News
women@usd. By and for Women in Cyber Security
You can read a lot about the lack of women in technical professions. At usd, we are very fortunate to have plenty of great female colleagues in our...
Top 3 Vulnerabilites in System Pentests
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to...
"DORA: How the Next Wave of Requirements Is Hitting the Payment Card Industry": usd Experts on Stage at the 2024 PCI SSC Europe Community Meeting
Christopher Kristes, Head of Security Audits & PCI and member of the Executive Board at usd AG, and Dr. Christian Schwartz, Head of InfoSec in...
DORA Deep Dive: Reporting of ICT-Related Incidents
The Digital Operational Resilience Act (DORA) requires major ICT-related incidents to be reported to the German Federal Financial Supervisory...
search_vulns - Vulnerability Search Made Easy: The Story Behind the Community Tool
Obtaining a good overview of all known vulnerabilities for software products is often more difficult and complex than one might initially assume....
SWIFT CSCFv2025 - The Three Most Important Questions About the Update
Users of the SWIFT network are required to demonstrate compliance with the mandatory security controls through an annual independent audit in...
From Unicode to Exploit: The Security Risks of Overlong UTF-8 Encodings
In the dynamic field of cybersecurity, it is often the obscure and long-forgotten vulnerabilities that pose a hidden threat to otherwise hardened...
KRITIS: These Sectors Are Required to Provide Proof of Compliance in 2025
According to Section 8a (1) BSIG, operators of critical infrastructures (KRITIS) in Germany are obliged to take appropriate organizational and...
When Pentest Planning Becomes a Game of Tetris - A Look behind the Scenes of an Extensive Pentest Project with HanseMerkur
In a world where security and efficiency must go hand in hand, our recent project with HanseMerkur Krankenversicherung AG shows how crucial good...
usd AG Re-Accredited Worldwide as an Approved Scanning Vendor (ASV)
On 20.08.2024, we once again received worldwide accreditation as an Approved Scanning Vendor (ASV) for the scanning services of our usd PCI Platform...
New Partner Contribution to Allianz für Cyber-Sicherheit: usd AG Continues Its Commitment to Germany-Wide Initiative
usd AG has been actively involved in the Allianz für Cyber-Sicherheit (ACS) since 2020 and this year again supports the Germany-wide initiative's...
Operating Kubernetes Securely: Attack Targets, Processes and Meaningful Testing
Kubernetes is an open source platform for automating the deployment, scaling and management of containerized applications. This has many advantages....