security

security.txt generator for enterprise

Leave a Comment / Security / By

Our security.txt generator according to RFC 9116 is user-friendly and offers a customized creation of the security.txt file. You do not need extensive technical knowledge to benefit from this service. The file is created according to the latest Internet Engineering Task Force (IETF) standards and can contain important information such as contact details, vulnerability reporting guidelines and encryption information where applicable.

This file serves as a direct communication bridge between security researchers and your organization to report vulnerabilities efficiently and securely. Having a clearly defined contact option on your website can be critical to quickly addressing and remediating potential security risks.

When researchers discover vulnerabilities, there is often a lack of appropriate reporting channels. As a result, vulnerabilities may not be reported. This document defines a machine-readable format (“security.txt”) to help organizations describe their vulnerability disclosure practices to make it easier for researchers to report vulnerabilities.

security.txt generator for enterprise Read More »

Microsoft Cloud Lücke in AzureAD ermöglicht Attacke

Leave a Comment / Cloud, Microsoft / By

Dieser Artikel ist eine Zusammenfassung über die Inhalte und aktuellen Schwachstellen für Microsofts Cloud Services wie M365 und Azure insbesondere des gestohlene Masterkey (MSA) der Zugriff auf Microsoft-Konten ermöglicht. Für Kunden bedeutet die Attacke nun das Sie nun kostenfrei das Logging out-of-the-box bekommen. Die Lessons Learned aus diesem Vorfall sind vielfältig und betreffen sowohl Microsoft als auch Unternehmen, die Cloud-Dienste nutzen

Microsoft Cloud Lücke in AzureAD ermöglicht Attacke Read More »

Scroll to Top