RealVNC Becomes First and Only Remote Access Solution to Complete White Box Audit to Validate Security
VNC Connect by RealVNC, the remote access service used by hundreds of millions of people worldwide, was audited by Cure53, the Berlin, Germany-based IT security consultancy who have also audited other industry leading software such as Mozilla VPN, 1Password and Bitwarden. The comprehensive audit, which took 86 person days and included VNC Server and VNC Viewer on Linux, Windows and Mac, VNC Viewer for iOS and Android, the VNC Connect management portal and backend services, found 38 security-relevant discoveries, none of which were critical and only three were deemed high severity, and these were fixed immediately. The report states, in conclusion, that RealVNC places a strong focus on the security posture of all its components.
“As the technologists responsible for bringing remote access to the mass market, we are today setting new standards and expectations for security in the face of the challenges of the modern IT environment. IT buyers of remote access technologies should expect no less than independent and comprehensive third-party validation of vendor claims. This is especially true for remote access software where the stakes are high, and a mistake could be reputationally damaging or even existential. With Cure53’s report, buyers can be confident that choosing RealVNC as their remote access vendor will never be a regret,” said Adam Greenwood-Byrne, CEO of RealVNC.
A white box security audit is significantly more in-depth than the more common black box penetration test (which RealVNC also commissions by an external organization annually), as the auditors have access to all of the source code, binaries and API/protocol documentation. Of the 38 vulnerabilities found across the range of software and services tested, 32 have been properly addressed — with the fixes confirmed by Cure53 — while the other six were flagged as either false-alerts or works-as-intended and evaluated to be of lower risk.
“At RealVNC, we operate from the standpoint that no company should ever take a vendor’s word for it when they claim their software is secure, which is why we chose to complete a white box audit with a highly regarded security consultancy to prove it,” said Andrew Woodhouse, CIO of RealVNC.
The Cure53 team is highly motivated to find issues when completing white box penetration tests. The fact that no critical threats were found reinforces RealVNC’s focus on ensuring its customers remain safe from threats when using VNC Connect.
“Cure53 is happy to state that test preparation, test execution and also the fix verification, which is one of the most important parts of such an audit, went smoothly and professionally. It is clear that RealVNC has demonstrated a genuine interest in ensuring VNC Connect's security and is prepared and committed to maintaining the high standards we have observed,” said Dr.-Ing. Mario Heiderich, Founder of Cure53.
Headquartered in Cambridge, RealVNC's products for desktop, mobile and embedded platforms make it easy for users to access and operate devices remotely while enabling remote users to work with technicians to resolve problems easily.
“We’re not shying away from any of the issues the report found. We actively fixed issues as they came up and, as security is an ever changing landscape, we’ll continue to ensure the security of VNC Connect in future iterations of the service,” said Ben May, Head of Cyber Security at RealVNC.
To review Cure53's summary of the audit, click here, and to learn more about why RealVNC chose to conduct a Cure53 audit, click here.
ABOUT REALVNC
RealVNC’s secure remote access and management software is used by hundreds of millions of people worldwide. Their software helps organizations cut costs and improve the quality of supporting remote devices and applications, as well as enabling remote working. RealVNC is the original, UK-based, inventor of VNC remote access software and they support an unrivaled mix of desktop, mobile and embedded platforms.
ABOUT CURE53
Cure53 offers classic black-box penetration tests (zero-knowledge) as well as white-box tests and code audits. Web application and mobile app developers speak many languages and so do we. From classic languages such as PHP, JavaScript, ActionScript, Java, Ruby, Python and Perl to more exotic candidates like web back-ends written in C++ and Delphi – we've seen them.
Since Cure53 was founded in 2007, we have performed hundreds of penetration tests against all kinds of web applications, online services, hardware interfaces, mobile applications, libraries and crypto tools. We value manual and thorough tests, human interaction and communication and a short yet-to-the-point penetration test report without overhead or pie charts no one wants to see.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20220609005211/en/
Contact information
Lauren Meckstroth
lauren@theabbiagency.com
702.499.7388
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Amazfit Introduces Active Max: Bigger, Brighter, and Built for Maximum Performance30.12.2025 10:00:00 EET | Press release
Amazfit, a leading global smart wearable brand by Zepp Health (NYSE: ZEPP), today announces the Amazfit Active Max, the newest member of the Amazfit Active family. Built for everyday athletes and anyone looking to elevate their wellness routine, Active Max blends a 1.5″ ultra-bright AMOLED display, up to 25 days of battery life, easy podcast listening and advanced training tools to support consistent training and clearer visibility across any activity. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251230279762/en/ Bigger Display. Max Clarity: A 1.5″ ultra-bright AMOLED display delivers exceptional clarity in any setting—whether in the gym, outdoors, or on the move. With up to 3,000 nits of peak brightness, the screen ensures real-time stats are always easy to read. Active Max introduces a higher-precision training experience through BioCharge™ readiness insights, adaptive coaching, enhanced strength-training tracking, and c
2026 Future of Fitness Report: Experts from Coherent Solutions Turn Years of Fitness Industry Software Engineering Work Into a Guidebook on Future-proof Digital Transformation in Fitness29.12.2025 19:48:00 EET | Press release
Coherent Solutions has released its 2026 Future of Fitness report, capturing years of domain knowledge from helping emerging and global fitness brands drive digital transformation, innovate, and improve member engagement. “The Future of Fitness: Winning with Digital Value Creation” takes lessons from real projects and fitness enthusiasts, turning them into a guidebook for the next era of fitness. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251229965712/en/ New Fitness Tech Whitepaper by Coherent Solutions While the global fitness market is on track to surpass $257 billion, and brands are expanding globally, pioneering new regions, and implementing new technologies, the report highlights the most effective growth trajectory in acknowledging the importance of technology as equal to supporting the fitness community. "Most people only spend 3–5 hours a week in a gym. That leaves 160+ hours where their choices and habits are i
Hanshow and the University of Cambridge Launch Joint Research on Augmented Intelligent Hybrid Wireless Technology25.12.2025 13:34:00 EET | Press release
Hanshow, a global leader in electronic shelf labels (ESL) and digital store solutions, has entered into a multi-year research collaboration with the University of Cambridge, one of the world’s most prestigious academic institutions. The partnership will focus on joint research and innovation in next-generation intelligent hybrid wireless technologies, marking an important milestone in Hanshow’s continued investment in core technologies and long-term innovation. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251225988816/en/ This collaboration leverages the University of Cambridge’s deep expertise in fundamental wireless technology research, alongside Hanshow’s extensive industry experience, to further strengthen multi-protocol integration capabilities and expand scalable applications across diverse retail scenarios. Guided by shared principles of innovation, collaboration, openness, and knowledge sharing, the two parties aim
Social Development Bank Highlights Strategic Partnerships and Global Initiatives at DeveGo 202524.12.2025 18:27:00 EET | Press release
The Social Development Bank (SDB) hosted the second edition of the Entrepreneurship and Modern Business Practices Forum, “DeveGo 2025”, from 21 to 23 December in Riyadh. Held under the patronage of His Excellency Eng. Ahmed bin Sulaiman Al Rajhi, Minister of Human Resources and Social Development and Chairman of SDB’s Board of Directors, the forum brings together government leaders, global experts, investors, and entrepreneurs to shape the future of entrepreneurship and modern business practices in the Kingdom of Saudi Arabia. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251224036724/en/ From right to left: Ahmed Al Rajhi, Saudi's Minister of Human Resources and Social Development, H.E. Rebeca Grynspan, Secretary-General of UNCTAD, and Sultan Al Hamidi, CEO of Social Development (Photo: AETOSWire) Opening the forum, Minister Al Rajhi delivered a keynote speech on the growing vibrancy of Saudi Arabia’s entrepreneurial movem
Making Science Unveils ‘AWAKE’: The AI Venture Studio Industrialising Startup Creation and AI-First Innovative Solutions23.12.2025 21:51:00 EET | Press release
Making Science, the global digital acceleration consultancy, today announced the launch of AWAKE Venture Studio. This "AI-first" model represents a new era in systematic innovation, designed to identify, prototype, and scale both internal proprietary solutions and independent AI-native startups with global reach. The launch of AWAKE is motivated by the significant efficiency gains of orders of magnitude that Making Science has already achieved through the internal integration of AI. By applying these methods, the firm has achieved a 2x acceleration in tech feature development reducing time in the deployment of AI Agents. This model has already proven its commercial and innovative power through the acceleration of startups like ad-machina, which has multiplied its value by 10 since joining the Making Science ecosystem. These proven benchmarks serve as the technical foundation for AWAKE’s two interconnected engines, which formalise this efficiency into a repeatable manufacturing process
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom