News

Phishing page discovered on subdomain during Penetration Testing
Blog

Uncovering the hidden: Phishing page discovered on subdomain during Penetration Testing

In today’s fast-evolving digital world, vulnerabilities can lurk in the most unexpected places. During a recent penetration test, we uncovered a surprising and disturbing security breach: a phishing page hidden on one of our client's subdomains, hosted by a malicious actor on an abandoned Amazon S3 bucket.

Read the full blog to discover how proactive penetration testing can help safeguard your digital assets from emerging cyber threats.

Read more
DEF CON 32 - interesting program
Blog

DEF CON 32 Recap: Navigating the latest Cybersecurity challenges and breakthroughs

Las Vegas in August has become synonymous with the excitement of hacking conferences, particularly DEF CON, the world's largest and longest-running hacking and security conference. Davinsi Labs was there once again to catch up on the latest trends, tools, techniques, and insights in the evolving world of offensive security.

Read more in this blog and discover how our colleagues Sander and Jan share the most important insights and highlights from this year's edition.

Read more
CriblCon and Splunk.conf 2024
Blog

Navigating innovation: Highlights from CriblCon and Splunk .conf24

Join us on an exciting journey through CriblCon and Splunk .conf24, where our colleagues explored the latest innovations in data management and digital resilience. From keynotes unveiling future visions to insightful sessions on cutting-edge technologies, this blog covers the essential highlights and takeaways.

Read more
Penetration Testing in the age of AI and Large Language Models
Blog

Breaking Barriers: Penetration Testing in the age of AI and Large Language Models

Dive into the fascinating world of Large Language Models.
Uncover the inner workings of AI assistants like 'Dave' and gain insights into the security risks they pose. Learn how to fortify your defenses against prompt injections, sensitive data leaks, and more. Stay informed, stay secure.

Read more
Villa Max Location
News

Annual charity action raises 2000 EUR for VZW Villa Max

Davinsi Labs is happy to donate 2000 EUR to VZW Villa Max, as a result of the annual campaign for charity with customers.

Read more
Presentation Proximus, Davinsi Labs and Mensura on Cybersecurity and AI: Boosting your business resilience - Presentation Proximus, Davinsi Labs - Mensura
Video

Proximus, Davinsi Labs and Mensura talking about cybersecurity and AI

Do you master the critical pillars of digital resilience? Security Intelligence, Operational Intelligence, and AIOps? Embrace these pillars and explore how to strengthen your digital ecosystems against evolving threats and operational challenges, through case studies and cutting edge strategies. In this presentation you will learn everything you need to know about digital resilience, and Gerrit Van Daele - CIO of Mensura - tells their story.

Read more
Digital resilience
Blog

Navigating tomorrow: The future outlook of Operational Intelligence and Security in 2024

In the ever-evolving landscape of technology, the realms of operational intelligence and security stand at the forefront of innovation. As we gaze into the future of 2024, a landscape shaped by data-driven decisions, heightened cyber threats, and the pursuit of digital resilience emerges. In this blog we explore the key trends and advancements that will shape the Operational Intelligence and Security Intelligence market in the coming year.

Read more
Transforming IT Operations with AIOps: The future of smart business management
Blog

Transforming IT Operations with AIOps: The future of smart business management

In the rapidly evolving landscape of technology and business, staying ahead is no longer a luxury but a necessity. Enter AIOps, a groundbreaking approach that combines Artificial Intelligence (AI) and Operations to reshape how businesses manage, optimize, and elevate their IT environments. In this comprehensive blog post, we dive into the profound relevance of AIOps in today's dynamic market, explore its multifaceted benefits for companies, and elucidate why AIOps tooling is a strategic imperative for any forward-looking organization.

Read more
The DeepSec experience
Blog

The DeepSec experience

Embark on a fascinating exploration into the heart of cybersecurity innovation! Join our colleague Thimo as he shares his first-hand experiences and valuable insights from DeepSec in Vienna. This in-depth European security conference brings together the world's most renowned security professionals, academics, government, industry, and the underground hacking community.

From the groundbreaking technologies unveiled to the thought-provoking discussions that unfolded, this blog provides a front-row seat to the epicenter of digital defense.

Read more
Harnessing Threat Intelligence: The key to effective Use Case Design in a data-driven world
Blog

Harnessing Threat Intelligence: The key to effective Use Case Design in a data-driven world

In today's data-driven world, organizations must employ a proactive approach to cybersecurity by utilizing threat-driven use case design. This strategy involves leveraging real-time threat intelligence to tailor detection rules, reducing false positives, and enabling a cost-efficient, compliant, and data-driven security approach. Ultimately, it empowers organizations to protect their assets, users, and sensitive data from evolving threats and vulnerabilities.

Read more
Alert fatigue
Blog

Breaking free from alert fatigue by leveraging false positives

Embracing false positives might seem counterintuitive, but it’s a strategy that can significantly enhance the efficacy of your security operations. False positives, though often perceived as useless disruptions, offer invaluable opportunities for refinement.

Read more
Splunk.conf 2023
Blog

The Splunk.conf experience

Our colleagues reveal their insights about their journey at Splunk.con 2023. In this blog they share their experiences and learnings.

Read more
News

UMBRiO and Davinsi Labs join forces as Davinsi Labs: A unified journey begins

UMBRiO and Davinsi Labs, two companies in the Proximus Group, specialized in cybersecurity and intelligence solutions, announce they continue together under the name Davinsi Labs, with 'the art of data-driven decisions’ as their new joint credo.

Read more
News

Davinsi Labs and UMBRiO join forces

Davinsi Labs and Umbrio, two Proximus Group subsidiaries specializing in cybersecurity and intelligence solutions, just announced they are pooling their experience and expertise as part of a merger to scale up and innovate internationally. It’s a move that will enable them to become one of the leading Digital Service Intelligence players in the Benelux.

Read more
Modern cyberattacks: beyond traditional attack vectors
Blog

Modern cyberattacks: beyond traditional attack vectors

This blog post explores modern cyberattacks and how they go beyond traditional attack vectors. The security community knows that most successful attacks don’t involve highly technical vulnerability exploits but instead aim to trick a human into making a mistake. This blog post examines two examples of recent attacks that successfully targeted companies with robust security programs.

Read more
Davinsi Labs en team Daklozenhulp Antwerpen
News

Davinsi Labs steunt Daklozenhulp Antwerpen met schenking van 2000 EUR, dankzij nieuwjaarsactie samen met klanten

Davinsi Labs is blij om 2000 EUR aan Daklozenhulp Antwerpen (Dakant) te kunnen schenken, als gevolg van de jaarlijkse actie samen met klanten voor het goede doel.

Read more
Blog: The scale-up challenge and the North Star
Blog

The scale-up challenge and the North Star

This is our kick-off blog for 2023. Read more about the scale-up challenges and 5 key initiatives for 2023 that we believe will help us to address these challenges.

Read more
How to anticipate and avoid DDoS attacks
Blog

How to anticipate and avoid DDoS attacks?

In Belgium, more than 10.000 DDoS attacks happen every month. Not only is the number of these cyberattacks increasing but so is their complexity. If you have a commercial or informational website, then your business, big or small, and in any sector, is potentially at risk. A tailor-made solution, using realistic simulation tools offers the best guarantee to protect your company.

Read more
DEF CON 30
Blog

The DEF CON 30 experience

Our colleague and ethical hacker Thimo had an extraordinary time at the 4 day hacking conference DEF CON 30. In this blog he shares his experiences and learnings.

Read more
Blog

How Service Intelligence drives (digital) customer satisfaction

The analysis of technological processes, big data, performance and user satisfaction is incredibly valuable and has become a key element of IT operations analytics. Monitoring customers’ digital experience and mastering observability help you to further optimize your processes, making sure to keep your customers happy and loyal to your company.

Read more
Threat Advisory Follina
Blog

Threat Advisory: Follina

Follina is not only a small, beautiful commune in the province of Treviso in Italy, but also the name of a newly published exploit abusing all Microsoft Office applications to execute malicious code.

Read more
Isabel customer movie
Video

Isabel customer movie

Discover the story of our customer Isabel Group: Building confidence in a digital world, is making sure that security is a part of your DNA. Discover how Isabel Group,...

Read more
Blog

Threat Advisory: Spring4Shell

As the world’s most popular Java lightweight open-source framework, Spring allows developers to focus on business logic and simplifies the development cycle of Java enterprise applications.

Read more
News

Davinsi Labs schenkt 1.500 euro aan Huize Terloo

Davinsi Labs heeft namens de klanten en het bedrijf een donatie van 1.500 euro overhandigd aan OC Huize Terloo, een multifunctioneel centrum voor jongeren in Bellingen.

Read more
Blog

Threat Advisory: PwnKit CVE-2021-4034

A local privilege escalation vulnerability was found on polkit’s pkexec utility. Polkit (formerly PolicyKit) handles the communication of unprivileged processes with privileged processes on Linux operating systems.

Read more
Blog

Digital Service Excellence in 2022

The year 2021 was another unique year. Digital Service Excellence and the power of data were more important than ever.

Read more
Blog

Threat Advisory: Apache Log4j RCE – UPDATE

A significant number of Java-based applications use log4j as their logging utility.

Read more
Blog

Threat Advisory: Apache Log4j RCE – Version 13/12/2021

A significant number of Java-based applications use log4j as their logging utility.

Read more
Blog

How to navigate your business through the Black Friday & Cyber Monday rush

There is no escaping, Black Friday and Cyber Monday are coming. Officially, Black Friday is November 26 this year, followed by Cyber Monday on November 29, but promotions and announcements have already been in full swing for weeks.

Read more
Blog

Threat Advisory: How to respond to ProxyShell, the latest exploit against Exchange

During Black Hat 2021, a well-known computer security conference, security researcher Orange Tsai showcased a new exploit dubbed “ProxyShell” to remotely attack on-premise Microsoft Exchange servers.

Read more
Blog

Threat Advisory: PrintNightmare exploitation in the wild

A recent proof of concept exploit was published (and quickly deleted) containing an unpatched 0-day in all supported Windows Operating Systems.

Read more
News

Peace of mind, even when you’re playing golf!

At Davinsi Labs, we like to show our sportive and passionate hearts. And it’s picture-perfect when we can do this while bringing our network closer together.

Read more
News

4th place for Davinsi Labs in the Trends Gazelle 2021 (Category medium-sized companies.)

It is with great pride that we can announce that Davinsi Labs has been nominated, and ended up in the top 5 of medium-sized companies, for this year’s Trends Gazelle 2021 for the province of Antwerp.

Read more
Our ethical hackers explain how ethical hacking works
News

Our ethical hackers explain how ethical hacking works

Our colleagues Sander Van der Borght and Stephen Corbiaux, ethical hackers at Davinsi Labs, answer 5 questions on ethical hacking in an interview with Proximus’ One Magazine.

Read more
Blog

Threat Advisory: HAFNIUM targeting Exchange Servers with 0-day exploits

March 2, 2021 marked the day of the release of a Threat Intelligence report by Microsoft, reporting multiple (!) 0-days exploits abused in the wild, to attack on-premise versions of Microsoft Exchange Servers.

Read more
News

Davinsi Labs schenkt opbrengst eindejaarsactie aan OC Huize Terloo

Davinsi Labs, gespecialiseerd in Digital Service Excellence, heeft namens de klanten en het bedrijf een donatie van 1.000 euro overhandigd aan OC Huize Terloo, een multifunctioneel centrum voor jongeren in Bellingen.

Read more
Blog

Looking forward to 2021

A new year, with new opportunities! Don’t we have to believe in this year more than ever? Many of us probably don’t mind leaving 2020 behind.

Read more
Blog

Authorization bypass through insecure token handling

Organizations often ignore the presence of low-risk vulnerabilities. One of our ethical hackers describes a real case to illustrate the consequences.

Read more
News

Proximus neemt Davinsi Labs over

Proximus neemt Davinsi Labs over en versterkt aldus zijn positie op de groeiende markt van de cybersecurity Proximus kondigt de overname aan van Davinsi Labs, een bedrijf dat zich...

Read more