Floragasse 7 – 5th floor, 1040 Vienna
Subscribe to our Newsletter

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

eBPF Vienna Meetup – Kernel Insights (special)
20.09.2024
Training: SOC (Security Operation Centers) – Basis Kurs
30.09.2024 - 04.10.2024
Shecurity – Hackerinnen Training – Wireshark
21.10.2024

Recent News:

Sebastian Schrittwieser @ RIOT Summit 2024

At the beginning of September, Sebastian Schrittwieser, key researcher at SBA Research, gave this year's keynote on Firmware Forensics: Semantic Functionality Identification Through Symbolic Execution and Program Simulation. Read More
man holding presentation

Reinhard Kugler @WeAreDevelopers 2024

This year’s WeAreDevelopers Congress 2024, held in Berlin from July 17th to 19th with intriguing sessions covering the latest trends and advancements across the industry. Reinhard Kugler, lead of the MARC team, contributed to the congress with his standout presentations titled “A Hitchhiker’s Guide to Container… Read More
man presenting on stage

Reinhard Kugler @Troopers 2024

The annual international IT security event, Troopers 2024, recently marked its 15th anniversary in the historic city of Heidelberg. This milestone event took place from the 24th until the 28th of June, bringing together security experts, researchers, and enthusiasts from around the globe to share cutting-edge developments in the field… Read More
man presenting on stage

Austrian Security Researchers Uncover Multiple Critical Vulnerabilities in VoWiFi – Affecting Austrian Mobile Operator!

Significant global security vulnerabilities and the possibility of eavesdropping in Voice over WiFi (VoWiFi) – one of the prevailing communication protocols in the mobile sector – have been exposed by security researchers from SBA Research, the University of Vienna, and the CISPA Helmholtz Center for Information Security in Saarbrücken. VoWiFi… Read More
excerpt udp payload

SBA Security Advisory – Mediatek Modem – Selection of less-secure algorithm during negotiation ‘algorithm downgrade’ (CVE-2024-20069)

Vulnerability Overview In the modem, the client can be forced into accepting a less secure key exchange algorithm during the VoWiFi IKE handshake due to a missing downgrade check on the proposed Diffie-Hellman (DH) group. This could lead to remote information disclosure with no additional execution privileges needed. User interaction… Read More