Floragasse 7 – 5th floor, 1040 Vienna
Subscribe to our Newsletter

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

securepizza.club semester opening 2025
06.11.2025
Training: Certified Information Systems Security Professional (CISSP) – Prüfungsvorbereitungskurs – Teil 1
18.11.2025 - 20.11.2025
Training: Certified Information Systems Security Professional (CISSP) – Prüfungsvorbereitungskurs – Teil 2
26.11.2025 - 27.11.2025

Recent News:

SBA @ re:think diversity congress 2025

On October 22 2025, the Diversity Think Tank team hosted the re:think diversity congress at the Vienna Chamber of Commerce. Like last year, Jeanine Lefèvre, Head of Office of Equal Opportunities and research coordinator, and Gregor Roschitz,… Read More
Gregor and Jeanine in the event hall

IMPACT 2025

In mid-October, our yearly partner and friends of SBA Research event IMPACT brought together experts, practitioners, and decision-makers from research, industry, and the open-source community. One afternoon with discussion about the latest developments in security, open source, and research and to celebrate our long-standing relationships. This year’s program… Read More
group photo speaker and panelists at impact

SBA Research joins the Linux Foundation Europe

We are proud to announce that we joined the Linux Foundation Europe, further strengthening our role within the international open-source community. With this step, we are reinforcing our commitment to advancing security and resilience in digital infrastructures. ... Read More
decorative

Distinguished paper award at ACM CCS 2025

David Schmidt, PhD student at CD-Lab AsTra, Sebastian Schrittwieser, key researcher at SBA Research and head of the CD-Lab, and Edgar Weippl, scientific director at SBA Research and full professor for security & privacy at the University of Vienna, received the Distinguished Paper Award at ACM CCS 2025 (A*-rated) for their work Leaky Apps: Large-scale Analysis of Secrets Distributed in Android and iOS Apps. ... Read More
David Schmidt with Award in hands

SBA Security Advisory – Checkmk Path Traversal (CVE-2025-39664)

Vulnerability Overview Checkmk in versions before 2.4.0p13, 2.3.0p38 and 2.2.0p46, as well as since version 2.1.0b1 is prone to a path traversal vulnerability in the report scheduler. Due to an insufficient validation of a file name input, users can store reports in arbitrary locations on the server. Read More
Logo SBA Security Advisories

SBA @ heise devSec()

Our colleagues Michael Koppmann, senior information security consultat at SBA Research, and Mathias Tausig, information security consultant at SBA Research Research gave two insightful talks on ... Read More
SBA @ heise devSec()

SBA @ LSZ Cyber Crime Forum Graz

Our colleagues Nicolas Petri, Information Security Consultant, and Gerald Sendera, Data Protection Supervisor and Legal Counsel, gave an expert talk on Ich wollte nur Software bauen – und jetzt mach ich CRA-Compliance on September 30 at the LSZ Cyber Crime Forum Graz. ... Read More
Gerald and Niki at the SBA booth