Utimaco has been made aware of a vulnerability affecting the Windows installations of some of our products.
This vulnerability could allow for an attacker to escalate Windows privileges from a standard “Authenticated User” to that of an Administrator or SYSTEM. The firmware of your Hardware Security Modules is not affected though.
Please consult the linked advisory for the details of this vulnerability, and check whether you are affected. We have published an updated SecurityServer product CD and a patch in our support portal under Support -> Downloads. Login to the support portal is required.
Download Security Advisory Document
Download HotFix Patch
This issue has been reserved in the Common Vulnerabilities and Exposures list as CVE-2020-26155. It will be published end of January 2021. Do not disclose this vulnerability before its publication on the CVE website to give all affected customers due time for fixing their installations.
CREAplus, authorized Utimaco training partner, is going to deliver an online hands-on technical training for hardware security module (HSM), on 3-4 June 2021.
CREAplus, authorized Utimaco training partner, successfully delivered another 2-day online hands-on technical training on hardware security module (HSM), in April 2021.
The largest international live cyber defense exercise Locked Shields 2021, in which CREAplus experts also participated with the Cynet 360 platform, has successfully come to an end. 
CREAplus is a part of the world's largest cyber defense exercise - more than 2000 experts from 30 nations are taking part in the Locked Shields 2021, the largest and most complex international Live-Fire Cyber Exercise organized by NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE). 
With the Utimaco u.trust 360 administration platform you can now remotely access your Atalla AT1000 and CryptoServer LAN V5 hardware security modules (HSMs) for real-time monitoring, configuration or reporting purposes on premises or in the cloud.