Name	SBA Research Cookie
Provider	SBA Research
Purpose	Saves the settings of the visitors selected in the cookie box.
Cookie name	sba-research-cookie
Cookie runtime	1 year

Name	YouTube
Provider	YouTube
Purpose	Used to unblock YouTube content.
Privacy policy	https://policies.google.com/privacy
Host(s)	google.com
Cookie name	NID
Cookie runtime	6 months

Name	Vimeo
Provider	Vimeo
Purpose	Used to unblock Vimeo content.
Privacy policy	https://vimeo.com/privacy
Host(s)	player.vimeo.com
Cookie name	vuid
Cookie runtime	2 years

Rudolf Mayer joins the Scientific Advisory Board of the Horizon Europe project Microb-AI-ome

February 12, 2024

Rudolf Mayer joins the Scientific Advisory Board of the Horizon Europe project Microb-AI-ome, and will advice the project consortium in data privacy and security in the context of federated databases and machine learning. About the project Microb-AI-ome aims to advance early identification of colorectal cancer… Read More

Aljosha Judmayer successfully defended his PhD thesis

February 1, 2024

We congratulate Aljosha Judmayer to successfully defending his PhD thesis “Pay to Win – Algorithmic Incentive Manipulation Attacks on Permissionless Cryptocurrencies” and thank Rainer Böhme and Bryan Ford for their service as examiners. The digital exchange of units of financial value, commonly referred to as money,… Read More

Two cover articles in iX heise magazine by Alexander Schatten

January 29, 2024

Alexander Schatten, senior researcher at SBA Research, published two cover articles regarding the ESG software market in heise iX. The ESG reporting obligations are coming In 2024 and 2025, many SMEs will be subject to new non-financial reporting obligations on the environmental and human… Read More

SBA Security Advisory – CloudLinux CageFS – Insufficiently Restricted Proxy Command (CVE-2020-36772)

January 26, 2024

CloudLinux CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to the sendmail proxy command. This allows local users to read and write arbitrary files of certain file formats outside the CageFS environment. We recommend to update CloudLinux CageFS to version 7.1.1-1 or later. For further details, see the full security advisory. Read More

SBA Security Advisory – CloudLinux CageFS – Token Disclosure (CVE-2020-36771)

January 26, 2024

CloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user. We recommend to update CloudLinux CageFS to version 7.1.2-2 or later. For further details, see the full security advisory. Read More

Interesting Talk @ CGIAR

January 25, 2024

Sebastian Raubitzek and Kevin Mallinger have been invited for a special research seminar in CGIAR (Consultative Group on International Agricultural Research) about the application of complexity science in Artificial Intelligence. The talk focused on the possibility to enhance AI capacities for sustainability and productivity… Read More

New chairman for the SBA Scientific Advisory Board

January 24, 2024

Christopher Kruegel, a longtime collaborator, will chair our Scientific Advisory Board. He has published more than 89 papers at the 4 major security conferences and founded Lastline (later acquired by VMware) by building on the results of Ulrich Bayer‘s… Read More

ERC grant awardees joined new COMET proposal NGC

January 24, 2024

We are pleased to announce that Maria Christakis joined SBA’s new COMET proposal Next Generation Cybersecurity (SBA-K1 NGC) as member of the scientific and innovation board, Laura Kovacs and Matteo Maffei joined as key researchers. Maria Christakis’s ERC grant focuses on improving software testing,… Read More

ERC grant awardees joined new COMET proposal NGC

Anastasia Pustozerova @Vienna Deep Learning Meetup

January 17, 2024

Anastasia Pustozerova is researcher at SBA Research and gave an interesting talk on Differential Privacy for Machine Learning. Talk Abstract Machine Learning requires a lot of data to train effective models. Data owners might not be willing to share the data because of its private nature. Differential Privacy can… Read More

SBA Security Advisory – MOKOSmart MKGW1 Gateway – Improper Session Management (CVE-2023-51059)

December 21, 2023

MOKOSmart MKGW1 Gateway devices with firmware version 1.1.1 do not provide an adequate session management for the administrative web interface. This allows adjacent attackers with access to the management network to read and modify the configuration of the device. Read More

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

News