Vulnerability in the Siemens SICAM A8000 Series web interface

15.01.2019 ‒ Emanuel Duss and Nicolas Heiniger have identified an XXE vulnerability in the web interface of the Siemens SICAM A8000 Series. Read more

Learning from practitioners - Compass Security teaches at the HWZ

10.01.2019 ‒ For the third time, Compass Security co-founder Ivan Bütler is involved in the CAS Digital Risk Management course at the HWZ Hochschule für Wirtschaft... Read more

Fast and competent support in case of cyber incidients

7.12.2018 ‒ The editorial staff of the Unternehmerzeitung has taken up the topic of cyber security again and in an interview sheds light on how the cooperation... Read more

Vulnerability in HADatAc Framework

14.11.2018 ‒ Lukasz D. has identified a remote code execution vulnerability in the Human-Aware Data Acquisition (HADatAc) framework. Read more

HSR opportunities and risks of the digitalization - what it means to the job market in the ICT industry

12.11.2018 ‒ In the advanced training course BSLB / RAV / IV of the HSR Hochschule für Technik the topic "Opportunities and risks of digitalization and the labour... Read more

Hacker Workshop für Mädchen bei Compass Security

6.11.2018 ‒ Es gibt nicht viele Frauen in technischen Berufen. Das Programm "Swiss TecLadies" möchte dies ändern und initiiert Veranstaltungen und Workshops zur... Read more

Über 100'000 User auf

31.10.2018 ‒ Auf der Online-Plattform Hacking-Lab hat sich am 29. Oktober 2018 der 100'000ste User registriert! Was vor über 10 Jahren aus einer Idee von Compass... Read more

it-sa 2018 - ein Blick zurück

15.10.2018 ‒ Auch in diesem Jahr war die Teilnahme an der it-sa für Compass Security in jeder Hinsicht ein voller Erfolg. Read more

Cross-Site Scripting Vulnerability in Abacus

28.09.2018 ‒ Stephan Sekula has identified a reflected cross-site scripting vulnerability in Abacus. Read more

Vulnerability in VMware AirWatch iOS Applications

7.09.2018 ‒ Stephan Sekula has identified a vulnerability in the VMware AirWatch iOS applications Read more

Cross-Site Scripting Vulnerability in IBM Notes Traveler

7.09.2018 ‒ Stephan Sekula has identified a reflected cross-site scripting vulnerability in IBM Notes Traveler. Read more

Vulnerability in Monstra CMS

4.09.2018 ‒ Fabio Poloni has identified a Path Traversal vulnerability in the Monstra content management system. Read more


Cyber Risks – from abstract risk to everyday reality

The Europa Institut at the University of Zurich (EIZ) is one of the leading centres of expertise for European Law and is an important provider of... Read more

Swiss Treasury Summit 2019

Das Schweizer Jahrestreffen der Treasurer - am 11. September 2019 an der HSLU in Rotkreuz. Read more

Cyber Security Days an der HSR

Das INS Institut für vernetzte Systeme und die Compass Security laden ein zur zweitägigen Cyber Security Veranstaltung an der HSR Hochschule für... Read more


Compass Security Blog

From Open Wi-Fi to WPA3

Security in Wi-Fi networks has been, at some point non-existent, then questioned, improved and questioned again over the last two decades. This post provides an overview over the latest developments... mehr

Practical OpenID Connect Pentesting

This post is intended to explain what you typically want to check for during an OpenID Connect assessment and also provide you with a guide to setup your own OpenID Connect test environment. mehr