Archives

The eigth part of the article series, which is available in the 05/2021 issue of iX magazine, looks at Active Directory (AD) security from a new perspective: While the previous articles of the series dealt with possible attacks on the AD, Marco Wohler, Head of IT, now describes hardening measures that system administrators can use to increase the security of the Active Directory and protect it against such attacks.
[more]

The number of cyber attacks is steadily increasing. Once again, this is proven in the current issue of Zürichsee-Zeitung (30 March 2021, available in German only) featuring a family business that has been targeted by cybercriminals: A ransomware attack temporarily shut down their entire operation. Tobias Ellenberger, COO Oneconsult AG & Vice Chairman Oneconsult International AG, explains from the perspective of an experienced expert in this field why such attacks have become very common, what needs to be taken into account in the event of such an attack, and how a cyber security service provider can help companies prevent the worst case.
[more]

SMEs are increasingly targeted by cybercriminals. In the current issue of “Meine Firma”, AXA’s customer magazine for SMEs, the head of an architecture firm, that was exposed to a ransomware attack, shares his experience. Tobias Ellenberger, COO Oneconsult AG & Vice Chairman Oneconsult International AG, assesses the situation from the perspective of a cyber security expert and explains why such incidents are not uncommon.
[more]

In the current issue 04/2021 of iX magazine, Yves Kraft, Branch Manager Bern and Senior Penetration Tester & Security Consultant, and Frank Ully, CTO Oneconsult Deutschland GmbH, continue the series of articles on Active Directory security. The latest article in the series provides an insight into how attackers can exploit insecure configurations and generously assigned rights, among other things, to first spread and then also gain persistence beyond the top-level layer (forest) – the actual security boundary of an Active Directory environment.
[more]

In the latest issue of iX magazine (02/2021) you can find the next part of the series of articles about Active Directory security by Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH. The sixth article picks up on the last (iX 12/2020) and penultimate (iX 11/2020) article of the series and describes further ways for attackers to gain higher privileges in the Active Directory beyond the possibilities explained so far.
[more]

In the current issue of iX magazine 12/2020 Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH, continues the previous article of the series and explains further methods how attackers can use previously collected data to gain higher privileges in the Active Directory.
[more]

Learn more about how attackers use Active Directory to compromise the domain in a new article by Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH, which has been published in the current issue (11/2020) of iX magazine.
[more]

As part of the KMU Digital Webinar Yves Kraft, Branch Manager and Senior Penetration Tester & Security Consultant, in cooperation with AXA demonstrated various threat scenarios for SMEs using multiple live hackings and explained why cyber security is becoming increasingly important for SMEs. [more]

Read the cover story written by Frank Ully, Chief Technical Officer of Oneconsult Deutschland GmbH, in the current issue 10/2020 of iX magazine (available in German only) to learn more about the reasons why Active Directory is becoming increasingly popular not only with administrators but also with attackers. [more]

Even if fundamental security risks such as cross-site scripting (XSS) or SQL injections are mitigated during application development, web applications and interfaces are susceptible to vulnerabilities.

In Java aktuell 01/2020, Senior Penetration Tester & Security Consultant Frank Ully writes about lesser known types of vulnerabilties in web applications and APIs (PDF; in German).