At the ISF Central European Conference in Brussels, security professionals from across Europe will gather to discuss current threats, regulatory...
ISF Central European Conference | Brussels | 18 – 19 June
read more
Pentest
Pentest of AI/LLM Systems: How to Secure Enterprise AI Systems
Artificial intelligence is already widely used across many organizations. Chatbots access internal knowledge, AI supports decision‑making or...
Security Advisories on Entra ID and Tenable Nessus Manager
The pentest professionals at usd HeroLab identified a vulnerability during a cloud pentest that allows the circumvention of conditional access...
Deep Dive Into Red Teaming: Physical Pentesting. How Resilient Is Your Organization?
As a security manager, you protect your systems and processes every day and invest in awareness training. However, experience shows that physical...
Security Advisories on Kofax Communication Server and ArcGIS Arcade
The pentest professionals at usd HeroLab examined Kofax Communication Server (KCS) and ArcGIS scripting language Arcade as part...
OWASP “Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling v1.0”: How to Choose the Right Partner
A few days ago, OWASP published the first version of the Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling v1.0. The new guide...
Strengthening Platform Security: NFON Partners with usd AG for Comprehensive Pentesting
NFON AG stands for innovative, AI-powered business communication and is a trusted partner throughout Europe. Its mission: to offer customers secure,...
Security Advisories on PRTG Network Monitor
The pentest professionals at usd HeroLab examined the PRTG Network Monitor web application as part of web application pentests and identified...
Assessing the Security of AI Chatbots: Pentests Uncover Critical Vulnerabilities in LLM Platforms
Artificial intelligence (AI) is transforming the business world. Large language model (LLM) platforms in particular are increasingly finding their...
DORA Deep Dive: Threat-Led Penetration Testing (TLPT)
Since the publication of the original blog post in May 2024, the final version of the RTS for TLPT has been released. The blog post has been updated...
OWASP Top 10 2025 Released: Our Insights and Contribution
The OWASP Top 10 is considered the global standard for web application security. It highlights the main risks and indicates where companies should...
From Windows 10 to 11: Pentest Protects Against Vulnerabilities After Migration
On October 14, 2025, Microsoft stopped supporting Windows 10, forcing many companies to switch to Windows 11. This not only offers new features but...