemon, Nagios or Icinga during their security analysis. A...

PCI DSS worldwide: usd AG one of 17 QSA companies with global accreditation

Feb 17, 2022 | News, Life@usd, PCI

usd AG has been awarded the PCI DSS Qualified Security Assessor (QSA) license for Canada and Latin America by the PCI Security Standards Council...

Security Advisory for Grafana < v8.1.3

Feb 2, 2022 | News, Security Advisories

Our analysts at usd HeroLab discovered security vulnerabilities in Grafana's input validation while performing their pentests. Through these...

Software Security: Static Code Analysis

Jan 31, 2022 | News

In practice, it is not an easy task for manufacturers to continuously integrate a strong security mindset into complex software projects. In our...

Software Security: Requirement and Threat Analysis

Jan 11, 2022 | News

In practice, it is not an easy task for manufacturers to continuously integrate a strong security mindset into complex software projects. In our...

Security Advisory for VMware Workspace ONE Intelligent Hub

Jan 6, 2022 | News, Security Advisories

Our usd HeroLab pentesters have identified a vulnerability in VMware Workspace ONE Intelligent Hub software while conducting their security...

Security Advisory 11/2021

Dec 1, 2021 | Security Advisories, News

The usd HeroLabs pentesters have identified vulnerabilities in various products of well-known manufacturers while conducting their security...

usd PCI Best Practice Workshop Offers an Opportunity for Exchange on PCI DSS v4.0

Extensive Update: PCI DSS v4.0 is Here

Next Level Reporting: Our New Test Report Ensures Transparent and Comprehensible Pentest Results

Security Advisory on Micro Focus HPE Operations Agent 12.04.006

Software Security: Dynamic Code Analysis and Vulnerability Management

Security Advisory for Thruk Monitoring < v2.46.3

PCI DSS worldwide: usd AG one of 17 QSA companies with global accreditation

Security Advisory for Grafana < v8.1.3

Software Security: Static Code Analysis

Software Security: Requirement and Threat Analysis

Security Advisory for VMware Workspace ONE Intelligent Hub

Security Advisory 11/2021

usd AG

News

Top 3 Vulnerabilities in Fat Client Pentests

DORA Deep Dive: Threat-Led Penetration Testing (TLPT)

Security Advisory on Gambio

Follow Us