News
usd PCI Best Practice Workshop 2021
For many years, the usd PCI Best Practice Workshop has brought together responsible PCI personnel from companies of all sizes and from all...
Security Advisory 09/2021
The usd HeroLabs pentesters have identified vulnerabilites in the products of the manufacturers Matrix42 and Themeco while conducting their security...
3 Reasons for a Cloud Security Audit
Outsourcing applications and data to the cloud brings significant benefits for companies, but at the same time also new challenges for the...
usd HeroLab Top 5 Vulnerabilities 2020: SMB 1.0 & SMB Signing
During penetration tests our security analysts repeatedly uncover gateways in IT systems and applications that pose significant risks to corporate...
Security Advisory 08/2021
The usd HeroLabs pentesters have identified a vulnerability in the products of the manufacturer TIBCO while conducting their security analyses....
Is Your Mainframe Protected against Hacker Attacks? Our Detailed Security Analysis Provides You with Answers
As complex and exceptionally powerful systems, mainframes significantly exceed the capacities of a typical PC or server. Particularly in industries...
“CST Academy enables me to bring knowledge to where it is needed.”
Three years ago today, the CST Academy conference space in Neu-Isenburg was officially inaugurated. This was an important milestone, because...
Tobias Neitzel presents open source tool at Black Hat USA 2021
On 5 August, Tobias Neitzel, Managing Consultant IT Security at usd HeroLab, will present his tool "remote-method-guesser: A Java RMI Vulnerability...
Security Advisory 07/2021
The usd HeroLab pentesters identified vulnerabilities in products from ManageEngine and Red Hat while conducting their security analyses. In close...
Chances and Risks of Single Sign-On Solutions
Single Sign-On (SSO) is an authentication method that allows users to log into multiple applications and websites using the same login data. Lauritz...
usd HeroLab Top 5 Vulnerabilities 2020: Transport Layer Security (TLS) 1.0
During penetration tests our security analysts repeatedly uncover gateways in IT systems and applications that pose significant risks to corporate...
usd AG Offers Assessment according to SWIFT Customer Security Controls Framework (CSCF)
SWIFT has become an integral part of international payment traffic. The Society for Worldwide Interbank Financial Telecommunication (SWIFT) is a...