Browse through our selection of IT security news, as well as presentations, television broadcasts, articles and press releases by or about Oneconsult.

We gladly support journalists and other media professionals free of charge in the field of information and IT security. Please contact Christoph Baumgartner (CEO) by phone +41 43 377 22 22 or by email info@oneconsult.com. We look forward to hearing from you!

Below you find a selection of presentations, television broadcasts, newspaper and magazine articles, as well as press releases by or about Oneconsult.

Current iX With Last Part of Active Directory Article Series by Oneconsult

In the current issue 11/2021 of iX, Frank Ully, CTO Oneconsult Deutschland AG, completes the series of articles on the topic of Active Directory (AD) security, which was launched last fall. The last part of the series deals with possibilities of actively defending the AD in order to deceive attackers and thus prevent attack attempts at an early stage.
[more]

digicomp Blog Post About the Risks of Unpatched Vulnerabilities

Proxyshell, PrintNightmare, PetitPotam and HiveNightmare currently keep IT administrators on their toes. In a digicomp blog post, Yves Kraft, Branch Manager Bern and Senior Penetration Tester & Security Consultant, takes a closer look at what these terms are all about, what risks they entail and what measures administrators should definitely take.
[more]

30 November & 1 December 2021: heise Workshop “Active Directory as Target: Efficient Protection”

In a two-day workshop named “Active Directory as Target: Efficient Protection” (in German), Frank Ully, CTO Oneconsult Deutschland AG, will present various methods used by cybercriminals to attack the Active Directory (AD), which plays a central role in many organizations. He also shows what options administrators have to protect the AD against such attacks – including the use of tools to identify potential vulnerabilities, the implementation of hardening measures, and other preventive precautions such as logging and monitoring.
[more]

Cyber Security Talks at Electrosuisse Information Conference for Industrial Electricians

At the information conference for industrial electricians, which is organized by Electrosuisse and held at several dates and locations in Switzerland until the end of the year, Yves Kraft, Branch Manager Bern and Senior Penetration Tester & Security Consultant, Tobias Castagna, CTO, and Frédéric Vogel, Information Security Consultant, explain from a cyber security expert’s view what hackers can do in critical infrastructure.
[more]

12 October 2021: Oneconsult Silver Sponsor at Swiss Cyber Storm

Oneconsult will be represented at Swiss Cyber Storm 2021 as a silver sponsor and with an expert talk. The motto of this year’s conference, which will take place on Tuesday, 12 October, at the Kursaal Bern, is “Securing the Supply Chain”.
[more]

Last Part of KAPE Tutorial Cover Topic in Current Issue of iX

In the current issue 10/2021 of iX magazine Gregor Wegberg, Head of Digital Forensics & Incident Response, completes his IT forensics tutorial series on “Kroll Artifact Parser and Extractor” (KAPE). In every cyberattack, software is executed at some point – this can be standard programs or malware. In any case, the execution leaves traces that can be used to analyse the course of an attack.
[more]

Guest Article at medinside: “Cyber Attacks – Boards of Directors Are Responsible”

If a hospital, insurance company, or health care center is hacked and extorted, it is too late to define responsibilities. When it comes to the allocation of authority for imposing cyber security measures, the board of directors is first and foremost responsible. Tobias Ellenberger, COO Oneconsult AG, shows in a guest article at medinside how the latter must react appropriately and fulfill their duty to take precautions.
[more]

Draft OWASP Top 10 for 2021 Available

by Lena Reitzle

OWASP has released a draft of the “OWASP Top 10” for 2021. This article provides a brief overview of what has changed compared to the previous version from 2017 and which risks have particularly high priority for web applications according to the 2021 listing.

[read the German article]

Oneconsult Deutschland GmbH Becomes AG

The former Oneconsult Deutschland GmbH becomes Oneconsult Deutschland AG. The conversion has already been completed.

With this step, the Oneconsult group is gearing up for further growth in line with its corporate strategy.
[more]

New iX With Part 3 of the IT Forensics Tutorial on KAPE

In the current issue 09/2021 of iX magazine, Gregor Wegberg, Head of Digital Forensics & Incident Response, presents further features of the “Kroll Artifact Parser and Extractor” (KAPE) in his IT forensics tutorial series: Cybercriminals often use manipulated malicious websites or files to gain initial access to a system for an attack. This leaves traces in the browsing history that can be analyzed using KAPE to determine where and when an attack began.
[more]