logo

Keep Good Company and You Shall be of The Number

RenovaBT, one of the most experienced a “True” Value-added Distributor in Turkiye and neighbourhood countries in the region, is recognized as the Trusted Advisor with having a forefront portfolio of 15+ technology vendors
info@renovabt.com
+90(312)6661349

Vendors

Cure53 security audit reaffirms RealVNC’s strong security stance

Cure53 security audit reaffirms RealVNC’s strong security stance

RealVNC has recently engaged with Berlin-based security consultancy Cure53 to perform a complete security audit of its flagship VNC Connect remote access service. The audit included VNC Server and VNC Viewer on all supported platforms (Windows, Mac, Linux, Android, and iOS), the VNC Connect management portal, and backend services.

The extensive security audit, performed in early 2022, involved giving Cure53 access to all source code, protocol documentation, and development teams.

Who are Cure53?

A German security firm with a strong and respected presence in the industry, Cure53 is known for reviewing similar technologies to ours. Their motto is “fine penetration tests for fine websites,” and some of the names they’ve worked with include Mozilla VPN, Opera VPN, and 1Password.

Why?

We believe that security is a critical aspect of modern technology services. Customers should be asking for this level of transparency from any prospective supplier, particularly given that Remote Access software is powerful and any vulnerability can be disastrous.

At RealVNC, we operate from the standpoint that no company should ever take a vendor’s word for it when they claim their software is secure, which is why we chose to complete a white-box audit with a highly regarded security consultancy to prove it”, said our Chief Information Officer, Andrew Woodhouse.

What?

Cure53 has provided us with a detailed security audit report. During the engagement, any issues found were triaged by RealVNC, and any deemed needing immediate attention were taken into our development lifecycle and, patches addressed accordingly.

Of the 38 issues across the entire codebase – with none being assessed as critical – a remarkably low number according to Cure53 – 32 were fixed and confirmed by Cure53 and 6 were either flagged as false alerts or works-as-intended.

What’s next?

RealVNC will continue to work on providing our customers with the most secure remote access solution on the market.