Hall Of Fame

Here is the list of the individuals and organizations that explicitly helped us in improving the security of the EU Institutions, Agencies, and Bodies by reporting security issues and vulnerabilities discovered. Anybody interested in reporting, should read the CERT-EU Responsible Disclosure Policy first.

Ashish Kumar

  Friday, April 20, 2018 2:58:00 PM CEST

atmon3r (Twitter:@atmon3r)

  Friday, April 20, 2018 3:01:00 PM CEST

Anti Räis - https://www.clarifiedsecurity.com/

  Friday, April 6, 2018 6:49:00 PM CEST

Chirag Gupta - https://www.linkedin.com/in/chiraggupta8769 - www.Twitter.com/chiraggupta8769 - chiraggupta8769@gmail.com

  Friday, April 6, 2018 6:45:00 PM CEST

Prathamesh Joshi - https://www.facebook.com/pathya.joshi - @pr4th4m_joshi

  Friday, April 6, 2018 6:42:00 PM CEST

Mohammed Shameem Shahnawaz - @_M_Shahnawaz - https://www.linkedin.com/in/mohdshameem36/

  Tuesday, March 27, 2018 9:55:00 AM CEST

Dawood Ansar

  Tuesday, March 27, 2018 9:54:00 AM CEST

Ashu Jain

  Tuesday, March 27, 2018 9:56:00 AM CEST

Yassine Nafiai - @Ynafiai

  Wednesday, March 21, 2018 7:32:00 PM CET

Gonnabathula Vaishno Chaitanya - https://www.linkedin.com/in/gvaishno/ - https://twitter.com/ghoststarops

  Monday, March 5, 2018 5:31:00 PM CET

Zeba Naaz - https://www.linkedin.com/in/zeba-naaz-178212138/ - zebanaaz2203@gmail.com

  Monday, March 5, 2018 4:18:00 PM CET

Djaber Djoukhrab - www.facebook.com/djrootdz

  Friday, March 2, 2018 12:28:00 PM CET

Dadou bendjedidi (Dadou Dz , https://www.facebook.com/Mister.DadouDz )

  Thursday, March 1, 2018 6:30:00 PM CET

Havoc Guhan - https://fb.com/havocgwen

  Thursday, March 1, 2018 5:31:00 PM CET

Alessandro Brucato - alessandro.brucato@protonmail.com - https://www.linkedin.com/in/alessandro-brucato/

  Thursday, March 1, 2018 2:57:00 PM CET

Gonnabathula Vaishno Chaitanya - https://twitter.com/ghoststarops - https://www.linkedin.com/in/gvaishno/

  Thursday, March 1, 2018 2:56:00 PM CET

Shubham Maheshwari - https://www.linkedin.com/in/shubham-maheshwari-83065b113/

  Thursday, March 1, 2018 2:52:00 PM CET

Rounak Dhadiwal (Intern at HackersEra Cyber Security Consultancy PVT Ltd) www.linkedin.com/in/rounak-dhadiwal-hacker999

  Thursday, March 1, 2018 2:46:00 PM CET

Renwa - https://twitter.com/RenwaX23

  Thursday, March 1, 2018 2:45:00 PM CET

Kirtikumar Anandrao Ramchandani - https://www.linkedin.com/in/kirtikumar-anandrao-ramchandani-ba949b153

  Monday, February 26, 2018 10:54:00 AM CET

Cosmin Ciobanu

  Thursday, February 22, 2018 8:32:00 AM CET

Thrivikram Gujarathi - https://www.linkedin.com/in/thrivikram-gujarathi-independent-web-penetration-tester-53074796

  Monday, February 5, 2018 2:57:00 PM CET

Muhammad Muhaddis - http://www.muhaddis.info

  Wednesday, February 21, 2018 5:15:00 PM CET

JHANG JHE YU - @honcbb

  Wednesday, February 21, 2018 5:06:00 PM CET

Adrien Jeanneau - Security Consultant - @Synetis

  Wednesday, February 21, 2018 2:25:00 PM CET

Alexis Laborier https://fr.linkedin.com/in/alexis-laborier-b3544b132

  Tuesday, February 20, 2018 4:54:00 PM CET

Timothée Menochet - Security Consultant @Synetis

  Tuesday, February 6, 2018 4:12:00 PM CET

Oladigbolu, Shuaib Abidemi - twitter:@_sawzeeyy

  Tuesday, February 6, 2018 4:07:00 PM CET

Youssef ABYAA - twitter.com/josef0x

  Tuesday, February 6, 2018 3:44:00 PM CET

Ifrah Iman - ifrahiman99@gmail.com

  Tuesday, February 6, 2018 4:01:00 PM CET

Nicolas Francois Aka MiaouuuuX - ( https://linkedin.com/in/nicolas-francois-a570b643/)

  Tuesday, February 6, 2018 3:51:00 PM CET

Mehul Patil

  Monday, February 5, 2018 2:29:00 PM CET

Shivam Pandya

  Monday, February 5, 2018 2:30:00 PM CET

Ankur Pandey (https://www.linkedin.com/in/ankur-pandey-07ab3b54/)

  Tuesday, January 30, 2018 10:12:00 AM CET

Samet SAHIN (Twitter: @F4LCONE_ Linkedin: sametsahinn)

  Tuesday, January 30, 2018 10:33:00 AM CET

Tarık A. Konuşkan

  Tuesday, January 30, 2018 10:16:00 AM CET

Taha Smily (https://twitter.com/TahakhanTaha)

  Thursday, January 25, 2018 10:07:00 AM CET

Mahesh Raykar (https://www.linkedin.com/in/maheshraykar1997/)

  Tuesday, January 23, 2018 4:12:00 PM CET

Aditya Jadhav - www.securecyberfuture.com

  Thursday, December 21, 2017 6:57:00 PM CET

JT__- (@0x4a545f5f2d)

  Friday, January 19, 2018 11:31:00 AM CET

Emad Shanab (@*Alra3ees*)

  Tuesday, January 16, 2018 9:29:00 PM CET

Nick Kelley

  Monday, January 15, 2018 9:41:00 AM CET

Vikash Chaudhary (CEO & Founder at HackersEra Cyber Security Consultancy PVT Ltd) - https://www.linkedin.com/in/vikash-chaudhary-796a44120/ - www.hackersera.com

  Thursday, December 21, 2017 6:54:00 PM CET

Sweepatic (info@sweepatic.com, https://www.sweepatic.com, @sweepatic)

  Monday, December 4, 2017 2:04:00 PM CET

Yassine Nafiai (www.facebook.com/yassine.nafiai.1 | twitter.com/YNafiai)

  Monday, November 20, 2017 9:00:00 AM CET

Suresh Narvaneni (https://www.linkedin.com/in/mrreboot/)

  Tuesday, October 31, 2017 11:17:00 AM CET

Chandrashekar Masapaka (https://www.facebook.com/Chandrashekar.Mas)

  Monday, October 30, 2017 6:25:00 PM CET

Lacroute Serge (https://twitter.com/fakessh)

  Monday, October 30, 2017 7:18:00 PM CET

Akash Labade (https://twitter.com/AkashLabde3, https://www.linkedin.com/in/akash-labade-9463a8111)

  Monday, October 30, 2017 6:22:00 PM CET

Rohit Dalvi Twitter :- twitter.com/dalvia62

  Wednesday, October 18, 2017 5:04:00 PM CEST

Aamir Rehman Yousafzai Lead Penetration Tester @ JAZZ HQ Islamabad. fb: https://web.facebook.com/yousafzian2

  Wednesday, October 18, 2017 5:00:00 PM CEST

Himanshu rahi <hunny.rahi55@gmail.com>

  Thursday, September 28, 2017 3:20:00 PM CEST

SHWETABH SUMAN ( @SHWETABHSUMAN11 ) - https://www.facebook.com/profile.php?id=100011024580051

  Thursday, September 28, 2017 3:19:00 PM CEST

Lewis, https://twitter.com/LewisBugBounty

  Thursday, September 28, 2017 11:15:00 AM CEST

Athul Jayaram (@athuljayaram) - https://www.linkedin.com/in/athuljayaram - http://athuljayaram.com

  Friday, September 15, 2017 6:04:00 PM CEST

SHWETABH SUMAN ( @SHWETABHSUMAN11 ) - https://www.facebook.com/profile.php?id=100011024580051

  Friday, September 15, 2017 6:01:00 PM CEST

MOHAMMED ADEL - https://www.facebook.com/xXalreshyxX

  Thursday, September 14, 2017 5:20:00 PM CEST

Akshay Prashant Borase <mr.akshayborase@gmail.com>

  Tuesday, August 29, 2017 10:03:00 AM CEST

Zvi Dolgov ENGINEER, NETWORK CONSULTING zdolgov@cisco.com

  Tuesday, August 29, 2017 9:56:00 AM CEST

Piyush Soni

  Wednesday, August 23, 2017 2:28:00 PM CEST

Sajibe Kanti - @Sajibekantibd

  Wednesday, August 23, 2017 2:21:00 PM CEST

Zvi Dolgov

  Thursday, August 17, 2017 2:04:00 PM CEST

İsmail BÜLBÜL (Uluslararası Siber Güvenlik Federasyonu - www.usgf.org.tr)

  Thursday, August 17, 2017 2:01:00 PM CEST

Luigi Gubello - twitter.com/1005458

  Monday, July 3, 2017 3:43:00 PM CEST

Vasim Shaikh - https://www.linkedin.com/in/vasim-shaikh-094507110?trk=hp-identity-name

  Wednesday, July 12, 2017 4:32:00 PM CEST

Richard Alviarez (@Queseguridad)

  Wednesday, July 5, 2017 2:08:00 PM CEST

Tansel ÇETIN

  Tuesday, June 20, 2017 3:23:00 PM CEST

Silvia Väli (https://www.clarifiedsecurity.com/silvia-vali/)

  Tuesday, June 20, 2017 8:52:00 AM CEST

Cameron Dawe

  Tuesday, May 31, 2016 4:59:00 PM CEST

Wen Bin KONG - (@kongwenbin - https://linkedin.com/in/kongwenbin)

  Friday, June 9, 2017 7:09:00 PM CEST

Martin Thirup Christensen - https://twitter.com/Mthirup

  Wednesday, June 7, 2017 2:24:00 PM CEST

Liam Somerville - https://www.linkedin.com/in/liamsomerville/

  Tuesday, May 23, 2017 3:30:00 PM CEST

Steven (@Keritzy)

  Monday, May 22, 2017 4:50:00 PM CEST

Anti Räis - Clarified Security

  Friday, June 17, 2016 4:34:00 PM CEST

Sadik Shaikh - https://www.extremehacking.org

  Monday, May 22, 2017 4:27:00 PM CEST

Dardan Prebreza

  Friday, May 12, 2017 2:47:00 PM CEST

Florian Charbonneau - https://twitter.com/DrStache_

  Monday, May 22, 2017 4:31:00 PM CEST

Nitesh Sharma - https://www.linkedin.com/in/niteshusharma

  Monday, May 8, 2017 3:42:00 PM CEST

Adesh Nandkishor Kolte facebook.com/kolteadesh

  Thursday, December 15, 2016 1:26:00 PM CET

Harsh Joshi https://www.facebook.com/harshjoshi.85

  Friday, April 28, 2017 10:16:00 AM CEST

Doğukan Karaciğer https://twitter.com/ <https://twitter.com/Karacigerdogu>

  Friday, April 28, 2017 2:31:00 PM CEST

Sadik Shaikh https://www.extremehacking.org

  Friday, April 28, 2017 9:36:00 AM CEST

Jolan Saluria

  Wednesday, April 26, 2017 4:56:00 PM CEST

Fidan Hakaj - (@fdnhkj - https://www.linkedin.com/in/fidan-hakaj/)

  Wednesday, April 26, 2017 7:58:00 AM CEST

Damian Ebelties

  Tuesday, May 31, 2016 5:08:00 PM CEST

CDL (@sxcurity of Project Insecurity - https://insecurity.zone/)

  Monday, April 24, 2017 5:07:00 PM CEST

Alyssa Herrera (https://www.linkedin.com/in/Alyssa-O-Herrera)

  Monday, April 24, 2017 4:57:00 PM CEST

Vipin Chaudhary (@vipinxsec )

  Monday, April 24, 2017 4:53:00 PM CEST

Nagaraju Repala (@nagarockshard)

  Monday, April 24, 2017 4:20:00 PM CEST

Konduru Jashwanth

  Monday, April 24, 2017 4:21:00 PM CEST

Lewis Wildgoose (@LewisWildgoose)

  Friday, April 14, 2017 1:54:00 PM CEST

David Castro (SadFud) - https://www.linkedin.com/in/david-castro-valdeolmillos-a0048311a/

  Wednesday, April 12, 2017 10:57:00 AM CEST

Hamit Abiş

  Thursday, April 6, 2017 2:29:00 PM CEST

Robert Wiggins - https://xsses.rocks/blog/

  Thursday, April 6, 2017 11:16:00 AM CEST

Cem Onat Karagün (@cemonatk)

  Thursday, April 6, 2017 11:15:00 AM CEST

Sander Van Dooren

  Monday, February 20, 2017 4:23:00 PM CET

Amine Hm (facebook.com/AMiN3.HM)

  Tuesday, August 16, 2016 3:57:00 PM CEST

Honc - honcbb@gmail.com

  Thursday, January 12, 2017 5:31:00 PM CET

Anas Laabab - @ANAS_L44B4B

  Thursday, December 15, 2016 2:05:00 PM CET

Suhas Gaikwad

  Thursday, December 15, 2016 8:17:00 AM CET

Marko Belzetski of Clarified Security

  Wednesday, December 14, 2016 8:26:00 AM CET

Sreedeep.Ck Alavil Kerala Police Cyber Dome Volunteers Commander www.facebook.com/Hacker.Sreedeep.Ck

  Wednesday, December 14, 2016 8:29:00 AM CET

Vishal Shukla https://www.facebook.com/shukla304

  Wednesday, December 14, 2016 8:32:00 AM CET

Alec Blance (blancealec1@gmail.com) www.facebook.com/alec.blance

  Friday, December 2, 2016 3:02:00 PM CET

SaifAllah benMassaoud « FB/WhiteHatSecuri & @benmassaou »

  Friday, December 2, 2016 3:01:00 PM CET

Evan Ricafort (@evanricafort) www.evanricafort.com

  Wednesday, November 23, 2016 4:51:00 PM CET

Md. Nur A Alam Dipu (depu1994@gmail.com)

  Friday, November 18, 2016 8:57:00 AM CET

Taavi Sonets (taavi@clarifiedsecurity.com) CLARIFIEDSECURITY

  Monday, December 5, 2016 10:26:00 AM CET

Nirmal Thapa (twitter.com/nirmal_4n_)

  Tuesday, November 15, 2016 10:25:00 AM CET

Aamir Rehman Lead Penetration Tester @Mobilink HQ Islamabad. fb: https://web.facebook.com/yousafzian2

  Monday, November 14, 2016 3:19:00 PM CET

Vishal Shukla https://www.facebook.com/shukla304

  Wednesday, December 14, 2016 8:31:00 AM CET

Elar Lang / Clarified Security

  Friday, June 10, 2016 11:53:00 AM CEST

Max Derrick (twitter.com/Max1noz)

  Monday, October 24, 2016 10:36:00 AM CEST

Mohd Aqeel Ahmed (www.fb.com/Ciph3r00t)

  Thursday, October 27, 2016 1:44:00 PM CEST

Raad Firas Haddad (Contact information : @raadfhaddad - raadfhaddad@gmail.com)

  Friday, October 7, 2016 3:17:00 PM CEST

Jayson Vasquez Rubio

  Monday, October 3, 2016 12:29:00 PM CEST

Antonio Cannito (ant.cannito[@]gmail.com - https://www.facebook.com/antonio.cannito.banzi)

  Monday, September 12, 2016 10:19:00 AM CEST

Squnity (squnity.com)

  Monday, August 22, 2016 4:33:00 PM CEST

Kyaw Thiha (https://www.linkedin.com/in/kyawthiha89)

  Thursday, August 18, 2016 1:39:00 PM CEST

Cristian Joseph D. Legacion - Web Security Researcher (https://www.facebook.com/cj.legacion10)

  Tuesday, August 16, 2016 3:24:00 PM CEST

Yassine Algangaf - Attack prevention mechanisms Reseacher and proof of concepts developer

  Thursday, August 11, 2016 9:49:00 AM CEST

Karl Kristjan Raik - Clarified Security

  Tuesday, August 9, 2016 5:26:00 PM CEST

Georges Taupin - Security Consultant @Synetis (www.synetis.com)

  Tuesday, August 9, 2016 12:01:00 PM CEST

Arbin Godar

  Tuesday, August 9, 2016 11:53:00 AM CEST

Ahmad Amjad Alfoqha'a

  Wednesday, July 20, 2016 5:33:00 PM CEST

Mohamed Osman Saeed - DTS Solution

  Monday, July 18, 2016 6:01:00 PM CEST

Mert Tasci

  Friday, July 15, 2016 10:09:00 AM CEST

Mohamed Abdelbaset Elnoby - Seekurity Inc.

  Friday, July 8, 2016 11:53:00 AM CEST

Jaanus Kääp

  Wednesday, July 6, 2016 4:57:00 PM CEST

Mohammed Chamli - Government Laboratory

  Wednesday, July 6, 2016 3:27:00 PM CEST

Ayoub Ait Elmokhtar

  Monday, July 4, 2016 2:42:00 PM CEST

Fabien Dromas - Security Consultant @Synetis

  Friday, June 24, 2016 10:29:00 AM CEST

Adria Romero from Enxampat

  Monday, June 20, 2016 2:02:00 PM CEST

Rio Sherri (Infogen AL)

  Monday, June 20, 2016 2:33:00 PM CEST

Yann CAM - Security Consultant @ASafety - Synetis

  Monday, June 20, 2016 2:34:00 PM CEST

Djaballah Mohamed Taher

  Monday, June 20, 2016 2:42:00 PM CEST

Hamza Bachikh (Alhamdulillah) (@miZo_Rayk)

  Monday, June 20, 2016 2:56:00 PM CEST

Maximilian Kretschmer D.S.K Datensicherheit Kretschmer UG

  Friday, June 17, 2016 4:36:00 PM CEST

Michal Koczwara and Siavosh Zarrasvand

  Friday, June 17, 2016 4:36:00 PM CEST

Ricardo Almeida

  Friday, June 17, 2016 4:37:00 PM CEST

Ketankumar B. Godhani (@KBGodhani)

  Monday, June 6, 2016 4:22:00 PM CEST

Benjamin Kunz Mejri

  Friday, June 3, 2016 12:01:00 PM CEST

Lawrence Amer from Vulnerability Lab (www.vulnerability-lab.com)

  Thursday, June 2, 2016 10:09:00 AM CEST

Jose Carlos Exposito Bueno from Internet Security Auditors

  Wednesday, June 1, 2016 10:13:00 AM CEST

Marcin Szydlowski

  Tuesday, May 31, 2016 10:19:00 AM CEST

Vincent Malguy

  Tuesday, May 31, 2016 5:24:00 PM CEST

Florian Kunushevci

  Tuesday, May 31, 2016 5:32:00 PM CEST

Roberto Zanga

  Tuesday, May 31, 2016 5:39:00 PM CEST

Rahul Kankrale

  Thursday, May 26, 2016 10:34:00 AM CEST

Ahmed Adel Abdelfattah

  Thursday, May 19, 2016 10:34:00 AM CEST

Ali Tabish

  Thursday, May 19, 2016 10:36:00 AM CEST

Ahmet Omeroglu

  Thursday, May 19, 2016 10:41:00 AM CEST

Mahmoud Abdal Azez

  Thursday, May 19, 2016 2:01:00 PM CEST

Mustafa Hasan

  Thursday, May 12, 2016 3:39:00 PM CEST

Karol Celiński from Immunity Systems Sp. z o.o.

  Thursday, May 12, 2016 3:13:00 PM CEST

BALAJI P R from infoseclabs.in

  Thursday, May 12, 2016 3:42:00 PM CEST

Hadji Samir from Vulnerability Lab (www.vulnerability-lab.com)

  Thursday, May 12, 2016 3:46:00 PM CEST

Roy Jansen

  Monday, March 7, 2016 12:09:00 PM CET

CERT-EU Responsible Disclosure Policy

What to report to CERT-EU:

Security Incidents and Vulnerabilities, which occur in software components, protocols, or hardware of websites or systems of EU Institutions Agencies or Bodies, and may affect significant number of users and/or critical infrastructure.

Vulnerability reporting policy:

CERT-EU reserves the right to accept or reject any vulnerability disclosure report at its discretion, based on the following general criteria:

  1. Pre-disclosure handling of the potentially sensitive vulnerability details:
    • The vulnerability should have not already been publicly disclosed.
    • It is important to report the vulnerability as quickly as possible after its discovery.
    • Even after reporting the vulnerability, no information on the security problem should be shared with others until the incident has been processed and resolved. Failure to comply with this requirement may result in the reported being removed from the CERT-EU Hall of Fame.
  2. The vulnerability finding must be new and severe enough to be considered as eligible for a mention in the Hall of Fame of CERT-EU. The severity of a vulnerability finding is assessed by CERT-EU at its own discretion. CERT-EU reserves the right to reject reports of vulnerabilities, which have already been previously reported.

Vulnerability reporting instructions:

  • E-mail your findings to reports (at) cert.europa.eu.
  • Encrypt your email using the PGP key available on CERT-EU website
  • Provide as much information as possible regarding the finding, in order for CERT-EU to handle the incident as efficiently as possible.

If more information is required, CERT-EU will contact the reporter, therefore any contact details (email address and telephone number) should be valid.

If the previously mentioned conditions are satisfied, CERT-EU will proceed with notification to the impacted party. Once the issue has been fixed or no later than 3 months since the initial report, the reporter may be mentioned (at his own discretion) in the Hall of Fame of CERT-EU (this page) with a short description of the type of vulnerability reported.

Info

This website is managed by CERT-EU. Find out more about us.

 

 

For questions or comments, please contact us at:

email: cert-eu@ec.europa.eu

PGP Fingerprint:  D894 7318 0495 62AB 9DE8 41DC B3F8 FCC1 B607 5AB8

Emergency phone: +3222990005

 

 

Tools

Load latest edition

Saturday, April 21, 2018

1:08:00 PM CEST

Subscribe
RSS
Facebook
Facebook
Subscribe
manage
Subscribe
current page | all pages
EMM for iPadEMM for Android

Edition

Edition: 1

Main Menu
About Us
White Papers
Security Advisories
CERT Top Stories
CERT Top Stories - 24h
Latest News
Big Screen Map
Breaking News
Advanced Search
News about CERTs
Hall Of Fame
Vacancies at CERT-EU