Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update DIVD-2024-00004.md #877

Merged
merged 2 commits into from
Nov 25, 2024
Merged

Update DIVD-2024-00004.md #877

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
b6ba7a2
Update DIVD-2024-00004.md
Tabitha5555 Nov 22, 2024
8851303
Update DIVD-2024-00004.md
Maximand Nov 25, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions _cases/2024/DIVD-2024-00004.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ timeline:
---

## Summary
This initiative focuses on identifying and addressing vulnerabilities in the publicly accessible assets of NGOs.
This initiative focuses on identifying and addressing vulnerabilities in the publicly accessible assets of NGOs.

## Recommendations
After receiving a notification, it is very important that the vulnerability outlined in the correspondence is promptly addressed and remediated. The notification will provide detailed information, including the specific location and a comprehensive description of the identified vulnerability.
Expand All @@ -45,9 +45,9 @@ Please do not hesitate to reply to this email if you have any questions or need
## What we are doing
The Dutch Institute for Vulnerability Disclosure (DIVD) has been proactively identifying and assessing non-governmental organizations (NGOs) for potential security vulnerabilities. Our team conducts thorough scans to detect any known weaknesses within these entities. Upon identifying vulnerabilities, we promptly notify and inform the affected organizations.

These notifications are dispatched in multiple phases. The initial phase addresses general vulnerabilities uncovered during our preliminary scanning operations. Subsequently, a more detailed, manual inspection is conducted to identify deeper, more complex issues. The findings from this rigorous analysis are communicated in a second wave of notifications. This methodical approach ensures that NGOs are well-informed and equipped to enhance their cybersecurity posture.
{% comment %} Leave this here, so we see a timeline{% endcomment %}
These notifications are dispatched in multiple phases. The initial phase is in collaboration with Cyber Peace Institute, The Hague Humanity Hub and the The Hague Municipality and is focused on securing NGOs within The Hague. After this collaboration ends, DIVD will continue to scan the rest of the world for vulnerable assets of NGOs to notify and inform them of any vulnerabilities that are found.

{% comment %} Leave this here, so we see a timeline {% endcomment %}
{% include timeline.html %}

## More information
Expand Down