At NordPass, we take security seriously. After all, it’s what NordPass is all about. We are pleased to announce that our business solution, NordPass Business, has undergone a comprehensive security audit carried out by the German auditing firm Cure53.
Why was NordPass Business subjected to a security audit?
At NordPass, we put in the time and effort to ensure that everything you store in your encrypted vault is properly protected. We employ advanced encryption algorithms alongside extra security features in an effort to mitigate cyber attacks, which are becoming increasingly more sophisticated by the day.
We feel that working with independent third-party auditors is not only important but essential. Having an independent team of virtual security experts at Cure53 look and review our code for security vulnerabilities allows us to see NordPass in ways we might not have considered. It has enabled us to take action and improve the security of our service. We also feel that security is not a one-time project but an ongoing process, and that independent audits showcase our dedication to transparency and building trust.
We’ve already had our B2C product independently audited by Cure53, and now we have subjected the B2B solution to a thorough audit.
We'd also like to thank the team at Cure53 for their work and expertise. Their know-how, close cooperation, and professional approach is the reason NordPass Business is becoming a safer password management solution.
The findings
It took a total of 21 person-days for the cybersecurity experts at Cure53 to perform a thorough security analysis of NordPass Business. The audit scope included the Android, iOS, and desktop apps as well as the browser extensions, Admin Panel, and Nord Account.
Throughout the audit, the emerging findings and security-related observations regarding NordPass Business provided us with valuable insights into how our security practices could be improved. Cure53 identified 15 security-relevant issues, one of which had a “High” severity score.
”It needs to be noted, however, that the high-severity issue was fixed quickly by the NordPass team and the fix was verified by Cure53 by getting insight into the changed sourced code. The problem no longer exists”
We are happy that NordPass Business has completed the audit. Now our users don’t have to take just our word for it when it comes to the security of their sensitive information.
Moving forward
As we continue our journey, we focus not only on introducing new features to NordPass Business but also on improving its security. We look forward to future cooperations with independent security auditors to show that we are committed to finding new and better ways to ensure our customers’ sensitive data protection.
The completed NordPass Business audit is the first vital step in wrapping up the Beta stage and moving forward.