Project execution still guaranteed despite COVID-19
Dear customers and interested parties,
Despite the current developments regarding COVID-19, Oneconsult is able to carry out all projects without any loss of quality and without delays. We have already taken the technical and organizational measures years ago to guarantee you the usual high service quality even in this exceptional situation.
Oneconsult adheres to the specifications of the governments of Switzerland and Germany. As in most companies with the corresponding possibilities, the majority of our employees have been working from their home office since the beginning of March. Video and telephone conferences take place via our own or your preferred system. If desired, we can also continue to conduct on-site tests. As always, the data is stored encrypted.
Our digital forensics & incident response team is also on duty for you in this situation around the clock. Thus you continue to receive the usual Oneconsult service.
We will be happy to answer your questions at: info@oneconsult.com or +41 43 377 22 22
Kind regards
Christoph Baumgartner (CEO), Tobias Ellenberger (COO), Tobias Castagna (CTO) and Jan Alsenz (CRO)
Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 2000+ completed security projects worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 40+ highly qualified cyber security experts, including certified ethical hackers / penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM, GNFA), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager, ISO 27035 Incident Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like penetration tests / ethical hacking, real-life APT tests and ISO 27001 security audits. In case of emergency, Oneconsult’s Digital Forensics & Incident Response (DFIR) team supports you with around-the-clock expert assistance (24 h x 365 days).
Events
20-Nov-20
Web Seminar on Penetration Testing
On 24 November, the “ZD.B Themenplattform Cybersecurity” will host a web seminar on penetration testing together with the “Sicherheitsnetzwerk München”. Together with three other experts from the industry, Frank Ully, CTO of Oneconsult Deutschland GmbH, will explain for which organisations such tests are useful, what is the current technical standard of testing and what needs to be considered when selecting the right testers. Following the short talks, you will have the chance to direct your questions to the experts.
The web seminar will take place on 24 November from 16:00 to 17:30.
Click here for further information and registration.
04-Nov-20
01 December 2020: ESE Congress – From Fuzzing to Exploiting IoT Devices
Rafael Scheel, CEO Oneconsult Deutschland GmbH, will give a talk about “From Fuzzing to Exploiting IoT Devices – How to Quickly Detect and Fix Zero-Day Vulnerabilities Using Fuzzing” (in German) at this year’s Embedded Software Engineering (ESE) Congress.
The ESE Congress will be held as an online conference this year.
Rafael Scheel’s talk will take place on 01 December from 15:40 to 16:20.
Please see the ESE Congress website for further information and registration.
News & Advisories
19-Nov-20
Active Directory Article Series Continued in New Issue 12/2020 of iX Magazine
In the current issue of iX magazine 12/2020 Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH, continues the previous article of the series and explains further methods how attackers can use previously collected data to gain higher privileges in the Active Directory.
[more]
27-Oct-20
New Article About Active Directory in 11/2020 Issue of iX Magazine
Learn more about how attackers use Active Directory to compromise the domain in a new article by Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH, which has been published in the current issue (11/2020) of iX magazine.
[more]
Pen Tester's Diary
13-Oct-20
The OWASP API Top 10 2019
by Lena Reitzle
According to a Gartner report, application programming interfaces (APIs) already account for 40% of the attack surface of web applications – and the trend is rising. Gartner estimates that this figure will rise to 90% by 2021. [1]The trend is more and more towards dynamic single-page applications (SPAs), while classic server-based web applications are gradually being replaced.
31-Aug-20
How the MITRE ATT&CK Framework Helps You Make Your Business More Secure
by Yves Kraft
The MITRE ATT&CK framework is regularly mentioned, especially when it comes to the analysis of cyber intrusions. But what exactly is ATT&CK and why should you learn more about it?
[read the German article]
Our customers value our expertise and vast project experience of over
Penetration test projects, over 1100 of which OSSTMM-compliant
Application penetration test projects of banking solutions, online shops, mobile apps, ICS (SCADA/DCS), IoT devices, ERP and CRM solutions, CMS, VoIP systems, etc.
Security audits, e.g. according to ISO 27001, ISO 27002, industry specific guidelines (ISO 27015, 27019, 27799, etc.) or SANS Critical Security Controls
Methods and Standards
Our approach is customized to meet our clients’ specific needs as well as based on «best practice». In addition to our own methods, we also rely on industry-proven standards.
Holding
Oneconsult International AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland
+41 43 377 22 22
info@oneconsult.com
Switzerland
Headquarters
Oneconsult AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland
+41 43 377 22 22
info@oneconsult.com
Oneconsult AG
Baerenplatz 7
3011 Bern
Switzerland
+41 31 327 15 15
info@oneconsult.com
Germany
Oneconsult Deutschland GmbH
Agnes-Pockels-Bogen 1
80992 Munich
Germany
+49 89 248820 600
info@oneconsult.com
