Stay up to date
Here you'll find the latest updates, announcements and stories from DIVD. Our newsroom is your go-to source for news about our ongoing efforts to enhance digital security and protect organisations from cyber threats.
We have moved to ENISA as its Root CNA
As a CVE Numbering Authority, we assign CVEs to vulnerabilities. Within the CVE program, every CNA operates under a Root CNA, and until now that was MITRE. From now on, it will be European …
updates
Dutch energy sector, we have a cloud problem
A lot of the Dutch energy sector now runs in the cloud, and that happened gradually, always with efficiency in mind. But who thought about sovereignty and always be in control?
news
We have moved to ENISA as its Root CNA
As a CVE Numbering Authority, we assign CVEs to vulnerabilities. Within the CVE program, every CNA operates under a Root CNA, and until now that was MITRE. From now on, it will be European …
case
CASE: MENDIX MISCONFIGURATION (again)
DIVD warns of common configuration mistakes in Mendix applications. No vulnerability in Mendix itself. Organizations should immediately review the authorization settings of their own …
case
OPERATION ENDGAME PART 3
We are notifying victims of the Rhadamanthys infostealer. Since the datasets contain information on a very large number of individuals, we will not be sending individual notifications. …
case
OPERATION ENDGAME 2.0
DIVD is notifying victims of the Latrodectus infostealer, the evolution of IcedID. We are notifying victims that were identified as a part of Operation Endgame 2.0. If you receive a …
news
Critical vulnerabilities found in procurement platform used by U.S. public sector
One of our researchers has identified three critical vulnerabilities in the SicommNet BASEC e-procurement system, primarily used by U.S. public sector agencies. These vulnerabilities allow …