news
How to secure your AWS S3 buckets
1.5 million files are stored unprotected on the public internet, does this still happen? Unfortunately, yes, it still happens. Despite our familiarity with security policies, controls, and best practices. In this article, you can read how you can secure your AWS S3 buckets and why it is important to do it.
news
Maintain recognition of DIVD Academy for vulnerable students!
Prevent students from being left without internships by maintaining recognition of DIVD Academy. Sign for a promising future for students!
case
CASE: Attackers exploit zero day vulnerabilities in Ivanti software, and hack the Norwegian governement
An unknown attacker exploited several zero-day vulnerabilities in two Ivanti services: Ivanti EPMM and Avanti Sentry. The DIVD helped notify users of Ivanti software.
case
OPERATION ENDGAME DIVD-2024-00019
As part of Operation Endgame the Dutch Police and Europol have infiltrated a number of botnets. During this infiltration they obtained data about the victims of these botnets. DIVD is providing victim notification for civilians.
case
CASE: IVANTI (New)
The DIVD helped notifying users of Ivanti software.
case
CASE: IVANTI
The DIVD helped notifying users of Ivanti software.
case
CASE: KASEYA
On March 23, 2021, DIVD volunteer Wietse Boonstra found six zero-day vulnerabilities in IT management software from Kaseya, a Miami-based company. This turned out to be one of the biggest (ransomware) cases in history, a case with a huge impact worldwide.
case
CASE: SMARTERMAIL
A DIVD researcher discovered multiple vulnerabilities in SmarterMail. Both vulnerabilities were found within the webmail frontend of SmarterMail.
case
CASE: ATLASSIAN CONFLUENCE
After Veloxity identified a zero-day vulnerability, DIVD, DTC, and NSM cooperated to reach out to notify 18.469 vulnerable ISPs.
news
NEWS: INGE BRYAN NIEUWE BESTUURSVOORZITTER DIVD
Met trots en plezier maken we bekend dat Inge Bryan de nieuwe bestuursvoorzitter is van het Dutch Institute for Vulnerability Disclosure. Ze neemt deze rol over van Astrid Oosenbrug. Astrid legt de voorzittershamer neer om zich meer te gaan richten op de ontwikkeling van de DIVD Academy.
case
CASE: GLOBAL VMWARE ESXI RANSOMWARE ATTACKS
In cooperation with DIVD, NCSC-NL and several EU govcerts, 14,986 global vulnerable hosts were found and notified.
case
CASE : AUTHENTICATION BYPASS IN JETBRAINS TEAMCITY
A critical security issue was recently identified in TeamCity On-Premises. If abused, the flaw may enable an unauthenticated attacker with HTTP(S) access to a TeamCity server to perform bypass authentication checks and gain administrative control of that TeamCity server.