We are hiring

(f/m, 100%): Your exciting new job at Oneconsult? If you are a native German speaker, we are looking for you to strengthen our top-flight cyber security team.

Job descriptions

Oneconsult is a member of FIRST

FIRST is a global network of incident response and security teams dedicated to promoting collaboration and coordination in this area and actively sharing information among members to respond more effectively to security incidents. FIRST has more than 400 members worldwide.
Further information about FIRST can be found here: https://www.first.org/
You will find information about our services in this area under the following link: https://www.oneconsult.com/de/incident-response-it-forensics/

On a digital search for clues

They are the Studers and Sherlock Holmes watchmen of the digital age: after attacks, IT forensic experts collect evidence and try to find out what the attackers are up to.

IT forensics article in Computerworld by Jens Stark, based on an interview with Tobias Ellenberger, Chief Operating Officer at Oneconsult. The article has also been published by com! magazine.
Read the article in German

it-sa 2018 a complete success!

Thank you for the many visits to our booth at the it-sa Nuremberg!

The curiosity and the fun to hack our chocolate safe were great. Congratulations to all who succeeded!

[more]

CIO Bulletin, September 2018: Oneconsult among the 10 Best Cyber Security Companies

According to CIO Bulletin, Oneconsult provides world-class cyber security services in the areas of Penetration Testing / Ethical Hacking, ISO 27001 Security Audits and Incident Response & IT Forensics.

Overview and here to the detailed report

Cybersecurity quick check for SME

Cyberattacks are now part of our daily lives. SMEs must therefore have a way to quickly determine whether their technical, organisational and staff-related measures can protect them adequately against cyber-risks. A high-calibre group of specialists has therefore developed a quick-check for this purpose. Oneconsult supports this useful quick check. Further information 

And here is your direct link to the ​
Cybersecurity quick check for SME

Advantages of the OSSTMM

OSSTMM – or in words – Open Source Security Testing Methodology Manual
Your advantages when using a de-facto standard for IT security assessments: OSSTMM trainer Yves Kraft’s (Oneconsult Bern) presentation on this topic
[more]

Practical questions and answers concerning the GDPR

A report from the sales point of view by Philipp Hauenstein 

Oneconsult is a cyber security consulting company. In the last months questions have repeatedly been asked in meetings and telephone conversations about the consequences of the General Data Protection Regulation (GDPR), which applies on May 25, 2018. Is this a report like many others that deal with fear?

No. If you read on here, you’ll find just some questions of our interlocutors and matching answers, that the Oneconsult team can provide at the moment (as of March 2018). [read the German article]

Security Sales Executive at Oneconsult – your new challenge?

(f/m, 80 – 100%): Your exciting new job at Oneconsult as a Security Sales Executive? If you are a native German speaker, we are looking for you to strengthen our top-flight cyber security crew.

Job description

Buzzword “APT” – Are you ready for common threats?

by Severin Wischmann

APTs have a lot of media coverage, especially when a well-known organization became its victim and the resulting damage is huge. However, the threats most companies face on a daily basis were not deployed by powerful organizations but by common cyber criminals that are mostly interested in earning money not knowledge. This article gives advice on effective countermeasures. [more]

Microsoft Outlook Microsoft Outlook sends supposedly encrypted messages unencrypted

Microsoft yesterday announced in an advisory that a severe security vulnerability exists in Microsoft Outlook. Article in German. [more]

CAA, the new control against unintended certificate mis-issue

by Gregor Wegberg

With the introduction of Certification Authority Authorization (CAA) domain holders can specify the Certificate Authorities authorized to issue certificates for the domain. This article in German explains CAA and its use. [more]

Bring Your Own Key (BYOK) und Bring Your Own Encryption (BYOE) – die Lösung aller Sicherheitsprobleme in der Cloud?

by Immanuel Willi

This Oneconsult Security Advisory in German illustrates the strenghts and the weaknesses of BYOK and BYOE and provides food for thought on their sensible use. [more]

NotPetya – So verhalten Sie sich richtig

von Severin Wischmann, Gregor Wegberg & Fabian Gonzalez

This Oneconsult Security Advisory provides hands-on advice on how to behave properly after a NotPetya infection and which security measures can protect you against similar cyber attacks.
[more]

Petya Ransomware: Incident Response Support

Since yesterday, the Oneconsult 24/7 incident response & IT forensics team has been helping various clients successfully tackle the current ransomware Petya. Oneconsult’s specialists have analyzed and reverse engineered the malware and its behavior. Please contact our main number +41 43 377 22 22 for first-hand information / tips for immediate action and support.

Bitcoin: WannaCry’s Curse or Blessing? (Video: Oneconsult Talk)

Bitcoin is a digital currency which allows for pseudonymous transactions while not being regulated by banks or any other central entities – properties which make it popular among honest users and cyber-criminals alike. In fact, Bitcoin has been involved in an extensive list of crimes, such as money laundering and the recent WannaCry ransomware attack. However, contrary to many people’s beliefs, Bitcoin is not anonymous. [more]