Name	SBA Research Cookie
Provider	SBA Research
Purpose	Saves the settings of the visitors selected in the cookie box.
Cookie name	sba-research-cookie
Cookie runtime	1 year

Name	YouTube
Provider	YouTube
Purpose	Used to unblock YouTube content.
Privacy policy	https://policies.google.com/privacy
Host(s)	google.com
Cookie name	NID
Cookie runtime	6 months

Name	Vimeo
Provider	Vimeo
Purpose	Used to unblock Vimeo content.
Privacy policy	https://vimeo.com/privacy
Host(s)	player.vimeo.com
Cookie name	vuid
Cookie runtime	2 years

Congratulations to our key researcher Maria Christakis on receiving the ACM-W Rising Star Award!

March 19, 2026

Maria Christakis has been awarded the 2026 ACM-W Rising Star Award, presented by ACM-W: ACM’s Women in Computing. This prestigious recognition honours outstanding early-career researchers who have made exceptional contributions to the computing field. ... Read More

Congratulations to Gabriel Gegenhuber on Successfully Passing His Rigorosum

March 18, 2026

On February 19, Gabriel Gegenhuber successfully passed his Rigorosum with excellent evaluations, defending his dissertation "Democratizing Measurement of Critical Mobile Infrastructure: Security and Privacy in an Increasingly Centralized Communication Ecosystem" before the committee and PhD supervisor Johanna Ullrich. ... Read More

SBA Security Advisory – LibreChat RAG API Authentication Bypass (CVE-2025-41258)

March 18, 2026

LibreChat version 0.8.1-rc2 uses the same JWT secret for the user session mechanism and RAG API which compromises the service-level authentication of the RAG API. ... Read More

Congratulations to Florian Holzbauer on Successfully Passing His Rigorosum

March 17, 2026

On February 19, Florian Holzbauer successfully completed his Rigorosum, receiving excellent evaluations. He successfully defended his dissertation, “Turning Failure into Knowledge: Extending the Observable Internet by Leveraging Delivery Failures,” before the committee and Florian’s PhD thesis supervisor Johanna Ullrich. ... Read More

Georg Merzdovnik Hosted Hacker Jeopardy at Disobey 2026

March 12, 2026

Our colleague Georg Merzdovnik, senior researcher and team lead of research group ISIS at SBA Research, hosted Hacker Jeopardy at Disobey 2026, one of Europe’s most well-known hacker and cybersecurity community events. ... Read More

SBA Security Advisory – Checkmk Cross Site Scripting (CVE-2025-64999)

March 5, 2026

Checkmk in versions before 2.4.0p22 and 2.3.0p43 is prone to a cross-site scripting (XSS) vulnerability when used in a distributed monitoring setup. Any connected remote site can inject JavaScript code in the central site's user interface. ... Read More

SBA Security Advisory – Suprema BioStar 2 Insecure Password Change (CVE-2025-41257)

March 5, 2026

Suprema’s BioStar 2 in version 2.9.11.6 allows users to set new password without providing the current one. Exploiting this flaw combined with other vulnerabilities can lead to unauthorized account access and potential system compromise. ... Read More

Digital Colony or Sovereignty? Europe’s Strategic Crossroads in the Digital Age

February 25, 2026

In Episode 147 of the Zukunft Denken – Podcast, Alexander Schatten, senior researcher at SBA Research, address this question under the title: “Digital Colony or Sovereignty?” ... Read More

Training for Change: Advancing Diversity Together

February 25, 2026

We are delighted to congratulate Jeanine Lefèvre, our Head of Equal Opportunities Office, on successfully completing the part-time 'Diversity Facilitator' course. Offered by Integrationswerkstatt, the course covers important topics from diversity research in depth, including equal opportunities and anti-discrimination, foreign and human rights, media and digital skills, intercultural communication and conflict management, as well as methodology and didactics. ... Read More

Jeanine and people from the Integrationswerkstatt with handing over her certificate

New Article in MDPI Sensors

February 19, 2026

Our colleague Sebastian Raubitzek, researcher at SBA Research and a member of the Security and Privacy Research Group at the University of Vienna, has published a journal article titled “Mean Reversion and Heavy Tails: Characterizing Time-Series Data Using Ornstein–Uhlenbeck Processes and Machine Learning” in MDPI’s Journal Sensors in collaboration with the CD lab AsTra. ... Read More

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

News