You are here:
Here you will find reports, interviews and news. We give you an insight into our work and report on 0day (zero-day) vulnerabilities discovered by our staff on customer projects or in their research time.
Page 8 of 13
Compass analysts identified an XXE vulnerability in Apache Olingo OData 4.0.
Fabio Poloni identified an XSS vulnerability in totemodata®.
"Heime & Spitäler" is the leading magazine for decision-makers at Swiss homes and hospitals. In the current edition, Compass Security analyst Fabio…
Silas Bärtsch identified a vulnerability in VeloCloud™ (VMware), that allows a VeloCloud standard admin user to access user information of other…
Cyber attacks on organizations can be categorized into four different groups. Ivan Bütler tells at Zürichsee-Zeitung what these are.
Emanuele Barbeno and Lukasz D. have found a method to bypass the Anti-SQL injection filter in Alibaba Druid.
Thierry Viaccoz has identified an XML External Entity (XXE) vulnerability in "The Scheduler" plugin for Jira.
Sylvain Heiniger has identified a "Cleartext Storage of Sensitive Information" vulnerability in the MobileIron application Email+.
Michael Fisler and Felix Aeppli have identified vulnerabilities in the Universal Automation Center (UAC).
The Cyber Security Challenge Germany (CSCG) was once again looking for young talents to make Germany's future safer. The online qualification has…
The latest magazine of "Die Mobliliar" focusses on artificial intelligence as well as digitalization - and take a look at cyber crime.
The Furtwangen University of Applied Sciences offered a hacking workshop for the first time in 2008. What was a novelty at that time is now firmly…
Renovate is an OSS CLI/bot that updates your software dependencies automatically. It is usually integrated into the CI/CD process and runs on a…
This little-known but increasingly prevalent attack vector exploits vulnerabilities in the Device Code Flow authentication process in Microsoft Entra…
