Victor Gevers

Role: Head of research
Department: Research

Head of Research, visionary and janitor of our online environment. Chairman as his previous role. He is the undisputed champion in Responsible Disclosure, with 5.600+ vulnerability reports successfully handled in the last 18 years. Don’t send him e mails, as he receives millions a day. His preferred channel is Twitter.

Social media

Icon - 0xDUDE

Articles / cases / cves

CSIRT Cases

• DIVD-2022-00022 - WatchGuard Firebox and XTM appliance ACE vulnerability
• DIVD-2022-00021 - Ivanti EPM CSA remote code execution
• DIVD-2022-00019 - Insecure Mendix Applications
• DIVD-2022-00017 - Global Healthcare Vulnerabilities
• DIVD-2022-00012 - Global Charity Vulnerabilities
• DIVD-2021-00039 - HP iLO
• DIVD-2021-00038 - Apache Log4j2
• DIVD-2021-00030 - GitLab Unauthenticated RCE Flaw
• DIVD-2021-00029 - Smartertrack
• DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE)
• DIVD-2021-00017 - SolarWinds N-able N-central agent vulnerabilities
• DIVD-2021-00015 - Telegram OD
• DIVD-2021-00014 - Kaseya Unitrends
• DIVD-2021-00012 - Warehouse Botnet
• DIVD-2021-00011 - Kaseya VSA Disclosure
• DIVD-2021-00010 - vCenter Server PreAuth RCE
• DIVD-2021-00005 - Pulse Secure PreAuth RCE
• DIVD-2021-00004 - Gelekte phishing gegevens / Leaked phishing credentials
• DIVD-2021-00002 - Kaseya VSA
• DIVD-2021-00001 - Microsoft on-prem Exchange Servers
• DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR
• DIVD-2020-00008 - 313 000 Wordpress sites scanned

CSIRT blog posts

• 04 July 2021 - Kaseya Case Update 2