Cure53 📖 Wikipedia

Cure53
Industry	Cybersecurity
Headquarters	Berlin, Germany
Website	cure53.de

Cure53 is a German cybersecurity firm.^[1]^[2]^[3]^[4] The company was founded by Mario Heiderich, a security researcher.

History

edit

After a report from Cure53 on the South Korean security app Smart Sheriff, that described the app's security holes as "catastrophic", the South Korean government ordered the Smart Sheriff to be shut down.^[1]^[2]

Software audited by Cure53 includes Mastodon, OnionShare, Bitwarden, Mailvelope, GlobaLeaks, SecureDrop, Obsidian (client software), OpenPGP, Onion Browser, F-Droid, Nitrokey, Peerio, OpenKeychain, cURL, Briar, Mozilla Thunderbird, Threema, MetaMask, Obsidian, Proton Pass, Coinbase, Mullvad, Nym, Enpass, as well as many VPN and password manager providers.^[5]

Cure53 created the DOMpurify JavaScript library for prevention of cross-site scripting.^[6]

References

edit

^ ^a ^b Max Lewontin (2015-11-02). "South Korea pulls plug on child surveillance app after security concerns: Government officials pulled Smart Sheriff, an app that lets parents track how their children use social media, from the Google Play store over the weekend". The Christian Science Monitor. Retrieved 2016-01-09. But researchers from Citizens Lab, a research group based at the University of Toronto, and Cure53, a German software company, released two reports in September finding that Smart Sheriff had a variety of security issues that it made it vulnerable to hackers and put children and parents' personal information at risk.
^ ^a ^b Raphael Satter, Youkyung Lee (2015-11-02). "South Korea shuts down child surveillance app over security concerns: The removal of the state-approved Smart Sheriff is a blow to South Korea's effort to keep closer tabs on the online lives of youth". Toronto Star. Seoul. Retrieved 2016-01-09. Pulling the plug on Smart Sheriff was "long overdue," said independent researcher Collin Anderson, who worked with Internet watchdog group Citizen Lab and German software auditing firm Cure53 to comb through the app's code.
^ Andy Greenberg (2015-01-14). "The Free Encryption App That Wants to Replace Gmail, Dropbox, and HipChat". Wired. Retrieved 2015-05-19.
^ Timm Trevor (2014-01-20). "SecureDrop Undergoes Second Security Audit". Freedom of the Press Foundation. Retrieved 2014-07-13. This time, we worked with the German security firm Cure53, who has previously done audits of GlobaLeaks, Mailvelope, and CryptoCat.
^ "Cure53 – Fine penetration tests for fine websites". cure53.de. Retrieved 2025-07-29.
^ Heiderich, Mario; Späth, Christopher; Schwenk, Jörg (2017). Foley, Simon N.; Gollmann, Dieter; Snekkenes, Einar (eds.). "DOMPurify: Client-Side Protection Against XSS and Markup Injection". Computer Security – ESORICS 2017. Cham: Springer International Publishing: 116–134. doi:10.1007/978-3-319-66399-9_7. ISBN 978-3-319-66399-9.

External links

edit

Official website

This computer security article is a stub. You can help Wikipedia by adding missing information.

[Csm2015-11-02-1] Max Lewontin (2015-11-02). "South Korea pulls plug on child surveillance app after security concerns: Government officials pulled Smart Sheriff, an app that lets parents track how their children use social media, from the Google Play store over the weekend". The Christian Science Monitor. Retrieved 2016-01-09. But researchers from Citizens Lab, a research group based at the University of Toronto, and Cure53, a German software company, released two reports in September finding that Smart Sheriff had a variety of security issues that it made it vulnerable to hackers and put children and parents' personal information at risk.

[TorStar2015-11-02-2] Raphael Satter, Youkyung Lee (2015-11-02). "South Korea shuts down child surveillance app over security concerns: The removal of the state-approved Smart Sheriff is a blow to South Korea's effort to keep closer tabs on the online lives of youth". Toronto Star. Seoul. Retrieved 2016-01-09. Pulling the plug on Smart Sheriff was "long overdue," said independent researcher Collin Anderson, who worked with Internet watchdog group Citizen Lab and German software auditing firm Cure53 to comb through the app's code.

[Wired2015-05-19-3] Andy Greenberg (2015-01-14). "The Free Encryption App That Wants to Replace Gmail, Dropbox, and HipChat". Wired. Retrieved 2015-05-19.

[second-audit-4] Timm Trevor (2014-01-20). "SecureDrop Undergoes Second Security Audit". Freedom of the Press Foundation. Retrieved 2014-07-13. This time, we worked with the German security firm Cure53, who has previously done audits of GlobaLeaks, Mailvelope, and CryptoCat.

[5] "Cure53 – Fine penetration tests for fine websites". cure53.de. Retrieved 2025-07-29.

[6] Heiderich, Mario; Späth, Christopher; Schwenk, Jörg (2017). Foley, Simon N.; Gollmann, Dieter; Snekkenes, Einar (eds.). "DOMPurify: Client-Side Protection Against XSS and Markup Injection". Computer Security – ESORICS 2017. Cham: Springer International Publishing: 116–134. doi:10.1007/978-3-319-66399-9_7. ISBN 978-3-319-66399-9.

[1]

[2]

[3]

[4]

[5]

[6]

Cure53 📖 Wikipedia

History

References

External links

📚 Artikel Terkait di Wikipedia

Bitwarden

Surfshark VPN

Mozilla VPN

Network Time Protocol

Mullvad

ODK (software)

Cross-site scripting

OpenKeychain