For reasons of discretion, we do not list the names of our clients. However, we will be pleased to provide references and letters of recommendation following consultation with the organizations concerned.
May 4, 2023 is World Password Day. This day takes place every year on the first Thursday in May and aims to raise awareness about the importance of secure passwords. The aim is to educate about best practices in password management and encourage people to take steps to improve the security of their online accounts.
(more…)Vulnerability scanners are often used during security audits. The goal: to be one step ahead of the cybercriminals!
(more…)A bug bounty program and a penetration test are both important measures to improve the security level of a system. However, there are important differentiators between the two that need to be understood before deciding which one to use.
(more…)Configuration of a local Windows firewall and what and how it can protect against.
(more…)Penetration test and red teaming are cybersecurity terms. But what exactly is red teaming? And what is a penetration test all about? What are the differences between the two terms?
(more…)A modern Active Directory environment consists of many different components. There are clients, servers, databases, users, applications and much more. It is easy to lose track of everything (especially as a Red Team). The BloodHound tool can help here.
(more…)What are the most common security vulnerabilities in web applications? What does an attacker need to do to find and exploit them? And how can developers protect their web applications against them? Answers to these questions as well as practical hands-on examples are provided by PortSwigger’s Web Security Academy.
(more…)Black Friday and Cyber Monday are not only popular with shoppers, but also with fraudsters. Here are 10 tips on how to protect yourself from such scams.
(more…)Is your company protected against cyberattacks? Have you implemented protective measures, but can’t determine exactly whether they are sufficient and also achieve the desired effect, or where there may still be a need?
(more…)IoTGoat is intentionally vulnerable software, like that found on routers for example.
(more…)Data leaks – incidents where unauthorized people have gained access to data collections – happen again and again. To prevent user passwords from being compromised in such a case, it is important that they are not simply stored in plain text. Instead, they should always be stored only “hashed”. This article explains which hash functions are suitable for this purpose.
(more…)by Lena Reitzle
The first part of this article covered the first five items C1 through C5 of the OWASP Top 10 Proactive Controls. This second part picks up where we left off and takes a closer look at Proactive Controls C6 through C10.
(more…)You could say that the OWASP Top 10 Proactive Controls is a bit different from other better-known OWASP top ten lists – for example, the ten most critical risks for web applications (“OWASP Top 10”) or APIs (“OWASP API Security Top 10”) – because it goes beyond simply describing potential risks: The Proactive Controls are primarily aimed at developers and provide them with specific measures for developing secure applications.
(more…)by Marco Wohler
Hardening systems is always an issue. Many who are only starting to deal with it are affected by a security incident. Oneconsult helps companies to manage such incidents. In various incidents as well as in customer projects, a variety of problems with hardening could be identified.
(more…)According to a Gartner report, application programming interfaces (APIs) already account for 40% of the attack surface of web applications – and the trend is rising. Gartner estimates that this figure will rise to 90% by 2021. [1]The trend is more and more towards dynamic single-page applications (SPAs), while classic server-based web applications are gradually being replaced.
The MITRE ATT&CK framework is regularly mentioned, especially when it comes to the analysis of cyber intrusions. But what exactly is ATT&CK and why should you learn more about it?
[read the German article]
Author: Yves Kraft
The first part of this article explained how to use policies to restrict macros and PowerShell scripts so that only signed code is executed.
by Marco Wohler
The last few years have shown that ransomware and banking trojans like Emotet and Co. like to spread via scripts and macros. The signing of scripts, especially of macros – known from Microsoft’s Office product line – is accordingly becoming increasingly important. [read the German article]
by Sandro Affentranger
This is the second article on passwords. Recommendations for strong passwords have hardly changed over the years. Only recently it has become clear that the recommendations made so far have created certain patterns that can be exploited by attackers – this has led to a paradigm shift in password policies. This article presents the results of a Password Quality Audit carried out by Oneconsult at an international industrial company. [read the German article]
by Jakob Kunzmann
This article deals with the OWASP Top 10 on the Internet of Things, a list of the top ten security risks in the IoT area, published by the Open Web Application Security Project (OWASP).
Read the full german article here: https://www.oneconsult.com/de/owasp-iot-top-10-teil-2/.
by Sandro Affentranger
This is the first instalment in a two-part series about passwords. Passwords have become indispensable these days. For a long time the recommendation was to make passwords as complex as possible – but lately this has changed: “Long instead of complex” is the new motto. This article introduces the topic and explains why passwords play such an important role. It discusses the risks associated with having passwords fall into the wrong hands, and identifies possible measures to assess and mitigate these risks. [read the German article]
No results found.
Don’t miss anything! Subscribe to our free newsletter.
Availability Monday to Friday 8:00 a.m. – 12:00 p.m. and 1:00 p.m. – 5:00 p.m (exception: customers with SLA – please call the 24/7 IRFA emergency number).
Private individuals please contact your trusted IT service provider or the local police station.
For more information about our DFIR services here:
