News
Focus on Cyber Security: The ISF Grey Chapter Spring Meeting 2025 at usd AG
Two days, various perspectives, one common mission: Exchange and networking in the cyber security community. On 13 and 14 March 2025, usd AG hosted...
More Protection Against E-Skimming - PCI Council Publishes New Guide to PCI DSS Requirements 6.4.3 and 11.6.1
The PCI Security Standards Council (PCI SSC) has published a new guide: “Payment Page Security and Preventing E-Skimming - Guidance for PCI DSS...
Top 3 Vulnerabilities in Mainframe Pentests
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose...
Our 3 Key Takeaways from the BaFin Workshop on the DORA Register of Information
More than 3,000 participants attended the two-hour online workshop hosted by the German Federal Financial Supervisory Authority (BaFin) on...
Security Advisory on Cubro
The pentest professionals at usd HeroLab examined Cubro EXA48200 during the execution of their projects. A vulnerability was discovered in the User...
Implementation of the NIS-2 Directive Has Been Postponed. What Is the Impact on the KRITIS Compliance Audit?
What's next for NIS-2? Due to the early elections in Germany, the parliamentary procedure for the NIS-2 implementation law NIS2UmsuCG could not be...
Top 3 Vulnerabilities in Pentests of Workstations and Company Notebooks
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant...
Identifying Security Vulnerabilities in Mobile Device Management: Audit and Pentest?
Mobile offices and working from home have become integral parts of today's business world. But as the flexibility increases, so do the risks for...
Top 3 Vulnerabilities in Cloud Pentests
During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to...
PCI Council Released Update of SAQ A: New Eligibility Criteria Replaces Future-dated Requirements
Last updated: 28 February, 2025 A few days ago, the PCI Security Standards Council (PCI SSC) announced important changes to SAQ A. Who is affected...
KRITIS Audits: BSI Specifies Maturity Levels for Verification Assessment
In January, the German Federal Office for Information Security (BSI) published the document „Reife- und Umsetzungsgradbewertung im Rahmen der...
PCI DSS worldwide: usd AG one of 17 QSA companies with global accreditation
usd AG has once again received all the necessary licenses from the PCI Security Standards Council (PCI SSC) as a PCI DSS Qualified Security Assessor...