our mission

We aim to make the digital world safer by reporting vulnerabilities we find in digital systems to the people who can fix them. We have a global reach, but do it Dutch style: open, honest, collaborative and for free.

Our statistics

Year # of cases # of vulnerable IPs notified
2020 14 57,809
2021 20 61,783
2022 2 8,381
Icon

Team

DIVD is a platform for security researchers to report vulnerabilities, supported by volunteers.

Icon

Code of Conduct

How and why we scan and report.

Icon

News & Events

Just getting started with some presentations here and there

Icon

REPORTS

Reports on closed research

Icon

CSIRT

Blog on current research by our Computer Security Incident Response Team

Icon

SECURITY

Public documents and reports about (our) security

Icon

CONTACT

We are a network of security researchers who mainly work online.

Icon

JOIN

Join DIVD

Icon

DONATE

We need your support for our mission.

Current open cases

DIVD-2022-00004 - Post-Log4J Open Database C2 and Monero Miner Infections
DIVD-2022-00002 - Grafana
DIVD-2021-00039 - HP iLO
DIVD-2021-00038 - Apache Log4j2
DIVD-2021-00033 - Sites with Potential SQL-Injection
DIVD-2021-00030 - GitLab Unauthenticated RCE Flaw
DIVD-2021-00022 - Exchange ProxyShell and ProxyOracle
DIVD-2021-00015 - Telegram OD
DIVD-2021-00014 - Kaseya Unitrends
DIVD-2021-00012 - Warehouse Botnet
DIVD-2021-00011 - Kaseya VSA Limited Disclosure
DIVD-2020-00012 - 49 000 vulnerable Fortinet VPN devices
DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR

All cases

Last 10 csirt blog posts

14 December 2021 - Update Apache log4j2 remote code execution
10 December 2021 - Apache log4j2 remote code execution
27 November 2021 - NMAP script for GitLab CVE-2021-22205
11 November 2021 - GitLab Unauthenticated RCE Flaw
04 November 2021 - SolarWinds N-able N-central
07 October 2021 - Apache HTTP 2.4.49 Path Traversal and File Disclosure Update
05 October 2021 - Apache HTTP 2.4.49 Path Traversal and File Disclosure
26 August 2021 - Exchange ProxyShell and ProxyOracle
26 August 2021 - Kaseya Unitrends update
25 August 2021 - Vembu BDR Full Disclosure

All posts