News

Vulnerability in Vigor2960 DrayTek Router

8.04.2019 ‒ Lukasz D. has identified an XSS vulnerability in the Web User Interface of the Vigor2960 DrayTek router. Read more

Focus topic at the HSR: Information Security

2.04.2019 ‒ The HSR University of Applied Sciences Rapperswil focuses on cyber security in education, training and research. In this field there are always points... Read more

What does pentesting mean?

13.03.2019 ‒ Swiss Post has made its e-voting system available for a public hacker test. This procedure triggered numerous discussions. Radio SRF1 asks Cyrill... Read more

Companies hack themselves

8.03.2019 ‒ In its latest issue, the "Handelszeitung" focused on "Digital Innovation" and on topics such as cyber risks and penetration tests. Read more

Do not use the same passwort

5.03.2019 ‒ "What recommendations would you make to family offices regarding cyber security?" Opalesque's begins with this question - Cyrill Brunschwiler,... Read more

Ein Hacker mit einem moralischen Kompass

27.02.2019 ‒ Ivan Bütler ist Co-Gründer von Compass Security und heute noch aktiv in der Firma tätig. In der aktuellen Ausgabe des Fachmagazins "IT-Markt" erzählt... Read more

How secure is the E-Voting system?

21.02.2019 ‒ Tagesschau report of February 20, 2019 beginns with this words: "The sense, benefits and dangers of e-voting have long been the subject of... Read more

Vulnerability in mod_auth_openidc module

19.02.2019 ‒ Mischa Bachmann has identified a reflected cross site scripting (XSS) vulnerability in the mod_auth_openidc module for the Apache 2.x HTTP server. Read more

Compass Security supervises scientific work

1.02.2019 ‒ Compass Security volunteers as supervisor for academic work and studies relating to information security. Read more

Vulnerability in the Siemens SICAM A8000 Series web interface

15.01.2019 ‒ Emanuel Duss and Nicolas Heiniger have identified an XXE vulnerability in the web interface of the Siemens SICAM A8000 Series. Read more

Learning from practitioners - Compass Security teaches at the HWZ

10.01.2019 ‒ For the third time, Compass Security co-founder Ivan Bütler is involved in the CAS Digital Risk Management course at the HWZ Hochschule für Wirtschaft... Read more

Fast and competent support in case of cyber incidients

7.12.2018 ‒ The editorial staff of the Unternehmerzeitung has taken up the topic of cyber security again and in an interview sheds light on how the cooperation... Read more

CALENDAR

Beer-Talk in St. Gallen: Azure Security 101

Im Sommer 2018 kündigte Microsoft an, ihre Cloud-Lösungen aus Schweizer Rechenzentren anzubieten. Viele hiesige KMUs und Grossunternehmen haben sich... Read more

Swiss Cyber Hackathon 2019 / Zurich

Simulating Real World Cyber Scenarios – Educational Cyber Competition of Defending your Environment and Attacking your Opponents Read more

Internet Security Days 2019 - Game of IT-Security

Based on the theme "Online Security", a wide conference program and an exhibition awaits you on September 26/27, 2019. New in the programme are... Read more

ALL DATES

Compass Security Blog

enOcean Security

In this post, we are going to take a closer look at the enOcean technology, how security is implemented, and if the security measures and options available are sufficient. mehr

Privilege escalation in Windows Domains (3/3)

In this last article about privilege escalation in Windows domains, we demonstrate how to extract credentials from running systems to compromise high-privileged accounts. mehr

ZUM BLOG