Abusing Modern Browser Features for Phishing
Modern browsers have come a long way from rendering marked-up text to being used as a runtime for client applications. Many of the modern APIs require explicit user ...
Read MoreSearch
CVE-2025-6759: Local Privilege Escalation in Citrix Virtual Apps and Desktops
Certitude identified a local privilege escalation vulnerability in Citrix Virtual Apps and Desktops which would allow an attacker with control of a low-privileged user ...
Read MoreCVE-2025-25599: A Cautionary Tale of Insecure Temporary Files
During a security assessment of Bolt, an open-source content management system, it was discovered that temporary files are used insecurely when uploading an avatar ...
Read MoreStudy together with the BSI: IT security of smart radiator thermostats
Certitude carried out the technical security testing of smart radiator thermostats on behalf of the Federal Ministry for Information Security (BSI). The study that ...
Read More